RE: [us...@httpd] Questions about implementing SSL/VirtualHosts

> -Original Message- > From: Justin Pasher [mailto:just...@newmediagateway.com] > > Many others have provided some information, but here's a > basic summary > (assuming no SNI support): > > (a) Single FQDN, single DocumentRoot - Single IP. > (b) Multiple FQDN, single DocumentRoot - Sin

Re: [us...@httpd] Questions about implementing SSL/VirtualHosts

* Boyle Owen [2009-12-15 10:22]: > > -Original Message- > > From: Justin Pasher [mailto:just...@newmediagateway.com] > > (a) Single FQDN, single DocumentRoot - Single IP. > > (b) Multiple FQDN, single DocumentRoot - Single IP, assuming cert > > supports all (sub)domains listed. Otherwise

[us...@httpd] Calculating settings for mpm-worker/mod_proxy_ajp/Tomcat

Hello, can anybody tell me how to adjust the different min/max settings for the MPM worker, mod_proxy_ajp and Tomcat connector so that the configuration is aligned and there is no miss configuration on either side? On Tomcat's side i use the default value for the AJP connector of maxThre

Re: [us...@httpd] Calculating settings for mpm-worker/mod_proxy_ajp/Tomcat

On Tue, Dec 15, 2009 at 5:43 AM, Chris Jölly wrote: > Hello, > > on mod_proxy_ajp the MPM workers  ThreadsPerChild of 25. I think that > > ThreadsPerchild can increase to ThreadLimit of 64 if the load increases, > right? No. ThreadsPerChild doesn't change at runtime, it's always exactly what you

RE: [us...@httpd] Calculating settings for mpm-worker/mod_proxy_ajp/Tomcat

> -Original Message- > From: Eric Covener [mailto:cove...@gmail.com] > Sent: Dienstag, 15. Dezember 2009 13:06 > To: users@httpd.apache.org > Subject: Re: [us...@httpd] Calculating settings for mpm- > worker/mod_proxy_ajp/Tomcat > > On Tue, Dec 15, 2009 at 5:43 AM, Chris Jölly wrote: > >

Re: [us...@httpd] Questions about implementing SSL/VirtualHosts

Peter Schober wrote: * Boyle Owen [2009-12-15 10:22]: -Original Message- From: Justin Pasher [mailto:just...@newmediagateway.com] (a) Single FQDN, single DocumentRoot - Single IP. (b) Multiple FQDN, single DocumentRoot - Single IP, assuming cert supports all (sub)domains listed. Ot

[us...@httpd] Using SSLCipherSuite to restrict to faster cipher algorithms

Hello, I have a setup where Apache 2.2.3 is serving a large SVN repository with WebDAV over HTTPS (using basic authentication). Everything is working correctly; I would simply like to force usage of faster cipher algorithms (trading some security in favor of speed) than what seems to be allowed

[us...@httpd] Enabling SSL on a virtual host

I have a single webserver (1 IP) to which many DNS entries point to. Up till now I've haven't needed SSL and the following config pattern has worked fine for me: ServerName foo.mysite.com ... ServerName bar.mysite.com ... However, when I added SSL to to foo.mysite.com, the config had to be

Re: [us...@httpd] Enabling SSL on a virtual host

On Tue, Dec 15, 2009 at 10:48 AM, Jonathan Mast wrote: > So my question is, how do I configure the VirtualHost to allow HTTP traffic > (port 80) and HTTPS traffic (443)? You need two virtualhosts, one with SSL and one without. If you want everything other than SSL to be common, use Include to sou

Re: [us...@httpd] Enabling SSL on a virtual host

I'm thinking that the host name actually is required in the VirtualHost declaration. But the 2 separate VirtualHost entries worked, thanks On Tue, Dec 15, 2009 at 10:53 AM, Eric Covener wrote: > On Tue, Dec 15, 2009 at 10:48 AM, Jonathan Mast > wrote: > > So my question is, how do I configure

[us...@httpd] Request Counting algorithm

Hi, I was trying to implement Round Robin in mod_proxy, but I realized that Request Counting is like as Round Robin when all values of lbfactor are equal. Is That right ??? -- Thank you Ricardo

Re: [us...@httpd] Request Counting algorithm

ricardo figueiredo wrote: Hi, I was trying to implement Round Robin in mod_proxy, but I realized that Request Counting is like as Round Robin when all values of lbfactor are equal. Is That right ??? That sounds like a valid deduction. It don't think that it is necessarily of the same level as

Re: [us...@httpd] Request Counting algorithm

Althrough, I did some tests and measuring the actives connections. The distribuition of requests doesn't equal. For example: A B C D 120 158 138 117 Using RR would be: A B C D 125 127 124 126 I think tha

Re: [us...@httpd] Request Counting algorithm

On Tue, Dec 15, 2009 at 12:20 PM, ricardo figueiredo wrote: > Althrough, I did some tests and measuring the actives connections. > The distribuition of requests doesn't equal. > For example: > A          B           C           D > 120      158       138       117 > Using RR would be: > A        

Re: [us...@httpd] Request Counting algorithm

Almost, but not quite. RR says "go to the next one in the list, no matter if it was just the last one to return" whereas the request counting one factors that in... So even though after a period of time all will share 1/4 of the load, the ordering in which they share it will not be the same. On De

Re: [us...@httpd] Request Counting algorithm

Perfect !!! I want to know "How does It work ??" Ricardo On Tue, Dec 15, 2009 at 5:08 PM, Jim Jagielski wrote: > Almost, but not quite. RR says "go to the next one in the list, no > matter if it was just the last one to return" whereas the request > counting one factors that in... So even thou

Re: [us...@httpd] Using SSLCipherSuite to restrict to faster cipher algorithms

François Beaune wrote: Hello, I have a setup where Apache 2.2.3 is serving a large SVN repository with WebDAV over HTTPS (using basic authentication). Everything is working correctly; I would simply like to force usage of faster cipher algorithms (trading some security in favor of speed) t

[us...@httpd] best way to modify a URL

I have a simple problem: the URL root for a client website we are setting up is http://foo.com/bar/*, but our client wants access to be it via http://dodo.foo.com/*, how would I set this up? I have used mod_proxy in the past for something similar but this doesn't seem to be

Re: [us...@httpd] best way to modify a URL

Oliver Schoenborn wrote: I have a simple problem: the URL root for a client website we are setting up is http://foo.com/bar/*, but our client wants access to be it via http://dodo.foo.com/*, how would I set this up? I have used mod_proxy in the past for something similar

Re: [us...@httpd] best way to modify a URL

Oliver Schoenborn wrote: I have a simple problem: the URL root for a client website we are setting up is http://foo.com/bar/*, but our client wants access to be it via http://dodo.foo.com /*, how would I set this up? I have used mod_proxy in the past for something similar

Re: [us...@httpd] rewriterules

Rabadan Palenque, Jose wrote: RewriteEngine On RewriteRule ^/(.*) http://localhost:8080/VirtualHostBase/https/%{SERVER_NAME}:443/$1 [P] This works fine. But now I need to put the apache on other server behind DMZ I thought that this work fine but doesn’t work RewriteEngine On Rewr

Re: [us...@httpd] Using SSLCipherSuite to restrict to faster cipher algorithms

Hey Justin, Thanks for your answer. I did add the various versions of the SSLCipherSuite directive to my virtual host container, sorry if that wasn't clear. In the meantime I found that, by inspecting the handshake between TortoiseSVN and Apache, the connection does use RC4, which is good. Stil