Re: [users@httpd] Apache 2.4 (Apache Benchmarking) - Too many open files (24)
I think that is your problem: OS user for httpd or ab only can open (sumuntaneousy) 1024 files. open files (-n) 1024 Try to set to 1 for example. Read "man ulimit" to set how to do it. I dont remenber sinstax. 2016-09-23 20:48 GMT+02:00 Rashmi Srinivasan : > Hi, > > This is the output of ulimit -a > core file size (blocks, -c) 0 > data seg size (kbytes, -d) unlimited > scheduling priority (-e) 0 > file size (blocks, -f) unlimited > pending signals (-i) 15944 > max locked memory (kbytes, -l) 64 > max memory size (kbytes, -m) unlimited > open files (-n) 1024 > pipe size(512 bytes, -p) 8 > POSIX message queues (bytes, -q) 819200 > real-time priority (-r) 0 > stack size (kbytes, -s) 10240 > cpu time (seconds, -t) unlimited > max user processes (-u) 1024 > virtual memory (kbytes, -v) unlimited > file locks (-x) unlimited > > Thanks, > > On Fri, Sep 23, 2016 at 8:25 PM, Rubén Toribio Aldeguer > wrote: > >> I think your problem is not Apache, but your OS. >> I think Apache 2.2 and 4.4 uses diferent mpm mode (my memory is poor). >> I think you OS is limiting the number of Opens Files that can Manage. >> (safety reasons) >> Please, can you print you ulimit output, as I advise on a previous mail? >> >> Thanks. >> >> 2016-09-23 11:55 GMT+02:00 Rashmi Srinivasan < >> rashmisrinivasan2...@gmail.com>: >> >>> Hi, >>> Do you feel this is the issue with some configuration or would this be >>> an issue with apache itself. >>> Has anybody encountered a performance issue of this kind. >>> Please comment >>> >>> Thanks, >>> RS >>> >>> On Fri, Sep 23, 2016 at 1:43 PM, Rashmi Srinivasan < >>> rashmisrinivasan2...@gmail.com> wrote: >>> >>>> Is there a minimum requirement for apache 2.4 to run these tests? >>>> I have tried on different machines with different configurations with >>>> the same outcome. >>>> Please advise. >>>> >>>> Thanks, >>>> RS >>>> >>>> On Fri, Sep 23, 2016 at 1:14 AM, Rashmi Srinivasan < >>>> rashmisrinivasan2...@gmail.com> wrote: >>>> >>>>> Hi, >>>>> Thanks for checking this, >>>>> >>>>> I wanted to check the below:' >>>>> Stress testing of apache 2.2 works very well with the default >>>>> mpm worker onfiguration >>>>> However, apache 2.4 doesnt work at all with the default >>>>> configuration, gives the error: >>>>> 2000 concurrent requests >>>>> Benchmarking x.x.x.x (be patient) >>>>> socket: Too many open files (24) >>>>> >>>>> After changing the configuration, as described in the previous email, >>>>> it starts processing them: >>>>> Lots of timeouts are occurring. >>>>> Error in the error_lo is: >>>>>"AH00046: child process still did not exit, >>>>> sending a SIGKILL" >>>>>(2)No such file or directory: [client >>>>> x.x.x.c] AH01256: connect #7 to cgi daemon failed, sleeping before retry >>>>> 11)Resource temporarily unavailable: >>>>> AH01252: couldn't create child process: 11: >>>>> I also noticed that the CPU utilzation reached 99.9% >>>>> Which is when apache terminates >>>>> >>>>> What changes are to be done in this case. >>>>> Please advise >>>>> >>>>> Thanks, >>>>> RS >>>>> >>>>> >>>>> On Thu, Sep 22, 2016 at 9:54 PM, Yann Ylavic >>>>> wrote: >>>>> >>>>>> On Thu, Sep 22, 2016 at 5:20 PM, Rashmi Srinivasan >>>>>> wrote: >>>>>> > >>>>>> > Access log has the following status: >>>>>> > [22/Sep/2016:20:17:21 +0530] "GET /cgi-bin/script.cgi HTTP/1.0" >>>>>> 200 16 >>>>>> >>>>>> What's in the *error* log (path from the ErrorLog directive)? >>>>>> What about resources (CPU, load average, ...) on the httpd machine >>>>>> during
Re: [users@httpd] Apache 2.4 (Apache Benchmarking) - Too many open files (24)
I think your problem is not Apache, but your OS. I think Apache 2.2 and 4.4 uses diferent mpm mode (my memory is poor). I think you OS is limiting the number of Opens Files that can Manage. (safety reasons) Please, can you print you ulimit output, as I advise on a previous mail? Thanks. 2016-09-23 11:55 GMT+02:00 Rashmi Srinivasan : > Hi, > Do you feel this is the issue with some configuration or would this be an > issue with apache itself. > Has anybody encountered a performance issue of this kind. > Please comment > > Thanks, > RS > > On Fri, Sep 23, 2016 at 1:43 PM, Rashmi Srinivasan < > rashmisrinivasan2...@gmail.com> wrote: > >> Is there a minimum requirement for apache 2.4 to run these tests? >> I have tried on different machines with different configurations with the >> same outcome. >> Please advise. >> >> Thanks, >> RS >> >> On Fri, Sep 23, 2016 at 1:14 AM, Rashmi Srinivasan < >> rashmisrinivasan2...@gmail.com> wrote: >> >>> Hi, >>> Thanks for checking this, >>> >>> I wanted to check the below:' >>> Stress testing of apache 2.2 works very well with the default >>> mpm worker onfiguration >>> However, apache 2.4 doesnt work at all with the default >>> configuration, gives the error: >>> 2000 concurrent requests >>> Benchmarking x.x.x.x (be patient) >>> socket: Too many open files (24) >>> >>> After changing the configuration, as described in the previous email, it >>> starts processing them: >>> Lots of timeouts are occurring. >>> Error in the error_lo is: >>>"AH00046: child process still did not exit, >>> sending a SIGKILL" >>>(2)No such file or directory: [client >>> x.x.x.c] AH01256: connect #7 to cgi daemon failed, sleeping before retry >>> 11)Resource temporarily unavailable: >>> AH01252: couldn't create child process: 11: >>> I also noticed that the CPU utilzation reached 99.9% >>> Which is when apache terminates >>> >>> What changes are to be done in this case. >>> Please advise >>> >>> Thanks, >>> RS >>> >>> >>> On Thu, Sep 22, 2016 at 9:54 PM, Yann Ylavic >>> wrote: >>> >>>> On Thu, Sep 22, 2016 at 5:20 PM, Rashmi Srinivasan >>>> wrote: >>>> > >>>> > Access log has the following status: >>>> > [22/Sep/2016:20:17:21 +0530] "GET /cgi-bin/script.cgi HTTP/1.0" 200 >>>> 16 >>>> >>>> What's in the *error* log (path from the ErrorLog directive)? >>>> What about resources (CPU, load average, ...) on the httpd machine >>>> during the stress? >>>> >>>> Regards, >>>> Yann. >>>> >>>> - >>>> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org >>>> For additional commands, e-mail: users-h...@httpd.apache.org >>>> >>>> >>> >> > -- *Rubén Toribio Aldeguer* Técnico Sistemas DataCenter Informática Área Sistemas (+34) 971743030 www.riu.com / www.riuplaza.com -- [image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter] <http://twitter.com/#%21/RiuHoteles> [image: Flickr] <http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube] <http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus] <https://plus.google.com/102337793674910512804/posts> This e-mail and its attachments, if any, are confidential and may be legally privileged. If you have received it in error, you are on notice of this status. Please do not copy or use it for any other purpose or disclose its contents to any other person: to do so could be a breach of confidence. You may contact us at +34 971 74 30 30 or at sender's e-mail address. [image: Facebook] *Please, consider the environment before printing this email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
Re: [users@httpd] Apache 2.4 (Apache Benchmarking) - Too many open files (24)
Are you testing from de same host that runs httpd? Could you paste paste the output of ulimit -a , ie: [apache@--- ~]$ ulimit -a core file size (blocks, -c) 0 data seg size (kbytes, -d) unlimited scheduling priority (-e) 0 file size (blocks, -f) unlimited pending signals (-i) 30504 max locked memory (kbytes, -l) 64 max memory size (kbytes, -m) unlimited *** open files (-n) 1024* pipe size(512 bytes, -p) 8 POSIX message queues (bytes, -q) 819200 real-time priority (-r) 0 stack size (kbytes, -s) 10240 cpu time (seconds, -t) unlimited max user processes (-u) 1024 virtual memory (kbytes, -v) unlimited file locks (-x) unlimited In rhel default seems to be 1024. 2016-09-22 17:20 GMT+02:00 Rashmi Srinivasan : > Hi, > > This is my mpm conf: > > > ServerLimit 80 > StartServers 3 > MinSpareThreads 75 > MaxSpareThreads250 > ThreadsPerChild 25 > MaxRequestWorkers 2000 > MaxConnectionsPerChild 0 > > > The issue occurs even upon increasing the serverlimit and > MaxRequestWorkers. > > Access log has the following status: > [22/Sep/2016:20:17:21 +0530] "GET /cgi-bin/script.cgi HTTP/1.0" 200 16 > > Please check and let me know. > > Thanks , > RS > > On Thu, Sep 22, 2016 at 8:34 PM, Rashmi Srinivasan < > rashmisrinivasan2...@gmail.com> wrote: > >> >> This is my mpm conf: >> >> >> ServerLimit 80 >> StartServers 3 >> MinSpareThreads 75 >> MaxSpareThreads250 >> ThreadsPerChild 25 >> MaxRequestWorkers 2000 >> MaxConnectionsPerChild 0 >> >> >> The issue occurs >> >> Access log has the status: >> >> >> On Thu, Sep 22, 2016 at 3:47 PM, Yann Ylavic >> wrote: >> >>> On Thu, Sep 22, 2016 at 8:57 AM, Rashmi Srinivasan >>> wrote: >>> > >>> > Benchmarking x.x.x.x (be patient) >>> > Completed 8000 requests >>> > apr_socket_recv: Connection timed out (110) >>> > Total of 8972 requests completed >>> >>> This can be related to some limits reached on the server side (cgi >>> connection/execution time, MaxRequestWorkers, ...). >>> Any error message in httpd? >>> >>> Regards, >>> Yann. >>> >>> - >>> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org >>> For additional commands, e-mail: users-h...@httpd.apache.org >>> >>> >> > -- *Rubén Toribio Aldeguer* Técnico Sistemas DataCenter Informática Área Sistemas (+34) 971743030 www.riu.com / www.riuplaza.com -- [image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter] <http://twitter.com/#%21/RiuHoteles> [image: Flickr] <http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube] <http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus] <https://plus.google.com/102337793674910512804/posts> This e-mail and its attachments, if any, are confidential and may be legally privileged. If you have received it in error, you are on notice of this status. Please do not copy or use it for any other purpose or disclose its contents to any other person: to do so could be a breach of confidence. You may contact us at +34 971 74 30 30 or at sender's e-mail address. [image: Facebook] *Please, consider the environment before printing this email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
Re: [users@httpd] Apache 2.4 (Apache Benchmarking) - Too many open files (24)
25 * 2000 = 50.000 threads. May be you have to setup ulimit in your OS. B.R. 2016-09-22 6:32 GMT+02:00 Rashmi Srinivasan : > Hi, > Below is the issue encountered when i am trying to use apache 2.4 to > validate performance using the benchmarking tool(ab tool). > > ab is invoked with 2000/1000 concurrent requests and subjected to 8 > cgi requests. The module enabled is mod_cgid. Occurs with worker/event mpm > enabled > > MPM configuration is: > > ServerLimit 80 > StartServers 3 > MinSpareThreads 75 > MaxSpareThreads250 > ThreadsPerChild 25 > MaxRequestWorkers 2000 > MaxConnectionsPerChild 0 > > > > 2000 concurrent requests > > Benchmarking x.x.x.x (be patient) > socket: Too many open files (24) > > OR > > 1000 concurrent requests > > Benchmarking x.x.x.x (be patient) > Completed 8000 requests > apr_socket_recv: Connection timed out (110) > Total of 8972 requests completed > > > This occurs on RHEL as well as on HP-UX. > Please help if anyone has encountered the same problem. > > > Thanks, > RS > -- *Rubén Toribio Aldeguer* Técnico Sistemas DataCenter Informática Área Sistemas (+34) 971743030 www.riu.com / www.riuplaza.com -- [image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter] <http://twitter.com/#%21/RiuHoteles> [image: Flickr] <http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube] <http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus] <https://plus.google.com/102337793674910512804/posts> This e-mail and its attachments, if any, are confidential and may be legally privileged. If you have received it in error, you are on notice of this status. Please do not copy or use it for any other purpose or disclose its contents to any other person: to do so could be a breach of confidence. You may contact us at +34 971 74 30 30 or at sender's e-mail address. [image: Facebook] *Please, consider the environment before printing this email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
Re: [users@httpd] unable to start httpd in SSL mode
Hi, I don't sure it it helps, but I will try with: # ldd /tmp/ossl/httpd/Release/modules/mod_ssl.so - if some dependency is broken you will be addressed to the problem. - may by you need to execute ldconfig to register nes ssl lib. - Be sure you compiled ssl EC_KEY_new_by_curve_name capacity. 2016-04-06 8:37 GMT+02:00 kishore : > Hi, > I'm trying to compile httpd 2.4.18 with openssl-1.0.2g(with > openssl-fips-2.0.12) on 64-bit RHEL machine. > I'm could compile and get it(httpd) running in http mode and while i'm > trying to run it in > HTTPS mode, server is unable to start saying > > > "httpd: Syntax error on line 128 of > /tmp/ossl/httpd/Release/conf/httpd.conf: Cannot load modules/mod_ssl.so > into server: /tmp/ossl/httpd/Release/modules/mod_ssl.so: undefined symbol: > EC_KEY_new_by_curve_name" > > I could get the same config up and running in 32-bit, but there seems to > be an issue with 64-bit. > Can someone help me with this. > > I have checked all pre reqs and basic checks for paths, all seems to be > pointing to proper libraries. > > > Thanks in Advance, > Kishore > -- *Rubén Toribio Aldeguer* Técnico Sistemas DataCenter Informática Área Sistemas (+34) 971743030 www.riu.com / www.riuplaza.com -- [image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter] <http://twitter.com/#%21/RiuHoteles> [image: Flickr] <http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube] <http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus] <https://plus.google.com/102337793674910512804/posts> This e-mail and its attachments, if any, are confidential and may be legally privileged. If you have received it in error, you are on notice of this status. Please do not copy or use it for any other purpose or disclose its contents to any other person: to do so could be a breach of confidence. You may contact us at +34 971 74 30 30 or at sender's e-mail address. [image: Facebook] *Please, consider the environment before printing this email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
Re: [users@httpd] Apache virus scanning
Thanks, This information is very ussefull for me too. What about for an antivirus on the server? do yo have any experiencie with it? TX. 2016-03-09 21:22 GMT+01:00 Wei-min Lee : > Using ICAP is a good way to go so that the person uploading files can be > notified of upload fails due to the virus scan. Relying on filesystem > virus scans lacks visibility of quarantined/rejected files. > > On Wed, Mar 9, 2016 at 12:18 PM, Wei-min Lee > wrote: > >> You could use clamav via ICAP with squid transparently in front of apache. >> >> http://wiki.squid-cache.org/ConfigExamples/ContentAdaptation/C-ICAP >> http://squidclamav.darold.net/config.html >> >> http://louwrentius.com/setting-up-a-squid-proxy-with-clamav-anti-virus-using-c-icap.html >> >> On Wed, Mar 9, 2016 at 8:12 AM, Aurélien Terrestris < >> aterrest...@gmail.com> wrote: >> >>> On a large scale prod (200 000 users/day), I was using proxies working >>> with antivirus through ICAP protocol (RFC 3507). The results were pretty >>> good. >>> I am not sure we could use this technology with Apache, and ICAP seems a >>> bit old now. >>> >>> 2016-03-09 16:45 GMT+01:00 Christopher Schultz < >>> ch...@christopherschultz.net>: >>> >>>> John, >>>> >>>> On 3/9/16 10:21 AM, Rose, John B wrote: >>>> > What about if your web sites allow for uploading files? Would you not >>>> want >>>> > to scan those on upload before they got on your filesystem? >>>> >>>> Sure, it would be nice to have the file scanned during upload, but I'm >>>> guessing that the AV can't give an opinion on a file until it's been >>>> completely-uploaded. In that case, do you really want to buffer the >>>> whole file in memory to scan it? >>>> >>>> I think the file is going to make it -- at least in part -- to the disk >>>> either way, unless you have other controls in place such as upload-size >>>> limits where you can make a good bet that in-memory scanning can be done >>>> without bringing-down your server. >>>> >>>> Anyhow, I don't have any particular experience with mod_clamav or >>>> anything like that. Certainly I wouldn't rely upon it solely, since >>>> there are other ways files can make it onto your server(s). But it >>>> probably couldn't hurt. >>>> >>>> Things I'd be worried about are which requests will be scanned by the >>>> AV? Will every single GET/POST/etc. be scanned? That might cause a >>>> significant impact on your response times. Also, the aforementioned >>>> buffering -- does the file have to remain in memory to be scanned, or >>>> will it be streamed to a disk somewhere first? You don't want AV-scans >>>> to bust your memory cap. >>>> >>>> -chris >>>> >>>> > On 3/9/16 9:49 AM, "Christopher Schultz" < >>>> ch...@christopherschultz.net> >>>> > wrote: >>>> > >>>> >> John, >>>> >> >>>> >> On 3/8/16 6:02 PM, Rose, John B wrote: >>>> >>> I am interested in both >>>> >>> >>>> >>> Thanks >>>> >>> >>>> >>> Sent from my iPad >>>> >>> >>>> >>>> On Mar 8, 2016, at 3:27 PM, Christopher Schultz >>>> >>>> wrote: >>>> >>>> >>>> >>> John >>>> >>> >>>> >>>>>> On 3/8/16 2:43 PM, Rose, John B wrote: >>>> >>>>>> Looking for comments on mod_clamav, and any other alternative >>>> >>>>>> antivirus software for Apache on linux >>>> >>> >>>> >>> Are you trying to protect your clients or your servers? >>>> >> >>>> >> I would imagine that running any AV software that monitors the >>>> >> filesystem for changes would be sufficient. Why do you think you >>>> need an >>>> >> httpd module for this? >>>> >> >>>> >> -chris >>>> >> >>>> >> - >>>> >> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org >>>> >> For additional commands, e-mail: users-h...@httpd.apache.org >&
[users@httpd] Redirect Sites with SSL and Client Ceritifcate.
Good guys.
I have this settings apache and pretend that requests made to the site
www.mysite.example.com be redirected to the site mysite.example.com
(without the www). Both sites have different certificates (crt, key and
providers)
if I test it in an integration server, (for which I am obliged to set the
etc / hosts on my computer) I see it runs smoothly. And if I set etc/hosts
with producction server IP it works. But accessing trough Internet IP it
stuck waiting for load app. With Fiddler I see that the SSL tunnel remains
unrealized.
Any idea on how to solve this problem? ¿Does Apache/2.2 supports one ip and
two certificates? At this point I'm not sure where I have to look: server,
tomcat, browser, or internet FW.
Here the vhost settings:
Server version: Apache/2.2.15 (Unix)
NameVirtualHost *:443
ServerName www.mysite.example.com
ServerAdmin webmas...@riu.com
DocumentRoot "/extranet/tomcat/webapps/"
Alias /extranet/pdf "/extranet/pdf"
RewriteEngine on
Rewritecond %{HTTP_HOST} ^www.mysite.example.com [NC]
Rewriterule ^(.*)$ https://mysite.example.com$1 [R=301,NC,L]
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile "/etc/httpd/certificados/www.mysite.example.
<https://lnkr.us/get?sourceId=15&uid=49544x240x&format=go&out=http%3A%2F%2Fwww.mysite.example.com%2F&ref=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F%23drafts%3Fcompose%3D152890b03c897d25>
sha2.crt"
SSLCertificateKeyFile "/etc/httpd/certificados/www.www.mysite.example
<https://lnkr.us/get?sourceId=15&uid=49544x240x&format=go&out=http%3A%2F%2Fwww.mysite.example.com%2F&ref=https%3A%2F%2Fmail.google.com%2Fmail%2Fu%2F0%2F%23drafts%3Fcompose%3D152890b03c897d25>
.sha2.key"
SSLCertificateChainFile "/etc/httpd/certificados/gd_bundle-g2-g1.crt"
ServerName mysite.example.com
ServerAlias machinename
ServerAdmin webmas...@riu.com
DocumentRoot "/extranet/tomcat/webapps/"
Alias /extranet/pdf "/extranet/pdf"
RewriteEngine on
RewriteRule ^/$ /extranet/ [PT,L]
RewriteRule ^/(extranet/)?(.*)$ /extranet/$2[PT,L]
JkMount /* tomcat
JkUnmount /extranet/pdf/* tomcat
SSLEngine on
SSLVerifyClient require
SSLVerifyDepth 2
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile "/etc/httpd/certificados/wildcard.mysite.example
<http://mysite.example.com/>.crt"
SSLCertificateKeyFile "/etc/httpd/certificados/wildcard.mysite.example
<http://mysite.example.com/>.key"
SSLCertificateChainFile "/etc/httpd/certificados/COMODORSAAddTrustCA.crt"
SSLCACertificateFile "/etc/httpd/certificados/ca.crt"
SSLCARevocationFile "/extranet/crl/crl.pem"
Thanks!
--
*Rubén Toribio Aldeguer*
Técnico Sistemas DataCenter
Informática Área Sistemas
(+34) 971743030
www.riu.com / www.riuplaza.com
--
[image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter]
<http://twitter.com/#%21/RiuHoteles> [image: Flickr]
<http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube]
<http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus]
<https://plus.google.com/102337793674910512804/posts>
This e-mail and its attachments, if any, are confidential and may be
legally privileged. If you have received it in error, you are on notice of
this status. Please do not copy or use it for any other purpose or disclose
its contents to any other person: to do so could be a breach of confidence.
You may contact us at +34 971 74 30 30 or at sender's e-mail address.
[image: Facebook] *Please, consider the environment before printing this
email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
Re: [users@httpd] Using the most secure SSL cipher suites
I susgest to read this, may be you find it usesfull: https://wiki.mozilla.org/Security/Server_Side_TLS B.R. 2015-10-18 22:42 GMT+02:00 David Mehler : > Hello, > > I'm configuring a new apache 2.4 system which will have a webmail app > running on it. I'm wanting to use only the most current/secure ssl > ciphers and ones that offer perfect forward secrecy. I'm using FreeBSD > 10.1 and my openssl version is 1.0.1l. In the virtual host > configuration that will run the webmail app I have: > > SSLEngine on > SSLCipherSuite HIGH > > and then of course the path to my certificate and key. Do I need to do > anything else? > > On the subject of SSL certificates does anyone use certificates > generated from either cacert.org or smartssl, how well are they > supported by browsers and phones? > > Thanks. > Dave. > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > > -- *Rubén Toribio Aldeguer* Técnico Sistemas DataCenter Informática Área Sistemas (+34) 971743030 www.riu.com / www.riuplaza.com -- [image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter] <http://twitter.com/#%21/RiuHoteles> [image: Flickr] <http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube] <http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus] <https://plus.google.com/102337793674910512804/posts> This e-mail and its attachments, if any, are confidential and may be legally privileged. If you have received it in error, you are on notice of this status. Please do not copy or use it for any other purpose or disclose its contents to any other person: to do so could be a breach of confidence. You may contact us at +34 971 74 30 30 or at sender's e-mail address. [image: Facebook] *Please, consider the environment before printing this email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
Re: [users@httpd] HTTPS Redirect Not Working
Are some JkMount whith *share* regular expersion? may be it take acction before Proxy. 2015-10-09 16:16 GMT+02:00 Chris Arnold : > Apache 2.4.x on SLES12. We have a web app in tomcat that is directly > accessible by port 8080 and 8443. We use a combination of proxypass and > mod_jk to connect to it from apache (never could get this to work without > using both). We also use a https redirect to make it easier for the users. > So if you type share.domain.tld you land at > https://share.domain.tld/share. This worked up until a day ago. Now when > you type share.domain.tld you get a 404 and the address is NOT redirected > to https. Here is the redirect statements that have been working fine until > now: > > > # Redirect Share to HTTPS > ProxyPass /share/ https://share.domain.tld/share/ > ProxyPassReverse /share/ https://share.domain.tld/share/ > RedirectMatch ^/$ https://share.domain.tld/share/ > > > No updates have been done since this was working so i don't think that is > what broke it. Is there a way to tell if mod_jk is the culprit? > -- *Rubén Toribio Aldeguer* Técnico Sistemas DataCenter Informática Área Sistemas (+34) 971743030 www.riu.com / www.riuplaza.com -- [image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter] <http://twitter.com/#%21/RiuHoteles> [image: Flickr] <http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube] <http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus] <https://plus.google.com/102337793674910512804/posts> This e-mail and its attachments, if any, are confidential and may be legally privileged. If you have received it in error, you are on notice of this status. Please do not copy or use it for any other purpose or disclose its contents to any other person: to do so could be a breach of confidence. You may contact us at +34 971 74 30 30 or at sender's e-mail address. [image: Facebook] *Please, consider the environment before printing this email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
Re: [users@httpd] Hi
Yes. It can be set at compilation time. May be someone can write more details. 2015-09-21 18:54 GMT+02:00 omid zamani : > Hi > Does apache 2.4 have a hard limit on connections somewhere? > <http://serverfault.com/questions/443794/does-apache-2-4-have-a-hard-limit-on-connections-somewhere> > Thanks > -- *Rubén Toribio Aldeguer* Técnico Sistemas DataCenter Informática Área Sistemas (+34) 971743030 www.riu.com / www.riuplaza.com -- [image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter] <http://twitter.com/#%21/RiuHoteles> [image: Flickr] <http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube] <http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus] <https://plus.google.com/102337793674910512804/posts> This e-mail and its attachments, if any, are confidential and may be legally privileged. If you have received it in error, you are on notice of this status. Please do not copy or use it for any other purpose or disclose its contents to any other person: to do so could be a breach of confidence. You may contact us at +34 971 74 30 30 or at sender's e-mail address. [image: Facebook] *Please, consider the environment before printing this email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
Re: [users@httpd] haproxy and Apache load balancing?
Great question! I'm interested in that too. 2015-08-20 20:19 GMT+02:00 Rose, John B : > Does anyone have any comments good/bad/neither regarding using haproxy for > load balancing Apache? > -- *Rubén Toribio Aldeguer* Técnico Sistemas DataCenter Informática Área Sistemas (+34) 971743030 www.riu.com / www.riuplaza.com -- [image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter] <http://twitter.com/#%21/RiuHoteles> [image: Flickr] <http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube] <http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus] <https://plus.google.com/102337793674910512804/posts> This e-mail and its attachments, if any, are confidential and may be legally privileged. If you have received it in error, you are on notice of this status. Please do not copy or use it for any other purpose or disclose its contents to any other person: to do so could be a breach of confidence. You may contact us at +34 971 74 30 30 or at sender's e-mail address. [image: Facebook] *Please, consider the environment before printing this email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
Re: [users@httpd] query on Max clients reqest
Here you will get information about how config limits of an apache server. Its depend which method are you using: prefork, event or worker http://httpd.apache.org/docs/2.4/mod/mpm_common.html Other important parameter than must be fixed on linux is ulimits, especially maxopenfiles. Sorry if I don´t be more precise. 2015-06-11 5:25 GMT+02:00 aparna Puram : > Hello Team, > > Till what limit can the max clients value be increased in linux? is there > any limit in terms of numbers? > > and what other parameters are requried to be considered while changing the > max clients values? > > -- > Regards, > Aparna Puram > +919449473709 > -- *Rubén Toribio Aldeguer* Técnico Sistemas DataCenter Informática Área Sistemas (+34) 971743030 www.riu.com / www.riuplaza.com -- [image: Facebook] <http://www.facebook.com/Riuhoteles> [image: Twitter] <http://twitter.com/#%21/RiuHoteles> [image: Flickr] <http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube] <http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus] <https://plus.google.com/102337793674910512804/posts> This e-mail and its attachments, if any, are confidential and may be legally privileged. If you have received it in error, you are on notice of this status. Please do not copy or use it for any other purpose or disclose its contents to any other person: to do so could be a breach of confidence. You may contact us at +34 971 74 30 30 or at sender's e-mail address. [image: Facebook] *Please, consider the environment before printing this email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
[users@httpd]
Hi
we are working with a mod_maxminddb and apache 2.410.
mod_maxminddb is configured to set de env variable GEOIP_COUNTRY_CODE
The problem is that if we do:
RequestHeader set GEOIP_COUNTRY_CODE %{GEOIP_COUNTRY_CODE}e
We see correctly set the header. (is set to "ES", as we expected)
But,in this rewrite rules, GEOIP_COUNTRY_CODE seems to don't be seted, and
applies the alternative value "en" on the RewirteRule:
RewriteMap locale-to-pub txt:conf/rewrites/locale_to_pub_b2c_v61.txt
RewriteRule ^\/((index|home)(\.php|\.jsp))?$
/${locale-to-pub:%{ENV:GEOIP_COUNTRY_CODE}|en}/home.jsp
[R=301,NC,L,E=nocache:1]
This are ERROR TRACES from rewrite_mod, where we can see "key=" as void.
applying pattern '^\\/((index|home)(\\.php|\\.jsp))?$' to uri '/'
cache lookup FAILED, forcing new map lookup
map lookup FAILED: map=locale-to-pub[txt] key=
rewrite '/' -> '/en/home.jsp'
After some research, and tests, we know that if we force the variable whit
SetEnIf GEOIP_COUNTRY_CODE=ES
it works. It is because SetEnIf sets the variable at the begining of the
request, before mod_rewrite take acction. In this way, seems like
mod_maxmiddb is taking acction after mod_rewrite.
How can we confirm it? How can we workaround it?
--
*Rubén Toribio Aldeguer*
Técnico Sistemas DataCenter
Informática Área Sistemas
(+34) 971743030
www.riu.com / www.riuplaza.com
--
[image: Facebook]
<http://www.facebook.com/Riuhoteles> [image: Twitter]
<http://twitter.com/#%21/RiuHoteles> [image: Flickr]
<http://www.flickr.com/photos/riuhotels/collections/> [image: Youtube]
<http://www.youtube.com/user/RiuHotelsandResorts> [image: Google Plus]
<https://plus.google.com/102337793674910512804/posts>
This e-mail and its attachments, if any, are confidential and may be
legally privileged. If you have received it in error, you are on notice of
this status. Please do not copy or use it for any other purpose or disclose
its contents to any other person: to do so could be a breach of confidence.
You may contact us at +34 971 74 30 30 or at sender's e-mail address.
[image: Facebook] *Please, consider the environment before printing this
email.* <http://www.riu.com/es/sostenibilidad/inicio.jsp>
