Re: [users@httpd] ApacheCon CFP closes June 25

Rich Bowen wrote: On 06/16/2014 11:06 AM, J.Lance Wilkinson wrote: ...snip... Those of us at edu sites sometimes need to put in for travel/training funding as much as a year in advance, and my own institution's budgeting process cuts of June 30th for the Fiscal Year 2014

Re: [users@httpd] ApacheCon CFP closes June 25

n on when/where for the next ApacheCon NA? Those of us at edu sites sometimes need to put in for travel/training funding as much as a year in advance, and my own institution's budgeting process cuts of June 30th for the Fiscal Year 2014-2015. -- J.Lance Wilkinso

Re: [users@httpd] Enabling ECDHE ciphers

1e-16.el6_5.7.x86_64 RedHat, he tells me, does not distribute the new version but actually weng back and applied the relevant patches TO THEIR DISTRIBUTED VERSION. Note the -16. That's the indicator. It seems that RedHat thinks they know better than we. -- J.Lance Wilkinson (&q

Re: [users@httpd] Adobe cq behind reverse proxy

/cq/ Www.cqserver.com:4502 Proxypassreverse /cq/ Www.cqserver.com:4502 But unfortunately, this doesnt worked. Please advise what else can i do to make it working. I'm no proxy expert, but why aren't you using the CQ Dispatcher instead? -- J.Lance Wilkins

Re: [users@httpd] ApacheCon (OT question for US taxpayers)

ut of pocket while doing theis INDEPENDENT CONTRACTING, that he received not a salary for, but rather a fee for services, were deductable, I believe, provided they satisfied the requirements for that Schedule C. Like Rich says, consult an accountant. -- J.Lan

Re: [users@httpd] ApacheCon 2014 and Call for Papers

J.Lance Wilkinson wrote: Those of us who have to fight for funding need to know all the details ASAP, especially with such short lead time before the event. Lodging rates are critical, since we now know the dates and and location (THANK YOU!). I'm assuming there a

Re: [users@httpd] ApacheCon 2014 and Call for Papers

again. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Information Technology Services FAX: (814) 863-3560 Penn State University Digital Library Technologies, E3 Paterno Library, Unive

Re: [users@httpd] Android device ID not show on access_log

172.16.33.124 - - [07/Dec/2012:13:29:37 +0900] "GET /data/playgirls-14.ts HTTP/1.1" 200 2103156 "-" "stagefright/1.2 (Linux;Android 4.0.4)" - client side, the header is: Mozilla/5.0 (Linux; U; Android 4.0.4; ko-kr; SHW-M380W Build/IMM76D) AppleWebKit/534.30 (

Re: [users@httpd] Compiled/linked executable CGI script crashes when run as CGI, runs to completion when run outside HTTPD

Jeff Trawick wrote: On Mon, Dec 3, 2012 at 11:17 AM, J.Lance Wilkinson <mailto:jl...@psu.edu>> wrote: Jeff Trawick wrote: On Mon, Dec 3, 2012 at 10:28 AM, J.Lance Wilkinson mailto:jl...@psu.edu> <mailto:jl...@psu.edu <mailto:jl...@psu.edu>>&g

Re: [users@httpd] Compiled/linked executable CGI script crashes when run as CGI, runs to completion when run outside HTTPD

Jeff Trawick wrote: On Mon, Dec 3, 2012 at 10:28 AM, J.Lance Wilkinson <mailto:jl...@psu.edu>> wrote: Jeff Trawick wrote: Run under valgrind from the shell, and if that doesn't work create a wrapper script to be the CGI and use the wrapper script to i

Re: [users@httpd] Compiled/linked executable CGI script crashes when run as CGI, runs to completion when run outside HTTPD

d and valgrind line wrapped for brevity) #!/bin/sh valgrind --leak-check=full --track-origins=yes \ --log-file=/.../logs/valgrind.request.log /.../request CGI script runs to completion. El 03/12/12 15:37, J.Lance Wilkinson escribió: Title pretty much

Re: [users@httpd] Compiled/linked executable CGI script crashes when run as CGI, runs to completion when run outside HTTPD

Antonio Moreno wrote: El 03/12/12 15:37, J.Lance Wilkinson escribió: Title pretty much says it all. Doesn't look like your posting is related to mine at all... (No parece que su anuncio está relacionado con la mía en todo ...) HTTPD is 2.2.15 on RHEL6. Executable a

[users@httpd] Compiled/linked executable CGI script crashes when run as CGI, runs to completion when run outside HTTPD

ome ulimit kind of thing resulting in less memory actually being available for the thousands of malloc() calls the executable performs. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library Techn

Re: [users@httpd] MIME types not delivering

J.Lance Wilkinson wrote: The file itself is being genrated not via a CGI but some Oracle process (this IS an Apache configured by Oracle after all), so he's trying to figure out now just what might be generated by that procedure, which DOES seem to generate a Content-Type h

Re: [users@httpd] MIME types not delivering

to assign (although application/octet would be better, eh?). -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library TechnologiesFAX: (814) 863-3560 E3 Paterno Library Penn State U

Re: [users@httpd] MIME types not delivering

Eric Covener wrote: On Thu, Oct 25, 2012 at 9:33 AM, J.Lance Wilkinson wrote: A colleague is running "Oracle-Application-Server-11g/11.1.1.4.0 Oracle-HTTP-Server" which is basically Apache HTTPD v2.2.15, and he's having an issue when delivering content of certain MIME types,

[users@httpd] MIME types not delivering

ng the response headers on delivery to report "Content-Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document" Something obvious we're not catching? -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Sp

Re: [users@httpd] Two OS's, two HTTPDs, two different handlings of Mime Type?

Alex Bligh wrote: --On 22 August 2012 13:05:40 -0400 "J.Lance Wilkinson" wrote: ForceType nor the fact the file extension, .ram, has a match for the mime type of audio\x-pn-realaudio in the cited TypesConfig file seems to be applying the correct Content-Type hea

Re: [users@httpd] Two OS's, two HTTPDs, two different handlings of Mime Type?

Tom Evans wrote: On Wed, Aug 22, 2012 at 4:26 PM, J.Lance Wilkinson wrote: Eric Covener wrote: I wonder if on the 2nd system the files are not really served by the "default handler" and somehow end up pumped through e.g. PHP? We've noted that NO MATTER WHERE this Fi

Re: [users@httpd] Two OS's, two HTTPDs, two different handlings of Mime Type?

half of Apache is. Is ForceType failing, or is it our regular expression or something else? Again, happy to kick LogLevel to 64 or more if that'll help. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - Lead

Re: [users@httpd] Two OS's, two HTTPDs, two different handlings of Mime Type?

ng that if possible on the odd chance there's a difference in Content-Type coming out of that handler. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library Technologie

[users@httpd] Two OS's, two HTTPDs, two different handlings of Mime Type?

e way HTTPD makes its Content-Type determination, like there is for example with a RewriteLogLevel 9 for debugging Rewrite Rules, in Apache HTTPD v2.2.15 ? I'll note I even put in the following, to no avail: ForceType audio/x-pn-realaudio -- J.Lance Wilkinson ("L

Re: [users@httpd] SetEnvIf failure or success?

J.Lance Wilkinson wrote: 3) SetEnvIf REQUEST_URI "^(.*)/umg-(.*)$" UMG=$1 Logs (non-matching) REQUEST_URI of "/server-info?config" as: ."GET /server-info?config HTTP/1.1" 200 38314 UMG=- Logs (matching) REQUEST_URI of "/umgs/umg-up.dlt.ul.gml.manag

Re: [users@httpd] SetEnvIf failure or success?

.html I have to wonder if it's not the parsing, but the assignment that's failing, that version 2.0.15 thing -- that my Solaris 10 version of the code is old... Aside -- shouldn't there be a way I can examine the mod_setenvif.so file to determine which version it is?

Re: [users@httpd] SetEnvIf failure or success?

Eric Covener wrote: On Thu, Mar 22, 2012 at 10:18 AM, J.Lance Wilkinson wrote: I'm trying to extract part of a URI into an environment variable to use in an authorization scheme (let's skip talking about how I'll USED that variable for the moment). I have the following d

Re: [users@httpd] SetEnvIf failure or success?

ou MADE me bring it back ;-) Anyway, that's why both SetEnvIf (to extract the variable value) and the stanza (try try to make use of it in authorization efforts). -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Speci

Re: [users@httpd] SetEnvIf failure or success?

same handling restrictions. I use this kind of pattern in a lot of other restriction impositions in my server. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library Technologies

[users@httpd] SetEnvIf failure or success?

diate access to the source used for mod_setenvif so I can't say FOR CERTAIN that it's v2.0.51 or later such that the $2 in the value specification is legitimate. Is there anything obvious in these directives that would bear out one of these suspicions, or would point in a different

Re: [users@httpd] Dynamic selection of mod_authnz_ldap's 'require ldap-group' object?

J.Lance Wilkinson wrote: I don't believe I ever got a reply to this, so since it's been a month I'll repeat it... the story so far: I have a need to be able to parse into an environment variable (using Rewrite rules or some such) a value that then can be use

Re: [users@httpd] Dynamic selection of mod_authnz_ldap's 'require ldap-group' object?

e may be using those features on our university-wide LDAP server here, but not in that manner. I have used at least one ibm-* attribute in other capacities, but with custom developed code in a CGI script, not at the Apache authentication/authorization level. -- J.Lanc

Re: [users@httpd] Re: Any suggestions for a presentation at ApacheConNA2012?

t least 2 full track days and perhaps 2 or 3 different trainings to offer. I'd been under the impression that there was not to be an ApcheCon NA (emphasis on NA) for 2012. Europe only as I understood at the close of ApacheCon NA 2011. Has that CHANGED? I need to know so I can request

[users@httpd] RemoteIP and private networks (was: Logging ALL cookies on requests from specific IP address range?)

l? Now, this is in effect with RemoteIPHeader X-Forwarded-For RemoteIPTrustedProxy 128.118.12.34 RemoteIPInternalProxy 128.118.12.34 in place... Tried with only RemoteIPInternalProxy specified as well, same results. Thoughts? -- J.Lance Wilkinson ("Lance") I

Re: [users@httpd] Dynamic selection of mod_authnz_ldap's 'require ldap-group' object?

acities, but with custom developed code in a CGI script, not at the Apache authentication/authorization level. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library Technolog

Re: [users@httpd] Dynamic selection of mod_authnz_ldap's 'require ldap-group' object?

ilter dynamically would probably do the trick. Thanks. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library TechnologiesFAX: (814) 863-3560 E3 Paterno Library Penn S

Re: [users@httpd] Dynamic selection of mod_authnz_ldap's 'require ldap-group' object?

ied by that presented URI without somehow enhancing the functionality of the REQUIRE directive and the extention that mod_authnz_ldap (or maybe it's util_ldap or some other module?) provides when is adds ldap-group and ldap-filter as potential objects to the directi

Re: [users@httpd] checking logs

ob or something similar Regards, Miguel What about NAGIOS, it can watch just about anything dynamically. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library Technologies

[users@httpd] Logging ALL cookies on requests from specific IP address range?

e) : - - [] "GET /images/twitter.jpg HTTP/1.0" 200 1014 "-" Does this mean the cookie named "the-cookie-name" did not appear in the request? I tried getting ALL cookies by using %{*}C and got the same results. I'd like to get ALL the cookies, since we don

[users@httpd] Dynamic selection of mod_authnz_ldap's 'require ldap-group' object?

ithout having to rewrite or add on to mod_authnz_ldap ? Maybe some way to inject the desired group into the ldap-filter format of the require directive? -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 86

Re: [users@httpd] RE: Can you use variables inside a conf file?

r additional commands, e-mail: users-h...@httpd.apache.org -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library TechnologiesFAX: (814) 863-3560 E3 Paterno Library P

Re: [users@httpd] Clarification on Apache timeouts

ache HTTPD in some for or another on 4 different OS's [OpenVMS, Windows, Solaris and Linux]for the past 7 or 8 years), would not be doing any socket calls on behalf of any authentication system. That kind of thing is only done from within the PHP user's PHP code, or external to the P

Re: [users@httpd] HTTP meetup at ApacheCon?

On 29.10.2011 17:38, Sander Temme wrote: On Oct 29, 2011, at 7:20 AM, Eric Covener wrote: Please bump the interest count linked below if you'll attend the HTTP meetup on Thursday Nov 11 at ApacheCon in Vancouver: Done... who else is coming? I've signed up. -- J.Lance

Re: [users@httpd] Rewrite confusion

Eric Covener wrote: On Thu, Oct 27, 2011 at 3:22 PM, J.Lance Wilkinson wrote: RewriteRule ^/robots.txt$ \ https://secureappsdev.libraries.psu.edu/robotz/robots.pl \ [L,T=application/x-httpd-cgi] Try a substitution of this for arg2 and arg3? /robotz/robots.pl [L,PT

[users@httpd] Rewrite confusion

rtualHost definition The VH stanza contains not only these Rewrite directives, but also contains ScriptAlias /robotz/ "/dlt/webservers/cf9/robots/" The stanza is EXTERNAL to the VH stanza, just like it is on the Solaris configuration where all this works. Thoughts?

Re: [users@httpd] Intermittent access to web address

your friend's, access to you. Read your terms of service with them before spending too much time debugging things. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library Technol

Re: [users@httpd] mod_dbd, mod_authn_dbd examples

eable experimentation on my behalf like this. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library TechnologiesFAX: (814) 863-3560 E3 Paterno L

Re: [users@httpd] mod_dbd, mod_authn_dbd examples

or something like that, the only thing I see is the --with-apr=DIR or FILE configuration option. It's clear as mud to me, sorry. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 D

Re: [users@httpd] mod_dbd, mod_authn_dbd examples

Nick Kew wrote: On Thu, 15 Sep 2011 17:01:17 -0400 "J.Lance Wilkinson" wrote: Now, I am NOT a Database person. I used what was in the mod_authn_dbd documentation just to get started. The mod_dbd docs says this selects an apr_dbd driver name. It's not clear to me if I even H

[users@httpd] mod_dbd, mod_authn_dbd examples

and Rich's _Cookbook_ ;-P) and haven't found anything yet. Somebody take pity? -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library Technologies

Re: [users@httpd] Single Value Authentication Module

Terry Carmen wrote: Quoting "J.Lance Wilkinson" : > Terry Carmen wrote: >> >> >> Quoting "J.Lance Wilkinson" : >> >> > I'm looking for a VERY SIMPLE single value authentication module >> (like BASIC >> > Auth

Re: [users@httpd] Single Value Authentication Module

Terry Carmen wrote: Quoting "J.Lance Wilkinson" : > I'm looking for a VERY SIMPLE single value authentication module (like BASIC > Authentication, but only a USER ID, no prompt for PASSWORD) for Apache 2.2.x. > User IDs that will be used are going to be long

[users@httpd] Single Value Authentication Module

x27;d prefer to avoid the overhead of developing an application-specific module. Suggestions? -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library TechnologiesFAX: (814) 863-356

Re: [users@httpd] Incompatibilities between mod_remoteip and the server-info & server-status handlers?

Firefox/2.0.0.20 (.NET CLR 3.5.30729)" I'm wondering now if this issue could have to do more w/ my Order, Deny and Allow directives than with and incompatibility between the mod_remoteip module and the server-info/server-status handlers... -- J.Lance Wilkinson ("Lance")

[users@httpd] Incompatibilities between mod_remoteip and the server-info & server-status handlers?

balancer is to just see which server is being handed any arbitrary request; it's a trivial thing. But if it SHOULD be working I'd like to know what I'm doing wrong. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - L

[users@httpd] Incompatibilities between mod_remoteip and the server-info & server-status handlers?

t from the load balancer is to just see which server is being handed any arbitrary request; it's a trivial thing. But if it SHOULD be working I'd like to know what I'm doing wrong. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specia

Re: [users@httpd] Authentication based on QUERY STRING

me and Oracle application. After floating some alternatives back to him, I offered to pass on the conceptual request to this august group on the off chance it wasn't as ill-advised as I suspected. Turns out, however, that it's even more ill-advised than

Re: [users@httpd] Authentication based on QUERY STRING

Rich Bowen wrote: On Jan 26, 2011, at 10:52 AM, J.Lance Wilkinson wrote: I have a developer who's using Apache 1.3.9 (supplied as Oracle HTTP server within Oracle Application Express) and needs to SUPPRESS his default authentication (mod_cosign from weblogin.org) when the user's QU

[users@httpd] Authentication based on QUERY STRING

tinue to enforce his authentication. Thoughts? -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library TechnologiesFAX: (814) 863-3560 E3 Paterno Library Penn State Univer

Re: [us...@httpd] HTTP header fields

pid server they're running, no wonder they have problems." But somebody with more malicious intent could interpret and abuse based on what they see. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist -

Re: [us...@httpd] Apache HTTPD 2.2.6 + mod_ssl 2.2.6 -- odd error...

J.Lance Wilkinson wrote: Sander Temme wrote: On Nov 30, 2010, at 8:37 PM, J.Lance Wilkinson wrote: But my httpd log files present an unexpected error each and every time a browser visits an SSL encrypted page (2 examples cited): So there is no discernible negative impact on the client

Re: [us...@httpd] Apache HTTPD 2.2.6 + mod_ssl 2.2.6 -- odd error...

Sander Temme wrote: On Nov 30, 2010, at 8:37 PM, J.Lance Wilkinson wrote: But my httpd log files present an unexpected error each and every time a browser visits an SSL encrypted page (2 examples cited): So there is no discernible negative impact on the client? Correct. At the

[us...@httpd] Apache HTTPD 2.2.6 + mod_ssl 2.2.6 -- odd error...

v2.2.3 has no such issues; naturally the powers that be have no examples of v2.2.6 on Solaris to compare against. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library Technologies

Re: [us...@httpd] Re-use of a Setenv directive

talking about mod_define to get this functionality? -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library TechnologiesFAX: (814) 863-3560 E3 Paterno Library Penn State

Re: [us...@httpd] Handling load balancer's X-FORWARDED-FOR header: mod_proxy vs mod_remoteip and Apache 2.2.6

William A. Rowe Jr. wrote: On 10/19/2010 7:28 AM, J.Lance Wilkinson wrote: Short of modifying the source code to backfit it to 2.2.6 (which I am at a loss how to do), it's been suggested I look at mod_proxy, which is apparently part of the base for 2.2.6 (I am explicitly NOT loading

Re: [us...@httpd] Handling load balancer's X-FORWARDED-FOR header: mod_proxy vs mod_remoteip and Apache 2.2.6

Will look into this one right away. -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design Specialist - LeadPhone: (814) 865-4870 Digital Library TechnologiesFAX: (814) 863-3560 E3 Paterno Library Pe

[us...@httpd] Handling load balancer's X-FORWARDED-FOR header: mod_proxy vs mod_remoteip and Apache 2.2.6

Thoughts on either the refitting for Apache 2.2.6 of mod_remoteip, using mod_proxy for the same purpose, or some other method of achieving this with the module's I've got to work with? -- J.Lance Wilkinson ("Lance") InterNet: lance.wilkin...@psu.edu Systems Design