Re: [users@httpd] Apache 2.4 and php
Does it work if you rename index.html to index.php ? On 2022-07-07 13:05, Stormy-SDLU wrote: > On 2022-07-06 21:34, Frank Gingras wrote: >> Paul, >> >> httpd does not call php includes, period. This is processed by php >> alone. > > Frank, thanks, perhaps my poor choice of words. I had this in mind: > > paul@sandbox:/etc/apache2/mods-enabled$ cat php7.4.load > # Conflicts: php5 > # Depends: mpm_prefork > LoadModule php7_module /usr/lib/apache2/modules/libphp7.4.so > > and see this as the "start" of processing the included text files: > > paul@sandbox:/www/testsolr$ cat index.html > > Test Solr > > // > > So, apologies for "call", but do you or others have a suggestion as to > why this works on one box, and not on a mirror image? > > Many thanks -- Paul -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] Apache on CentOS Linux
On my CentOS7 machine the following works: systemctl status httpd Cheers, Dave. On 6/25/20 12:48 AM, Leonard Hoay (Dr) wrote: > > Dear XAMPP/Apache PHP Administrator, > > > > May I know how to check whether the Apache is installed and running on > this server? Also, where it directory/folder located? > > > > Could anyone give your advice? Thanks in advance! > > > > > > Regards, > > Hoay > > > > > > # cat /etc/os-release > > > > NAME="CentOS Linux" > > VERSION="7 (Core)" > > ID="centos" > > ID_LIKE="rhel fedora" > > VERSION_ID="7" > > PRETTY_NAME="CentOS Linux 7 (Core)" > > ANSI_COLOR="0;31" > > CPE_NAME="cpe:/o:centos:centos:7" > > HOME_URL="https://www.centos.org/; > > BUG_REPORT_URL="https://bugs.centos.org/; > > > > CENTOS_MANTISBT_PROJECT="CentOS-7" > > CENTOS_MANTISBT_PROJECT_VERSION="7" > > REDHAT_SUPPORT_PRODUCT="centos" > > REDHAT_SUPPORT_PRODUCT_VERSION="7" > > > > > > # ps -aux | grep -i http > > root 15030 0.0 0.0 112712 984 pts/0 S+ 12:36 0:00 grep > --color=auto -i http > > > > # ps -aux | grep -i apac > > root 15038 0.0 0.0 112712 984 pts/0 R+ 12:36 0:00 grep > --color=auto -i apac > > > > # > > > > > > > > CONFIDENTIALITY: This email is intended solely for the person(s) named > and may be confidential and/or privileged. If you are not the intended > recipient, please delete it, notify us and do not copy, use, or > disclose its contents. > Towards a sustainable earth: Print only when necessary. Thank you. >
Re: [users@httpd] Apache and systemd
Sorry, can't help you there, I've never installed from source, only pre-built packages. However my guess would be that the "--enable-systemd" option relates only to adding the ability to use systemctl commands, not actually setting auto startup. Dave. On 2020-06-18 9:31 a.m., Tom Browder wrote: > On Thu, Jun 18, 2020 at 07:48 David Copeland > mailto:david.copel...@jsidata.ca>> wrote: > > Hi Tom, > > To have Apache start on boot do: _systemctl enable apache2_ > > > David, thanks so much! > > So should a person installing Apache from source with > "--enable-systemd" expect the service to be enabled during the > installation, i.e., this is a bug? > > Or did I miss something in the docs? > > Gratefully, > > -Tom -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca
Re: [users@httpd] Apache and systemd
Hi Tom, To have Apache start on boot do: _systemctl enable apache2_ Then a _systemctl status apache2_ yields something like : dbc:~ # systemctl status apache2 ● apache2.service - The Apache Webserver Loaded: loaded (/usr/lib/systemd/system/apache2.service; *enabled;* vendor preset: disabled) Active: active (running) since Tue 2020-06-16 07:33:57 EDT; 2 days ago . more stuff omitted Note the "*enabled*". Dave. On 2020-06-18 8:36 a.m., Tom Browder wrote: > On Thu, Jun 18, 2020 at 07:24 David Copeland > mailto:david.copel...@jsidata.ca>> wrote: > > On OpenSuse, I use > > systemctl apache2 > > where is start, stop, status, reload, or whatever (do a > "man systemctl") > > > Thanks, Dave. > > But do you add the appropriate systemd files to enable auto start and > shutdown of httpd upon reboot? > > Manual use is pretty straight forward, but, for me, the service file > syntax is not so clear. I'm afraid of getting locked out without easy > hands-on access to my remote servers. > > Cheers, > > -Tom -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca
Re: [users@httpd] Apache and systemd
On OpenSuse, I use systemctl apache2 where is start, stop, status, reload, or whatever (do a "man systemctl") Dave. On 2020-06-17 6:28 p.m., Tom Browder wrote: > On Wed, Jun 17, 2020 at 15:46 Richard > <mailto:lists-apa...@listmail.innovate.net>> wrote: > ... > > > If I build a new server using --enable-systemd how does that affect > > using apachectl? > > ... > > You would use "systemctl" to start/stop/reload/... the server, e.g., > > systemctl start httpd.service > > > Thanks, Richard. > > Hm, that doesn't work, and "systemctl list-unit-files" shows nothing > for httpd. > > So what is "--enable-systemd" supposed to give me? > > -Tom > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca
Re: [users@httpd] PHP-7.2.5 with Apache-2.4.25
Okay, sorry, probably can't help then. I'm running Opensuse 42.3, Apache 2.4.33 (prefork) and mod_php 7.2.7. The one thing I forgot about when I originally switched from php 5 to 7 was the APACHE_MODULES variable in the file /etc/sysconfig/apache2, changing php5 to php7. But each os/distro likes to tweak the config files so not sure if this applies to you. Dave. On 27/06/18 10:06 AM, Hemant Chaudhary wrote: > Its NonStop (tandem) > > On Jun 27, 2018 7:35 PM, "David Copeland" <mailto:david.copel...@jsidata.ca>> wrote: > > What platform/distribution are you running? > > On 27/06/18 06:09 AM, Hemant Chaudhary wrote: > > Hi, > > > > I was using mod_php of php-5.5.37 with apache-2.4.25 and it was > > working fine. I upgraded the php to php-7.2.5. But after upgrade, > > mod_php is not able to unload properly. > > > > Does anybody also face the same issue. > > > > Thanks > > Hemant > > > -- > David Copeland > JSI Data Systems Limited > 613-727-9353 > www.jsidata.ca <http://www.jsidata.ca> > > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > <mailto:users-unsubscr...@httpd.apache.org> > For additional commands, e-mail: users-h...@httpd.apache.org > <mailto:users-h...@httpd.apache.org> > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca
Re: [users@httpd] PHP-7.2.5 with Apache-2.4.25
What platform/distribution are you running? On 27/06/18 06:09 AM, Hemant Chaudhary wrote: > Hi, > > I was using mod_php of php-5.5.37 with apache-2.4.25 and it was > working fine. I upgraded the php to php-7.2.5. But after upgrade, > mod_php is not able to unload properly. > > Does anybody also face the same issue. > > Thanks > Hemant -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] How to browse to index.php OR index.html on WordPress site?
But the DNS entries for "sitename.org" are maintained somewhere, by somebody, just ask them to add the subdomain. On 23/02/18 04:18 PM, Kent West wrote: > > > On Fri, Feb 23, 2018 at 3:13 PM, TG Servers <sr...@prvtmail.net > <mailto:sr...@prvtmail.net>> wrote: > > I am afraid you cannot do that then. If you have no DNS entry for > beta.sitename.org <http://beta.sitename.org>no browser no nothing > knows how to resolve this... it's a subdomain... did not read > everything but you can edit apache conf and cannot edit DNS entries?? > > > > Well, I can on the box (/etc/hosts), but not on the network, at least > not without buying another domain name? But changing it on the box's > /etc/hosts file won't help when I'm browsing in from Topeka or Kalamazoo. > > Unless I'm still fundamentally misunderstanding what I'm supposed to > be doing? > > > -- > Kent West <")))>< > Westing Peacefully - http://kentwest.blogspot.com -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca
Re: [users@httpd] Negative Pattern Matching with DirectoryMatch
That sound like a good idea too! Trying to learn something new every day. Thanks, Dave Copeland. On 07/31/2017 05:21 PM, Daniel wrote: > Why not just RedirectMatch? > > El 31 jul. 2017 9:28 p. m., "David Copeland" > <david.copel...@jsidata.ca <mailto:david.copel...@jsidata.ca>> escribió: > > Ah, okay, thanks! > > Dave. > > On 31/07/17 03:25 PM, Yann Ylavic wrote: > > On Mon, Jul 31, 2017 at 9:16 PM, David Copeland > > <david.copel...@jsidata.ca <mailto:david.copel...@jsidata.ca>> > wrote: > >> Is there a way to ReDirect for all but a certain path? > >> > >> That is, is some like this possible? > >> > >> > >> Redirect .. > >> > > You could use: > > > > (i.e. not followed by) > > > > > > Regards, > > Yann. > > > > > - > > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > <mailto:users-unsubscr...@httpd.apache.org> > > For additional commands, e-mail: users-h...@httpd.apache.org > <mailto:users-h...@httpd.apache.org> > > > > > -- > David Copeland > JSI Data Systems Limited > 613-727-9353 > www.jsidata.ca <http://www.jsidata.ca> > > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > <mailto:users-unsubscr...@httpd.apache.org> > For additional commands, e-mail: users-h...@httpd.apache.org > <mailto:users-h...@httpd.apache.org> >
Re: [users@httpd] Negative Pattern Matching with DirectoryMatch
Ah, okay, thanks! Dave. On 31/07/17 03:25 PM, Yann Ylavic wrote: > On Mon, Jul 31, 2017 at 9:16 PM, David Copeland > <david.copel...@jsidata.ca> wrote: >> Is there a way to ReDirect for all but a certain path? >> >> That is, is some like this possible? >> >> >> Redirect .. >> > You could use: > > (i.e. not followed by) > > > Regards, > Yann. > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[users@httpd] Negative Pattern Matching with DirectoryMatch
Is there a way to ReDirect for all but a certain path? That is, is some like this possible? Redirect .. I'm using 2.4.27. Thanks. -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] [ANNOUNCEMENT] Apache HTTP Server 2.4.27 Released
On 11/07/17 10:25 AM, Stefan Eissing wrote: >> Am 11.07.2017 um 16:13 schrieb David Copeland <david.copel...@jsidata.ca>: >> >> I had it set up on an essentially a private site to try it so the volume was >> very low, and so I never had a problem. > It can work in certain configurations. Especially if you *only* serve static > files. As soon as mod_php, proxy connections or gzip/brotli content > compression gets in the mix, it may get slow or stop working altogether. > > This is not a bug, but a principle collision between HTTP/2 parallel requests > and mpm_prefork single-threaded model. In pre-2.4.26, we kept it single > threaded and people experienced bad performance and locks. In 2.4.26 will had > several threads and people experienced the crashes of mod_php. > > People that require prefork are better served with the 6 parallel connections > of HTTP/1.1 clients. People who do not have to run their server > single-threaded are better off with mpm_event. There is no good comfort place > for h2+prefork. We think we can invest our time better in other places. > > Cheers, > > Stefan > > And I agree. Thanks to all who replied with explanations and/or links to discussion threads. -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] [ANNOUNCEMENT] Apache HTTP Server 2.4.27 Released
On 11/07/17 09:58 AM, Eric Covener wrote: > On Tue, Jul 11, 2017 at 9:41 AM, David Copeland > <david.copel...@jsidata.ca> wrote: >>> o HTTP/2 will not be negotiated when using the Prefork MPM >> I'm wondering what the reason for this is? > In the previous release, HTTP2 made prefork run multi-threaded. People > often chose prefork due to non-threadsafe code running in the server. > > Right, understood. Just looking at the HTTP/2 HowTo (https://httpd.apache.org/docs/trunk/howto/http2.html). It suggests setting H2MiniWorkers will make it possible anyway if one wishes to take the risk and try it. Is this not correct? Thanks. -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] [ANNOUNCEMENT] Apache HTTP Server 2.4.27 Released
I had it set up on an essentially a private site to try it so the volume was very low, and so I never had a problem. Thanks, Dave Copeland. On 11/07/17 10:03 AM, Yehuda Katz wrote: > H2 is threaded and prefork is not, so the performance is poor or it > doesn't work at all. > > There was a discussion about this on the dev > list: > https://lists.apache.org/thread.html/bae472cadaeeb761b88bb4569cc0b7d87bc2dcb2fbcbf472d895f32e@%3Cdev.httpd.apache.org%3E > > Sent from a device with a very small keyboard and hyperactive autocorrect. > > On Jul 11, 2017 9:48 AM, "David Copeland" <david.copel...@jsidata.ca > <mailto:david.copel...@jsidata.ca>> wrote: > > I'm wondering what the reason for this is? > > Thanks. > > On 11/07/17 09:04 AM, Jim Jagielski wrote: > >Apache HTTP Server 2.4.27 Released > > > > > > o HTTP/2 will not be negotiated when using the Prefork MPM > > > > -- > David Copeland > JSI Data Systems Limited > 613-727-9353 > www.jsidata.ca <http://www.jsidata.ca> > > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > <mailto:users-unsubscr...@httpd.apache.org> > For additional commands, e-mail: users-h...@httpd.apache.org > <mailto:users-h...@httpd.apache.org> > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca
Re: [users@httpd] [ANNOUNCEMENT] Apache HTTP Server 2.4.27 Released
I'm wondering what the reason for this is? Thanks. On 11/07/17 09:04 AM, Jim Jagielski wrote: >Apache HTTP Server 2.4.27 Released > > > o HTTP/2 will not be negotiated when using the Prefork MPM > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] Allowing users to edit web sites safely
On 22/12/16 10:08 AM, David Mehler wrote: > Hello, > > Thanks. I did mine a little different, but thanks to you I did get it. Glad it helped. > > One unrelated question, what's advantages/disadvantages are there > between Php 5.6 and Php 7? For me the main advantage is performance, about twice as fast. I also like scalar type hints and return type. There are few disadvantages that I can see. Perhaps a small number of backward incompatibilities in syntax but none that bother me. > > Thanks. > Dave. > > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] Allowing users to edit web sites safely
Hi Dave, Sure. Say the server has the name "server.domain1.com", and the user has an account on the server named "user". The server runs Linux (happens to be OpenSuse), Apache 2.4.23 and PHP7. The user can log into the server using ssh/scp. His site is served from "/home/user/public_html" and accessed as "www.domain2.com". The Apache2 vhost configuration looks something like the following. ServerName www.domain2.com DocumentRoot "/home/user/public_html" php_admin_value open_basedir /home/user php_admin_value upload_tmp_dir /home/user/tmp_upload php_admin_value session.save_path /home/user/sessions php_admin_value include_path '.:/home/user/files/includes' ErrorLog /home/user/log/error_log CustomLog /home/user/log/access_log combined HostnameLookups Off UseCanonicalName Off Options +FollowSymLinks -Indexes AllowOverride None Require all granted Userdir access is also enabled. His site can be reached at "www.domain2.com" or at "server.domain1.com/~user" . This was done to allow the user to preview his site prior to activating the virtual host. The php_admin_value entries in the vhost helps to protect the rest of the server from the users site and having his own user account also isolates him. Dave C. On 21/12/16 08:30 AM, David Mehler wrote: > Hello, > > Thanks. Could you elaborate more on your solution? How are the site > urls formed? Is it domain.com or domain.com/~username? > > Thanks. > Dave. > > > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] Allowing users to edit web sites safely
Hi Dave, I do the same. The user has an account on the server. The vhost serves the users site from his home public_html directory. I allow only ssh/scp access, no FTP server is set up, so he uses Filezilla to upload . Regards, Dave. On 20/12/16 05:43 PM, David Mehler wrote: > Hello, > > I've got a FreeBSD 10.3 server on which is running Apache 2.4. I've > got two web sites that are relevant to this message and which both get > backed up on an other daily basis. > > A user wants now to take control of both. I don't use a control panel > so he'll have to make files then upload. I've got sftp set up to > restrict the user to his home directory area. I've put that user in a > webdev group and set the group to webdev and given the writable > permission. > > That seems a little klunky, any other suggestions? > > Thanks. > Dave. > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] SSLCipherSuite and SSL Key Exchange
Try the configuration tool at https://mozilla.github.io/server-side-tls/ssl-config-generator/ . Dave. On 07/12/16 06:19 AM, Tea Wrex wrote: > I have been using the Qualys SSL Labs SSL Server Test > <https://www.ssllabs.com/ssltest/index.html> to test my SSL > implementation. It scores an SSL server using the criteria located in > the SSL Server Rating Guide > <https://www.ssllabs.com/projects/rating-guide/index.html>. I'm trying > to make the SSL as secure as possible. I have a 4096 bit certificate. > My server currently gets an A+ rating because I have enabled HTTP > Strict Transport Security (HSTS) with long duration. (More info on > correctly configuring SSL can be found here > <https://www.ssllabs.com/projects/documentation/index.html>.) > > > What I am trying to do is get the /Key Exchange/ and /Cipher Strength/ > scores to be 100 percent. I already have a 100 percent grade for the > /Certificate/ and/Protocol Support/ scores. > > I have no idea how to fix the /Key Exchange/ score, so I need help > with that. > > I have been trying to change the /Cipher Strength/ score by playing > with different variations of /SSLCipherSuite/. > > This is my current setting for /SSLCipherSuite/: > > SSLCipherSuite ECHD:!aNULL:!NULL:!eNULL:!MEDIUM:!LOW:!MD5:!RC4 > > It says in the Apache manual under /SSLCipherSuite/ that MEDIUM is > "all ciphers with 128 bit encryption." However, when I have set > !MEDIUM (as shown above) it does not remove the 128bit ciphers as they > are still listed in the test results. I have tried various settings > but cannot seem to remove the 128 bit ciphers.I also tried -MEDIUM but > that did not work either. > > Thanks in advance for any help you can give, > > Tea > > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca
Re: [users@httpd] Apache virus scanning
Hi John, For that I use a php script that handles the upload. It runs clamscan on the uploaded file. For example: $outputlines = array(); $last = exec ( "clamscan --quiet ".$_FILES['uploadedfile']['tmp_name'], $outputlines, $rc ); # then check $rc . 1 => a virus was found. Dave. On 03/09/2016 10:21 AM, Rose, John B wrote: > What about if your web sites allow for uploading files? Would you not want > to scan those on upload before they got on your filesystem? > > On 3/9/16 9:49 AM, "Christopher Schultz" <ch...@christopherschultz.net> > wrote: > >> John, >> >> On 3/8/16 6:02 PM, Rose, John B wrote: >>> I am interested in both >>> >>> Thanks >>> >>> Sent from my iPad >>> >>>> On Mar 8, 2016, at 3:27 PM, Christopher Schultz >>>> <ch...@christopherschultz.net> wrote: >>>> >>> John >>> >>>>>> On 3/8/16 2:43 PM, Rose, John B wrote: >>>>>> Looking for comments on mod_clamav, and any other alternative >>>>>> antivirus software for Apache on linux >>> Are you trying to protect your clients or your servers? >> I would imagine that running any AV software that monitors the >> filesystem for changes would be sufficient. Why do you think you need an >> httpd module for this? >> >> -chris >> >> - >> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org >> For additional commands, e-mail: users-h...@httpd.apache.org >> > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > -- David Copeland JSI Data Systems Limited 613-727-9353 www.jsidata.ca - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
