RE: [users@httpd] CAC Card Authentication

-Original Message- From: McGregor, Donald (Don) (CIV) Sent: Friday, May 30, 2014 0:01 I'm attempting to get CAC card authentication working with Apache httpd-2.2.3-85 on Centos 5. CAC cards are the DoD Here is what I tell my employees and contractors to do first. Get is working

Re: [users@httpd] Preserve protocol in httpd proxy

Hmmm... let me mull this over. BTW: CCing on dev@ On May 29, 2014, at 11:18 AM, Juan Ignacio Barisich juan.baris...@gmail.com wrote: I need to configure in Apache 2.4.9 (with mod_proxy and mod_proxy_wstunnel activated) a proxy with this mapping: - http://my.proxy/* --

Re: [users@httpd] Preserve protocol in httpd proxy

I also would like to know :) Is it also possible using Apache 2.4.7? On Fri, May 30, 2014 at 9:08 PM, Jim Jagielski j...@jagunet.com wrote: Hmmm... let me mull this over. BTW: CCing on dev@ On May 29, 2014, at 11:18 AM, Juan Ignacio Barisich juan.baris...@gmail.com wrote: I need to

[users@httpd] Recommendation for Apache security book

Hello, I was assigned with the task of preparing a security policy for Apache HTTP servers in my company and, despite I have a few years of experience with it (mostly v2.2), I'd like to have a more formal reference material on which I could base the policy. Please, is there any good (and not

Re: [users@httpd] Recommendation for Apache security book

Check out the NIST and DISA checklist and STIG docs, they are good places to start - their checks are based on industry best practices and Apache httpd CVEs. http://iase.disa.mil/stigs/downloads/zip/unclassified_web_srr_checklist_apache_v6r1-12_20100423.zip

Re: [users@httpd] Preserve protocol in httpd proxy

Off the top of my head, I think we would need to add another proxypass option. On May 30, 2014, at 10:21 AM, Maxim Solodovnik solomax...@gmail.com wrote: I also would like to know :) Is it also possible using Apache 2.4.7? On Fri, May 30, 2014 at 9:08 PM, Jim Jagielski j...@jagunet.com

[users@httpd] LDAP Login Access by Organization Unit

Hi Community: I am implementing a svn and git repository servers and users have to access them with their LDAP/AD accounts. Those users are classified by organizational units(OU), that makes in total of 7 OUs. This setting was set in a file called auth_ldap.conf; for example: AuthnProviderAlias

Re: [users@httpd] LDAP Login Access by Organization Unit

On Fri, May 30, 2014 at 5:32 PM, Darly Senecal Baptiste dsenec...@gmail.com wrote: By my surprise, Apache accessed only to the first 2 providers mentioned at the list (ldap-ny, ldap-mia) but not to Chicago. And giving the same Password Mismatch. Can you share an error log at LogLevel debug