Re: [users@httpd] brotli module loaded but doesn't work

On 06/22/2018 12:35 AM, Michael A. Peters wrote: *snip* Okay looks like a difference between what is actually in Apache and what websites idicate. Seems with the code in Apache, for the filter BROTLI_COMPRESS is correct - not BROTLI. Not sure about setting compression level and window size

[users@httpd] brotli module loaded but doesn't work

Apache 2.4.33 compiled from source (built as rpm) with --enable-brotli switch. CentOS 7. [alice@localhost ~]$ rpm -ql httpd |grep brotli /usr/lib64/httpd/modules/mod_brotli.so [alice@localhost ~]$ brotli --version brotli 1.0.4 [alice@localhost ~]$ ldd /usr/lib64/httpd/modules/mod_brotli.so

Re: [users@httpd] .php3 files recognised but .php files not

On 06/10/2018 06:04 AM, Paul Gardiner wrote: I have just installed openSUSE Leap 15.0 on a server including Apache 2.4.33 and php 7.2.5. If I attempt to access .php files, I'm offered them as downloads, although renaming them to .php3 makes them work fine. I have this file amongst my apache

Re: [users@httpd] Re: TLS 1.3

On 03/29/2018 01:05 AM, @lbutlr wrote: On 2018-03-28 (09:02 MDT), David Mehler wrote: What are some advantages of 1.3? Faster. Less kruft. Drops many near-EOL cryptos. But the main one is that is allows Perfect Forward Secrecy (PFS) which means that even is someone

Re: [users@httpd] SSL cipher suites

Yes, I only use ciphers that implement forward secrecy. On 02/18/2018 01:58 PM, David Mehler wrote: Hi, Thanks. Are these ciphers pfs friendly? Thanks. Dave. On 2/18/18, Michael A. Peters <mpet...@domblogger.net> wrote: On 02/18/2018 09:00 AM, David Mehler wrote: Hello, I'm l

Re: [users@httpd] SSL cipher suites

On 02/18/2018 09:00 AM, David Mehler wrote: Hello, I'm looking for recommendations. I'm running apache 2.4 and Openssl 1.0.2n. I'm looking for the strongest certificates that support TLSV1.2 and PFS. Recommendations/pro/conns welcome. Thanks. Dave. For sites that don't need Tumblr to be

Re: [users@httpd] DH^H^H EC parameter selection on httpd 2.2

On 03/31/2017 07:52 AM, Christopher Schultz wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 All, On 3/30/17 4:32 PM, Christopher Schultz wrote: All, I'm running httpd 2.2.31 on Amazon Linux, and the docs for SSLCertificateFile say: " Beginning with version 2.2.30, mod_ssl makes use

Re: [users@httpd] redirect port from 80 to 443

Most of my hosts are HTTPS only - I do have one host that allows port 80 for a yum package repository, https isn't needed there because the packages themselves are signed and yum validates them on the client side before installing. This is an example of what I do: ServerName librelamp.com

Re: [users@httpd] Question about adding new cipher to openssl and then testing through apache httpd

I'm not sure you need to do anything in OpenSSL. When I build Apache against LibreSSL, I have access to ciphers in LibreSSL that are (or were) not in OpenSSL. As long as your new cipher doesn't trigger any blacklists in the mod_ssl source it should be picked up and available as long as a

Re: [users@httpd] Why ExpiresByType is ignored when has SetHandler application/x-httpd-php ?

Oh I should add - when it is a php file I also set the cache control via php. header('Cache-Control: max-age=' . $maxage); for example. On 12/27/2016 11:12 PM, Michael A. Peters wrote: Hi, I regularly use php to generate all kinds of different XML. This is what I do - header('Content-Type

Re: [users@httpd] Why ExpiresByType is ignored when has SetHandler application/x-httpd-php ?

Hi, I regularly use php to generate all kinds of different XML. This is what I do - header('Content-Type: application/xml'); print($dom->saveXML()); exit(); Of course in that case $dom is a DOMDocument object - if you are using print or echo to create XML then you need the header at the

Re: [users@httpd] HTTPD 2.4.25 crash in mod_proxy (ajp)

On 12/22/2016 05:18 PM, kohmoto wrote: Thank you for your attention. The followings have been posted mailing list already. Oh okay, that issue I knew about, was wondering if there were other CentOS specific issues. - To

Re: [users@httpd] HTTPD 2.4.25 crash in mod_proxy (ajp)

What's the rpmbuild problem problem? I have it RPM building just fine under CentOS 7 but I'm not using tomcat or mod_proxy On 12/22/2016 04:52 PM, kohmoto wrote: I adapt the same scheme, httpd -> tomcat using mod_proxy_ajp.so. I have seen no problem with httpd-2.4.25 working on

Re: [users@httpd] Problems with compile httpd-2.4.23 and php-7.1.0

On 12/21/2016 05:57 PM, Rodrigo Cunha wrote: Dears, i'm install apache service from source httpd-2.4.23.tar.gz with php7; from php-7.1.0.tar.gz, but my phpmyadmin not work in the system and display the message: The /mysqli|mysql/

Re: [users@httpd] MPM issue

On 07/21/2016 03:01 AM, Michael A. Peters wrote: Apache 2.4.23 When I load the Apache mod_mpm_prefork.so module, the php pecl ImageMagick extension loads. However, php progress meter doesn't work because the client can't make any requests until the upload is finished, so it can't get

[users@httpd] MPM issue

Apache 2.4.23 When I load the Apache mod_mpm_prefork.so module, the php pecl ImageMagick extension loads. However, php progress meter doesn't work because the client can't make any requests until the upload is finished, so it can't get the progress of the upload. When I instead load the

Re: [users@httpd] Possible DOS Attack

On 05/21/2016 06:22 AM, D'Arcy J.M. Cain wrote: victim but if the coders of these things were smart they would be making real money with legitimate work. Not always that simple. A lot of smart people have trouble getting hired. As for the break-in attempt, there are enough common passwords

Re: [users@httpd] Make Apache react more graceful to SSL errors

On 05/01/2016 06:19 AM, Florian Lindner wrote: Hello, in my server configuration users can place their own SSL certificate in predefined directories. A daily cron script detects them, updates the apache config and restarts the server. However, if there is a problem with the certificate or key

Re: [users@httpd] Apache2 listening on 80(http) and 443(https)

On 04/01/2016 09:00 PM, Brandon L. Wisenburg wrote: Hi Everyone! I have converted my website to SSL, and I go the virtual host setup and SSL working in Apache. When someone uses http://domain.com they get a connection refused, because of course the server isn't listening on 80, as i have it

Re: [users@httpd] Quick 2.4 Require question

On 04/01/2016 02:43 AM, Daniel wrote: I'd rather not use names, use a specific ip for localhost or a network, You will save yourself from issues in the long run. El vie., 1 abr. 2016 a las 11:27, Marat Khalili (>) escribió: Yes. According to documentation

[users@httpd] Quick 2.4 Require question

Take the following : AllowOverride None php_value include_path "/srv/cdn/phpinclude" Require local Require ip 2001:db8::a00:20ff:fea7:ccea Require ip 10.1.2.3 I assume that would allow connections from the local host, from the IPv6 specified, and from the IPv4 specified - but would

Re: [users@httpd] Can the Apache run the php files which is created in memory dynamicly ?

On 03/25/2016 01:56 AM, David wrote: Sorry, there is a mistake in previous email. The "ServerRoot" should be "DocumentRoot". My purpose: If the Apache can run the php file in memory, then it means that I can package the php files, then restore the php files in memory and run the php files. The

Re: [users@httpd] Apache 2.2 End of life

On 03/21/2016 08:51 AM, ismail berrada wrote: Hi Can someone tell me when Apache 2.2 EOL will occurs ? Regards I can't find anything official but 1.3 went EOL in 2010 and 2.0 went EOL in 2013. Not enough data points to say there's a trend, but it wouldn't surprise me if 2.2 doesn't have

Re: [users@httpd] Upgrading to httpd 2.4 and documentation - Any missing info?

nding them the automated scan report might raise a few eye-brows. Most of all its important to remember to have fun! Rob Sent from a mobile device, typos are to be expected. On 15 Mar 2016, at 6:52 PM, Michael A. Peters <mpet...@domblogger.net> wrote: On 03/15/2016 12:23 AM, Luca Toscano

Re: [users@httpd] Upgrading to httpd 2.4 and documentation - Any missing info?

On 03/15/2016 12:23 AM, Luca Toscano wrote: Hi Apache users! A while ago there was an interesting discussion on the dev@ mailing list about the adoption percentage of httpd 2.2 vs 2.4, and I was wondering if the people that have not upgraded yet have suggestion about whether or not the

Re: [users@httpd] Re: security reports page blank ???

On 03/14/2016 04:25 PM, Good guy wrote: On 14/03/2016 23:03, Richard wrote: Date: Monday, March 14, 2016 15:57:21 -0700 From: "Michael A. Peters" <mpet...@domblogger.net> http://httpd.apache.org/security_report.html Currently I am getting nothing from that page, not eve

[users@httpd] security reports page blank ???

http://httpd.apache.org/security_report.html Currently I am getting nothing from that page, not even historic stuff. Is this temporary or has it moved? - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For

Re: [users@httpd] To Enable HTTP 2 in Apache 2.4

On 03/04/2016 01:43 AM, Mahendiran Vel wrote: Dear All, I'm going to use HTTP 2 in Apache 2.4 along with wildfly 10. Please suggest me a steps need to be taken to enable HTTP 2. Note: I'm using Windows Server. -- Regards, Mahendiran Don't know about Windows but on Linux - --- LoadModule

[users@httpd] DH Parameters

Apache 2.4.16 built against LibreSSL 2.2.3 on x86_64 Linux There is an old patch to Apache : https://bz.apache.org/bugzilla/show_bug.cgi?id=49559 It provided a new directive SSLDHParametersFile /path/to/dh2048.pem The patch no longer applies and even if I could make it apply and build I'm

Re: [users@httpd] Difference between Apache 2.2.4 Vs 2.2.25

Is there a reason why you do not want to use the 2.4.x branch? 2.2.x branch is rather old. I think it is still maintained but I would suggest using 2.4.16 unless you have a specific module that works in 2.2.x but is broken in 2.4.x. On 09/03/2015 10:26 PM, Mahendiran Vel wrote: Hi All, I'm

Re: [users@httpd] mime.types

yum provides /etc/mime.types On July 8, 2015 2:13:04 PM MDT, Cohen, Laurence lco...@novetta.com wrote: I am using the CentOS6 RPM for my Apache Web Server. When starting up, Apache complains that it could not open the mime.types file. It's looking for it in /etc and sure enough it isn't there.