On 05/23/2018 10:21 PM, Christophe Jaillet wrote:
I can reproduce the issue if I don't pass any --enable-mpms-shared
paramater to ./configure.
Having --with-mpm=xx only also triggers the building issue.
What is your ./configure command line?
The initial ./configure command line was:
Hi Yann,
On 05/24/2018 10:41 AM, Yann Ylavic wrote:
./configure --prefix=/home/mlenk/Upstream/Apache/target
--with-apr=/home/mlenk/Upstream/Apache/target
--with-apr-util=/home/mlenk/Upstream/Apache/target --with-mpm=worker
--with-mpms-shared=all --enable-mods-static=most
On Thu, May 24, 2018 at 11:28 AM, Yann Ylavic wrote:
> On Thu, May 24, 2018 at 11:23 AM, Yann Ylavic wrote:
>> On Thu, May 24, 2018 at 11:06 AM, Micha Lenk wrote:
>>>
>>> On 05/24/2018 10:41 AM, Yann Ylavic wrote:
>>>
Btw, as
Hi Micha,
On Thu, May 24, 2018 at 10:29 AM, Micha Lenk wrote:
>
> I tried several combinations of --with-mpm=worker and
> --with-mpms-shared=all, but none of them worked (all attempts with "make
> clean"). The most recent attempt used the following ./configure command
> line:
>
On Thu, May 24, 2018 at 11:06 AM, Micha Lenk wrote:
>
> On 05/24/2018 10:41 AM, Yann Ylavic wrote:
>
>> Btw, as Jacob noted, the attached patch seems to work for me (even
>> without the above option).
>
> Yes, for me too, except that the linker problem with undefined symbols now
On Thu, May 24, 2018 at 11:23 AM, Yann Ylavic wrote:
> On Thu, May 24, 2018 at 11:06 AM, Micha Lenk wrote:
>>
>> On 05/24/2018 10:41 AM, Yann Ylavic wrote:
>>
>>> Btw, as Jacob noted, the attached patch seems to work for me (even
>>> without the above
Hi Yann,
On 05/24/2018 11:23 AM, Yann Ylavic wrote:
Yes, for me too, except that the linker problem with undefined symbols now
seems to shift to the modules. I had to disable a few modules
(--enable-mods-static=most --disable-apreq --disable-proxy-fcgi
--disable-session-cookie
Hi Yann,
On 05/24/2018 10:41 AM, Yann Ylavic wrote:
--- Makefile.in (revision 1832123)
+++ Makefile.in (working copy)
@@ -7,9 +7,9 @@ PROGRAM_SOURCES = modules.c
PROGRAM_LDADD= buildmark.o $(HTTPD_LDFLAGS) $(PROGRAM_DEPENDENCIES)
$(HTTPD_LIBS) $(EXTRA_LIBS) $(AP_LIBS) $(LIBS)
Do we have a configuration option to allow https://hostname/ only to matching
vhosts without any default fallback?
Scenario:
- a site with vhost A and B
- vhost B is taken out, DNS still points there (for a while)
- browsers opening https://B/ will get the certificate of A and complain
I do
Hi Yann,
FWIW I've found a very good explanation of what's going on during
linking and why the library order in static linking is so important.
https://eli.thegreenplace.net/2013/07/09/library-order-in-static-linking
On 05/24/2018 12:00 PM, Yann Ylavic wrote:
Looks like the right order to
On Thu, May 24, 2018 at 12:11 PM, Micha Lenk wrote:
>
> On 05/24/2018 12:00 PM, Yann Ylavic wrote:
>
>> I think "core" shouldn't depend on a module (even builtin), for
>> instance ap_set_{last_modified,accept_range,content_length,...} also
>> used by the core are defined in
Hi Yann,
On 05/24/2018 12:31 PM, Yann Ylavic wrote:
Well, first things first. Let's first fix trunk to be buildable again on
build systems that really only link the needed symbols and thus rely on the
correct library order during linking.
I think this is*the* dependency issue, the order in
On Thu, May 24, 2018 at 1:57 PM, Stefan Eissing
wrote:
>
>> Am 24.05.2018 um 13:51 schrieb Yann Ylavic :
>>
>> That'd work (and looks better than Stefan's SNI oriented proposal),
>> but I wish we had something working for non-SSL vhosts too,
>>
On Thu, May 24, 2018 at 7:51 AM, Yann Ylavic wrote:
> On Thu, May 24, 2018 at 1:44 PM, Eric Covener wrote:
>> On Thu, May 24, 2018 at 7:34 AM, Stefan Eissing
>> wrote:
>>>
>>>
Am 24.05.2018 um 13:28 schrieb Eric Covener
On Thu, May 24, 2018 at 2:08 PM, Stefan Eissing
wrote:
>
>
>> Am 24.05.2018 um 14:07 schrieb Yann Ylavic :
>>
>> On Thu, May 24, 2018 at 1:57 PM, Stefan Eissing
>> wrote:
>>>
Am 24.05.2018 um 13:51 schrieb
> Am 24.05.2018 um 14:07 schrieb Yann Ylavic :
>
> On Thu, May 24, 2018 at 1:57 PM, Stefan Eissing
> wrote:
>>
>>> Am 24.05.2018 um 13:51 schrieb Yann Ylavic :
>>>
>>> That'd work (and looks better than Stefan's SNI
On Thu, May 24, 2018, 06:34 Eric Covener wrote:
> On Thu, May 24, 2018 at 7:23 AM, Micha Lenk wrote:
> > Hi Yann,
> >
> > On 05/24/2018 12:31 PM, Yann Ylavic wrote:
> >>>
> >>> Well, first things first. Let's first fix trunk to be buildable again
> on
> >>>
On Thu, May 24, 2018 at 2:09 PM, Eric Covener wrote:
>
> Thinking about base server and how scanners report it the "vulnerability"...
>
> AllowUnmatchedHost[name]?
> RejectUnknownHost[name]?
The one or the other is probably a better name than UseDefaultVHost,
it allows to
On Thu, May 24, 2018 at 7:23 AM, Stefan Eissing
wrote:
> Do we have a configuration option to allow https://hostname/ only to matching
> vhosts without any default fallback?
>
> Scenario:
> - a site with vhost A and B
> - vhost B is taken out, DNS still points there
On Thu, May 24, 2018 at 7:23 AM, Micha Lenk wrote:
> Hi Yann,
>
> On 05/24/2018 12:31 PM, Yann Ylavic wrote:
>>>
>>> Well, first things first. Let's first fix trunk to be buildable again on
>>> build systems that really only link the needed symbols and thus rely on
>>> the
>>>
> Am 24.05.2018 um 13:28 schrieb Eric Covener :
>
> On Thu, May 24, 2018 at 7:23 AM, Stefan Eissing
> wrote:
>> Do we have a configuration option to allow https://hostname/ only to
>> matching vhosts without any default fallback?
>>
>>
Hi Stefan,
as i've tried todo nearly the same some weeks ago i can tell you what i did.
Comment inline.
Am 24.05.2018 um 13:34 schrieb Stefan Eissing:
> So, we are lacking an option here to abort SSL connections without a vhost
> match, it seems. Something like
>
> SSLStrictSNIVHostCheck
On Thu, May 24, 2018 at 7:34 AM, Stefan Eissing
wrote:
>
>
>> Am 24.05.2018 um 13:28 schrieb Eric Covener :
>>
>> On Thu, May 24, 2018 at 7:23 AM, Stefan Eissing
>> wrote:
>>> Do we have a configuration option to
> On 24 May 2018, at 12:44, Eric Covener wrote:
>
> On Thu, May 24, 2018 at 7:34 AM, Stefan Eissing
> wrote:
>>
>>
>>> Am 24.05.2018 um 13:28 schrieb Eric Covener :
>>>
>>> On Thu, May 24, 2018 at 7:23 AM, Stefan Eissing
On Thu, May 24, 2018 at 1:44 PM, Eric Covener wrote:
> On Thu, May 24, 2018 at 7:34 AM, Stefan Eissing
> wrote:
>>
>>
>>> Am 24.05.2018 um 13:28 schrieb Eric Covener :
>>>
>>> On Thu, May 24, 2018 at 7:23 AM, Stefan Eissing
>>>
> Am 24.05.2018 um 13:43 schrieb Stefan Priebe - Profihost AG
> :
>
> Hi Stefan,
>
> as i've tried todo nearly the same some weeks ago i can tell you what i did.
:-) In the era of DGSVO, some sites simply wish to disappear silently...
> Comment inline.
>
> Am
Personally, I am looking for an option where I do not have to keep "old" vhosts
around.
Also, I would like to avoid that someone points "beastlovers.net" to my ip
address and
people get the greenbytes.de homepage when follwing some spam/phishing mails
(this is
a theoretical thread model, rest
> Am 24.05.2018 um 13:51 schrieb Yann Ylavic :
>
> On Thu, May 24, 2018 at 1:44 PM, Eric Covener wrote:
>> On Thu, May 24, 2018 at 7:34 AM, Stefan Eissing
>> wrote:
>>>
>>>
Am 24.05.2018 um 13:28 schrieb Eric
28 matches
Mail list logo