Frightening.
FWIW - see http://httpd.apache.org/security/vulnerabilities_13.html
Fauziah Mahdan wrote:
> I have read all the posting regarding this servertokens or hide web
> banner/header
> http://marc.theaimsgroup.com/?l=apache-httpdusers&w=2&r=1&s=servertokens
> &q=b
>
> Most of them at least
I have read all the posting regarding this servertokens or hide web
banner/header
http://marc.theaimsgroup.com/?l=apache-httpdusers&w=2&r=1&s=servertokens
&q=b
Most of them at least get result when they set the servertokens prod
Apache without version will appear.
But my one still preview the whol
What you have described is the entire purpose for a DMZ: a private
network zone that can only be accessed through known end points on other
networks so that interception from the outside is not possible. If you
can validate your DMZ, then your unencrypted traffic from your web
servers to your appli
Hi,
I am running an apache 2.2.3 web server which is located in the
firewall's DMZ. Our web server communicates with several tomcat nodes
located within the firewall's internal network via mod_jk 1.2.20. I
have successfully configured SSL on our Apache server and would like to
begin accep
On Feb 12, 2007, at 11:25 AM, Jonathan Mangin wrote:
Does anyone know where I can FTP the latest version
of mod_auth_mysql?
How about http://modauthmysql.sourceforge.net/ ?
File downloads are enabled in IE but refuse to work.
That's between you (and IE) and Sourceforge... unfortunately we
Does anyone know where I can FTP the latest version
of mod_auth_mysql?
File downloads are enabled in IE but refuse to work.
Thanks,
Jon
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://htt
Chris 'Xenon' Hanson wrote:
> 1. Is HE.net making a mistake in using access_log to count bandwidth?
>1a. What would be the right way to do it?
>1b. Are they doing it this way because they're using some existing
> tool that does it this way?
>1c. Are other hosts doing it this way, and
On 2/12/07, Chris 'Xenon' Hanson <[EMAIL PROTECTED]> wrote:
1. Is HE.net making a mistake in using access_log to count bandwidth?
If they are doing it naively using the default log format, then yes
they are making a mistake.
2. What exactly does the number after the 206 code in the acc
The VTP project (vterrain.org) recently had an interesting experience where
bandwidth-monitoring (and billing) procedures reported an enormous bandwidth spike,
resulting in a big hosting bill.
The billing situation was resolved amicably, but in the spirit of understanding what
really happe
Hi Jose,
Are you using apache 1.3 or 2.0? I think the ?i flag is only supported
on 2.0.
If you're using 1.3 you could always do something along the lines of:
AliasMatch ^/[xX][yY][zZ]
Best,
Jesse Ross
Jose Adriano Baltieri wrote:
I need to build an alias that is case INsensitive.
Say th
I need to build an alias that is case INsensitive.
Say that the url is this : http://www.myserver.com/xyz/filepath.htm
I need that "xyz" can be typed anyway, that is, xYz or XYZ or whatever.
How can I do that ?
I have tried this :
AliasMatch (?i)^/xyz(.*)"C:/xyz$1"
Options MultiV
OK, at least it sound like the httpd end of things is in tact. I will
continue my quest on the Tomcat list. Thanks for pointing me in the right
direction!
~Dave
On Monday 12 February 2007 10:18:56 Pid wrote:
> Dave Shuck wrote:
> > I hate to spam up the list with this issue, but I have anoth
Dave Shuck wrote:
I hate to spam up the list with this issue, but I have another question if you
would indulge me. To strip this down a bit, let's just forget about the
multiple instances and say I have a single instance of Tomcat and have
installed ColdFusion as an application within it.
Hi,
I have a couple of questions about the inner workings of the apachectl
graceful command and I can't seem to find the answer anywhere so maybe
you can help.
Normally with a graceful the following happens.
I issue a graceful.
With strace I see something like this:
stat64("/usr/local/ap
I hate to spam up the list with this issue, but I have another question if you
would indulge me. To strip this down a bit, let's just forget about the
multiple instances and say I have a single instance of Tomcat and have
installed ColdFusion as an application within it.
So far I have been
As root you can see the PATH variable for any running process in the
/proc directory. Here is what you need to do:
1. su to root
2. run the command ps -e | grep httpd which will show you all of
process ids for apache
3. cd to /proc and do an ls. You should see a directory with the same
If you are writing PHP then check http://koivi.com/php-http-auth/
On 2/12/07, Tony Morris <[EMAIL PROTECTED]> wrote:
I have a single users file that is output from htpasswd/2 and I'm
looking for a web application that allows users to authenticate and
change their password in the users file.
I a
Dave Shuck wrote:
Pid, I appreciate your response. I would like to understand this a little
better as it is currently just slightly more clear than voodoo magic to me.
Is the specification of the port what points it to a specific instance on
Tomcat? If so, I am assuming that I have to create
Hi all:
I don't know if this is the correct list for my question.
I'm trying to authenticate my web server with an Oracle database. I've
been searching for a god module for doing it but I couldn't find
nothing. I've tried mod_auth_oracle but I cannot make it work with
apache2 (2.2.3). My ques
19 matches
Mail list logo