RE: [users@httpd] dynamic ssl cert/key selection

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -. F1 Outsourcing Development Sp. z o.o. Poland t: +48 (0)12 4207 835 e: m...@f1-outsourcing.eu > -Original Message- > From: Will Fatherley > Sent: Friday, 20 October 2023 16:04 > To: users@httpd.apache.org >

Re: [users@httpd] dynamic ssl cert/key selection

> Is there a way to chose what ssl certs/keys to load when you have > something like > > ServerAlias test.*.* > > So when host test.example.com is serviced, that it will get > > SSLCertificateFile "/etc/pki/tls/certs/example.com.crt" > > > So when host test.example.net is serviced, that it will

[users@httpd] dynamic ssl cert/key selection

Is there a way to chose what ssl certs/keys to load when you have something like ServerAlias test.*.* So when host test.example.com is serviced, that it will get SSLCertificateFile "/etc/pki/tls/certs/example.com.crt" So when host test.example.net is serviced, that it will get

[users@httpd] CVE-2033-44487

Has anyone been able to definitively determine if Apache HTTP 2.4.53 is vulnerable to CVE-2023-44487? I've found forums where users and apparent sysadmins indicate it may be, however the only reference to this CVE I've been able to locate on Apache.org is as a comment made within another CVE

[users@httpd] CVE-2023-45802: Apache HTTP Server: HTTP/2 stream memory not reclaimed right away on RST

Severity: moderate Affected versions: - Apache HTTP Server 2.4.17 through 2.4.57 Description: When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to

[users@httpd] CVE-2023-43622: Apache HTTP Server: DoS in HTTP/2 with initial windows size 0

Severity: low Affected versions: - Apache HTTP Server 2.4.55 through 2.4.57 Description: An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block handling of that connection indefinitely in Apache HTTP Server. This could be used to exhaust worker

[users@httpd] CVE-2023-31122: Apache HTTP Server: mod_macro buffer over-read

Severity: low Affected versions: - Apache HTTP Server through 2.4.57 Description: Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57. Credit: David Shoon (github/davidshoon) (finder) References:

Re: [users@httpd] basic question ---

Can you keep the replies on-list? Multiviews is just the simplest approach, and there is no such thing as "everyone does X". It depends. You can certainly solve a problem in the most convoluted way possible, but it doesn't mean that it's the correct way. On Mon, Oct 16, 2023 at 5:22 PM Tatsuki

Re: [users@httpd] basic question ---

Hello. Frank Gingras wrote on 2023/10/17 02:22: > That's just multiviews. For that matter, do everyone else do multiviews? What if we simply name the file b, and then do the following? SetHandler php-script # If it works via CGI as well. SetHandler cgi-script Regards.

Re: [users@httpd] basic question ---

That's just multiviews. On Mon, Oct 16, 2023 at 12:49 PM bruce wrote: > Hi Frank. > > Thanks for the reply. > > Not converting. > > But I've seen example open source demo/apps > where the app/url >http://www.foo.com/a >http://www.foo.com/b > are valid... > > and when I inspect the

Re: [users@httpd] basic question ---

Hi Frank. Thanks for the reply. Not converting. But I've seen example open source demo/apps where the app/url http://www.foo.com/a http://www.foo.com/b are valid... and when I inspect the dir, I get a.php - b.php... So I'm assuming that there's something happening in the

Re: [users@httpd] basic question ---

You should use multviews, so that if you request /a, it will expand to a.php. Converting a.php to b.php makes no sense; why would you request another script in that case? You should also look at the FallbackResource directive, and use pathinfo to handle URI parameters, instead of the query

[users@httpd] basic question ---

running apache2 old copy of centos trying to understand how to test a few things. I can have http://www.abc.com/a.php a.php can fire off a page to "b.php" I'm trying to figure out what to do in the httpd.conf file to "ignore/hide" the .php so the displayed url would be http://www.abc.com/b

Re: [users@httpd] preciso de ajuda

I'll answer in English for the benefit of the list (you can use google translate). For windows, the recommended installers are from the apache lounge site: https://www.apachelounge.com/ Alternatively, you can install xampp, but that should not be run in production. On Sun, Oct 15, 2023 at 6:17 

[users@httpd] preciso de ajuda

preciso saber como RODAR CORRETAMENTE : INSTALAR , CONFIGURAR E SUBIR o Apache 2.4 ou a mais nova versão em meu computador com o WINDOWS 10 PRO Endel

Re: [users@httpd] Peer digest using sha1 on TLS connection - Chrome fails

Just as an update - it appears that there was a vhost config that went unnoticed - this from the guy who found it: "We noticed with SSLLabs that there was 2 SSL certificates getting pulled when testing against the xxx.xxx.xxx.domain Looking against the config being included in the Apache when

Re: [users@httpd] Peer digest using sha1 on TLS connection - Chrome fails

Is the CA cert signed with SHA-1? If so, you can try to check if the CA has a cross-signed CA cert with SHA2 you can use for the customer's current certificate chain or just tell your customer to reissue the cert with a full SHA2 chain. Best Regards /P -- -- On Thu, 12 Oct 2023 at 04:27, Craig H

[users@httpd] Peer digest using sha1 on TLS connection - Chrome fails

This is probably not the most appropriate mail list to ask this question. Basically we have apache 2.4.3 on a solaris 10 host running openssl 1.0.2zf. This was OK up until the 117 release of Chrome, which now rejects sha1. Funny thing is that one vhost with the same ssl config is ok, whilst

[users@httpd] Apache dropping Content-Length header for HEAD responses where Content-Length is 0

Hi, Using Apache 2.4.57 on Fedora with default configuration I'm observing that for HEAD response the Content-Length header is not being sent for empty files (it is present for non-empty files). When changing HEAD to GET the header is present for such files. Sidney Shek asked very similar

[users@httpd] Logging issue piped logs vs file

Hello I think I have discovered a bug, where using a log file vs using a pipe command will not log the exact same messages. System: Server version: Apache/2.4.56 (Unix) Server built: Jul 10 2023 10:58:41 root@ns-pedros# uname -a FreeBSD ns-pedros 11.4-NETSCALER-13.1 FreeBSD 11.4-NETSCALER-13.1

[users@httpd] How to handle memory increase when using mod_proxy module(included in apache 2.4.46)

Hello Team, The virtual memory usage of the Apache communication process increased endlessly when there was a large amount of HTTP communication under the following conditions: * Windows OS * Enable mod_proxy to use Apache 2.4.46 as a proxy server. * Settings so that KeepAlive does not occur

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

On 10/4/23 21:30, Daniel Gruno wrote: On 2023-10-04 14:01, Antony Stone wrote: On Wednesday 04 October 2023 at 20:48:19, Jason Long wrote: Hello,Thanks again.Why has Apache Foundation never tested Apache performance with Nginx? I am not affiliated with the Apache Foundation in any way, but

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

On 2023-10-04 14:01, Antony Stone wrote: On Wednesday 04 October 2023 at 20:48:19, Jason Long wrote: Hello,Thanks again.Why has Apache Foundation never tested Apache performance with Nginx? I am not affiliated with the Apache Foundation in any way, but I would guess that the primary reason

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

On Wednesday 04 October 2023 at 20:48:19, Jason Long wrote: > Hello,Thanks again.Why has Apache Foundation never tested Apache > performance with Nginx? I am not affiliated with the Apache Foundation in any way, but I would guess that the primary reason is that one can make statistics say

RE: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

I know that with nginx you can't configure your chain certificate separately, super annoying. > > Hello, > Thanks again. > Why has Apache Foundation never tested Apache performance with Nginx? > > > > > On Sat, Sep 30, 2023 at 12:00 PM, Frank Gingras >wrote: > There

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

Hello,Thanks again.Why has Apache Foundation never tested Apache performance with Nginx? On Sat, Sep 30, 2023 at 12:00 PM, Frank Gingras wrote: There might be some online, however, due to the different architectures, they are not likely to be terribly useful. Do avoid the ones that

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

Hello,Thank you so much for your reply.Is the following sentence correct? "If you did make mod_php thread safe, it wouldn’t change the fact that you’re going to blow up your memory usage as Apache will load PHP into every single worker process that spins up." On Sun, Oct 1, 2023 at 12:26

Re: [users@httpd] proxying SSL -> SSL

First, do not define vhosts as :PORT, but rather either *:443 or IP:443. Secondly, to proxy from TLS to TLS, you need both SSLEngine on and SSLProxyEngine on. Avoid proxying from a block, unless strictly necessary. Use the vhost context. You can use the Location block to set headers instead.

Re: [users@httpd] proxying SSL -> SSL

On 04/10/2023 10:40, lejeczek wrote: Hi guys. I've sroogled & have found people suggesting working examples, I thought I had some notes but now I'm thinking I read that it should not work.. so I'm not sure what to think of this seemingly setup:   ServerAdmin web...@lemko.xyz   ServerName

RE: [users@httpd] proxying SSL -> SSL

> > Hi guys. > > I've sroogled & have found people suggesting working examples, I thought I > had some notes but now I'm thinking I read that it should not work.. > so I'm not sure what to think of this seemingly setup: > > > ServerAdmin web...@lemko.xyz >

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

On Sat, 30 Sept 2023, 12:26 Jason Long, wrote: > Hello, > Is the following sentence correct? > "The way Apache loads PHP in its standard setup (with mod_php) compared to > Nginx alone puts it at a disadvantage. You will see performance gains, > particularly in memory usage, just by switching to

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

> >> Why are they trollish? I am curious to learn more. >> >> Perhaps because you asked the same question in 2021, you got a very constructive response and still you are asking the same thing two years later... -- Daniel Ferradal HTTPD Project #httpd help at Libera.Chat

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

There might be some online, however, due to the different architectures, they are not likely to be terribly useful. Do avoid the ones that bash needlessly either product. On Sat, Sep 30, 2023 at 3:09 AM Jason Long wrote: > Hello, > Thank you so much for your info. > Why are they trollish? I am

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

Hello, Thank you so much for your info. Why are they trollish? I am curious to learn more. Is there a fair comparison between Apache and Nginx? On Saturday, September 30, 2023 at 10:35:12 AM GMT+3:30, Frank Gingras wrote: Additionally, your recent string of questions to this mailing

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

Additionally, your recent string of questions to this mailing list come off as a bit trollish. On Sat, Sep 30, 2023 at 3:04 AM Frank Gingras wrote: > If any of the mod_php extensions are not thread-safe, you will need to use > the prefork mpm, which will indeed bloat every httpd worker. This is

Re: [users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

If any of the mod_php extensions are not thread-safe, you will need to use the prefork mpm, which will indeed bloat every httpd worker. This is not the ideal nor recommended configuration. Instead, use the event mpm and proxy_fcgi to pass the request to php-fpm. Alternatively, you can recompile

[users@httpd] Is it true that Nginx is faster, more secure and better than Apache?

Hello, Is the following sentence correct? "The way Apache loads PHP in its standard setup (with mod_php) compared to Nginx alone puts it at a disadvantage. You will see performance gains, particularly in memory usage, just by switching to Nginx, given you're using a PHP-driven application."

Re: [users@httpd] Child process executing tasks of parent process

It’s not the point of this distribution list to discuss Perl, but fork will return the process id for both processes. A simple pattern for the source code looks like: pid = fork(); if (pid==0){print "do the child things";} else {print "do parent things"} You want to aim your script semantics

Re: [users@httpd] Child process executing tasks of parent process

It might be interesting to know how "fork" works... On Fri, 29 Sept 2023, 19:56 Sreenivasulu Alapaka, < sreenivasulu.alapaka...@gmail.com> wrote: > Yes, Deepak > the parent and child process are derived from same Base class. > i defined a function name main in base class with empty

Re: [users@httpd] Child process executing tasks of parent process

Yes, Deepak the parent and child process are derived from same Base class. i defined a function name main in base class with empty implememationa and same got implemented for both parent and child in their own module. Below is a skeleton of code. the parent process is spawned while bootstrapping

Re: [users@httpd] Child process executing tasks of parent process

Obviously there is a common function which is being called by your server, client threads. You will have to share your code for us to find out what's going on. On Fri, 29 Sept 2023, 17:08 Sreenivasulu Alapaka, < sreenivasulu.alapaka...@gmail.com> wrote: > Hi Deepak, > > > *Client Monitor

[users@httpd] To post the link 

Post the link 

Re: [users@httpd] Child process executing tasks of parent process

Hi Deepak, *Client Monitor Workers is application specific log. This message will be logged by the parent process in my application but not the child process. In the issue state, I am seeing the * *Client Monitor Workers in both parent and child logs as the child is executing the tasks

Re: [users@httpd] Child process executing tasks of parent process

On Fri, Sep 29, 2023 at 4:35 PM Sreenivasulu Alapaka < sreenivasulu.alapaka...@gmail.com> wrote: > Hi Deepak, > > Please find the logs below. > Parent task is to monitor the workers(childs) and then > remove/start additional workers based on the load. >

Re: [users@httpd] Child process executing tasks of parent process

Hi Deepak, Please find the logs below. Parent task is to monitor the workers(childs) and then remove/start additional workers based on the load. its performing its task. Parent process logs = Wed Sep 27

Re: [users@httpd] Child process executing tasks of parent process

On Fri, Sep 29, 2023 at 4:15 PM Sreenivasulu Alapaka < sreenivasulu.alapaka...@gmail.com> wrote: > Hi Deepak, > > I have specific logs for parent and child process and am able > to see the logs of parent process dumped in child process log with child > process id. > > Please share the

Re: [users@httpd] Child process executing tasks of parent process

Hi Deepak, I have specific logs for parent and child process and am able to see the logs of parent process dumped in child process log with child process id. On Fri, Sep 29, 2023 at 3:58 PM Deepak Goel wrote: > > > On Fri, Sep 29, 2023 at 3:52 PM Sreenivasulu Alapaka < >

Re: [users@httpd] Child process executing tasks of parent process

On Fri, Sep 29, 2023 at 3:52 PM Sreenivasulu Alapaka < sreenivasulu.alapaka...@gmail.com> wrote: > Hi Team, > > I am using httpd and mod_perl libraries to spawn the process to > execute the tasks. httpd will spawn a process which is parent and it will > spawn the other child process to

[users@httpd] Child process executing tasks of parent process

Hi Team, I am using httpd and mod_perl libraries to spawn the process to execute the tasks. httpd will spawn a process which is parent and it will spawn the other child process to perform the tasks. The parent process job is to monitor the child process and the child process has

RE: [users@httpd] ? Apache support for IPv6

Ok, thank you! From: Frank Gingras Sent: Thursday, September 28, 2023 4:27 PM To: users@httpd.apache.org Subject: Re: [users@httpd] ? Apache support for IPv6 You will need to ask the mailing lists for the projects in question. They are likely compatible, but don't assume. On Thu, Sep 28,

Re: [users@httpd] ? Apache support for IPv6

You will need to ask the mailing lists for the projects in question. They are likely compatible, but don't assume. On Thu, Sep 28, 2023 at 4:23 PM Cox, Kim A-CTR (FAA) wrote: > Thank you, Frank. So the Apache related software versions I listed(being > older than the current release) are fully

RE: [users@httpd] ? Apache support for IPv6

Thank you, Frank. So the Apache related software versions I listed(being older than the current release) are fully supported on IPv6? From: Frank Gingras Sent: Thursday, September 28, 2023 4:16 PM To: users@httpd.apache.org Subject: Re: [users@httpd] ? Apache support for IPv6 This mailing

Re: [users@httpd] ? Apache support for IPv6

This mailing list is really for the Apache HTTPd product; IPv6 has been fully supported on it for a long time now. On Thu, Sep 28, 2023 at 3:10 PM Cox, Kim A-CTR (FAA) wrote: > Apache mail list members: I’ve searched the archives and doc for Apache > support for IPv6 on RedHat Linux 8.x

[users@httpd] ? Apache support for IPv6

Apache mail list members: I've searched the archives and doc for Apache support for IPv6 on RedHat Linux 8.x without success. Can anyone comment on support for the following Apache apps, or point me to where to find a compatibility matrix for the Apache products and IPv6 please? Thanks in

Re: [users@httpd] Apache web server httpd in Netgear Wireless Router WNR3500L

I will try to look for the scripts again. Regards, Mr. Turritopsis Dohrnii Teo En Ming Targeted Individual in Singapore On Wed, 27 Sept 2023 at 19:03, Will Fatherley wrote: >> >> But when we need to reboot the Netgear wireless router, where are the >> Apache web server httpd autostart scripts?

Re: [users@httpd] Apache web server httpd in Netgear Wireless Router WNR3500L

I think BusyBox don't have the chkconfig command. Regards, Mr. Turritopsis Dohrnii Teo En Ming Targeted Individual in Singapore On Wed, 27 Sept 2023 at 19:01, Deepak Goel wrote: > > This might help: > > https://serverfault.com/questions/16839/how-do-i-get-apache-to-startup-at-bootime-on-linux

Re: [users@httpd] Apache web server httpd in Netgear Wireless Router WNR3500L

Noted, I will try contacting Netgear. Regards, Mr. Turritopsis Dohrnii Teo En Ming Targeted Individual in Singapore On Wed, 27 Sept 2023 at 18:55, Frank Gingras wrote: > > You should ask the Netgear / busybox folks instead of this mailing list. > > Especially the former as they ship your

Re: [users@httpd] Apache web server httpd in Netgear Wireless Router WNR3500L

> > But when we need to reboot the Netgear wireless router, where are the > Apache web server httpd autostart scripts? Do we have to manually > execute the httpd command every time we reboot the Netgear wireless > router? It depends on the OS distributor, but it’s a typical convention to find

Re: [users@httpd] Apache web server httpd in Netgear Wireless Router WNR3500L

This might help: https://serverfault.com/questions/16839/how-do-i-get-apache-to-startup-at-bootime-on-linux You might have to do something like this: chkconfig --level 345 httpd on Deepak "The greatness of a nation can be judged by the way its animals are treated - Mahatma Gandhi" +91 73500

Re: [users@httpd] Apache web server httpd in Netgear Wireless Router WNR3500L

You should ask the Netgear / busybox folks instead of this mailing list. Especially the former as they ship your product. On Wed., Sep. 27, 2023, 6:45 a.m. Turritopsis Dohrnii Teo En Ming, < tdtemc...@gmail.com> wrote: > Subject: Apache web server httpd in Netgear Wireless Router WNR3500L > >

[users@httpd] Apache web server httpd in Netgear Wireless Router WNR3500L

Subject: Apache web server httpd in Netgear Wireless Router WNR3500L Good day from Singapore, Release version : Netgear Wireless Router WNR3500L U12H13699/V1.0.2.35/32.1.9_TR069_0528 Time : May 29 2010 10:31:41 CFE version : v1.0.36 We were trying to login to the Netgear wireless router but the

Re: [users@httpd] Information Request | RFC- 7919 Support

Hi, Thanks for the response. I went through the documentation, it does specify the support of the custom and standard DH parameters. On the selection of the parameter the documentation says " hands them out to clients based on the length of the certificate's RSA/DSA key" Where as per the RFC7919

Re: [users@httpd] Apache on the different platforms

Greg, The question was aimed at the original poster. On Sun, Sep 24, 2023 at 8:40 PM Gregory Kuzmicki wrote: > 8:38 PM EDT (Sunday) > > Jason: > A dynamic link library on windows(. dll) is like a shared library(. so) > on linux > -Greg > > Frank: > > For me personally, what I am working on is

[users@httpd] Apache on the different platforms

8:38 PM EDT (Sunday) Jason: A dynamic link library on windows(. dll) is like a shared library(. so) on linux -Greg Frank: For me personally, what I am working on is PCI compliant payment processing. I am trying to process Visa, MasterCard, AMEX, in compliance with PCI standards for a series of

Re: [users@httpd] Apache on the different platforms

This sounds like a homework question... what problem are you trying to solve, exactly? On Sun, Sep 24, 2023 at 2:16 PM Jason Long wrote: > Hello, > Thank you so much for your reply. > Which libraries are common between the Linux and Windows operating systems? > > > On Sun, Sep 24, 2023 at 9:29

Re: [users@httpd] Apache on the different platforms

After working over ten years on Apache systems, many different distros, many different OS's and vers., I can say that more than anything my biggest vulnerability has been the ever-changing landscape of the internet itself, constant updates and browser changes, and continuous EOL and lack of

Re: [users@httpd] Apache on the different platforms

Hello,Thank you so much for your reply.Which libraries are common between the Linux and Windows operating systems? On Sun, Sep 24, 2023 at 9:29 PM, Frank Gingras wrote: It depends on the vulnerability, and if some library is the culprit, and if that library is present on that operating

Re: [users@httpd] Apache on the different platforms

It depends on the vulnerability, and if some library is the culprit, and if that library is present on that operating system. On Sun, Sep 24, 2023 at 1:56 PM Jason Long wrote: > Hello, > If a vulnerability is found in the Apache web server, then does that > vulnerability work both in Apache

[users@httpd] Apache on the different platforms

Hello,If a vulnerability is found in the Apache web server, then does that vulnerability work both in Apache under Linux and Windows operating systems? Thank you.

Re: [users@httpd] mod_cluster in Apache 2.4.x

This might help: https://httpd.apache.org/docs/2.4/mod/mod_proxy.html Deepak "The greatness of a nation can be judged by the way its animals are treated - Mahatma Gandhi" +91 73500 12833 deic...@gmail.com Facebook: https://www.facebook.com/deicool LinkedIn: www.linkedin.com/in/deicool "Plant

Re: [users@httpd] mod_cluster in Apache 2.4.x

mod_cluster is open source. You can add it yourself to your Apache instance. https://www.modcluster.io/ Regards, Gillis On Thu, Sep 21, 2023 at 8:04 AM vicky chb wrote: > Hi all, > > Does Apache 2.4.x have mod_cluster module available? I checked > https://httpd.apache.org/docs/2.4/mod/ but

[users@httpd] mod_cluster in Apache 2.4.x

Hi all, Does Apache 2.4.x have mod_cluster module available? I checked https://httpd.apache.org/docs/2.4/mod/ but did not find. I also checked and found that enterprise based Apache like JBCS etc provides this package. If mod_cluster is currently not supported then what is the alternate option

Re: [users@httpd] Information Request | RFC- 7919 Support

unsubscribe On Wed, Sep 20, 2023 at 1:14 PM Will Fatherley wrote: > > It would be very helpful if someone can help in some way or some >> documentation link that gives some more information on RFC-7919 support in >> apache httpd server. >> > > Maybe you’re looking for mod_ssl— >

Re: [users@httpd] Information Request | RFC- 7919 Support

> It would be very helpful if someone can help in some way or some > documentation link that gives some more information on RFC-7919 support in > apache httpd server. > Maybe you’re looking for mod_ssl— https://httpd.apache.org/docs/2.4/mod/mod_ssl.html >

[users@httpd] Information Request | RFC- 7919 Support

Hello, I was looking for documentation related to RFC-7919 support in the apache http server. I couldn't find any reference in the existing documentation and neither a google search resulted in any concrete answers. It would be very helpful if someone can help in some way or some documentation

Re: [users@httpd] Inquiry about apache httpd compile option

El mié, 20 sept 2023 a las 9:03, (대학원생) 양성현 (컴퓨터공학과) () escribió: > I appreciate you for your response. > > I understand that some ./configure flags can affect the httpd executable. > > May I know some examples which ./configure flag affects the httpd > executable? >

Re: [users@httpd] Inquiry about apache httpd compile option

Adding any module statically is an example, as is setting many flags that shows up in `grep AC_DEFINE configure.in` to a non-default value, such as --enable-v4-mapped or installation paths. --enable-maintainer-mode is another example that drastically changes compile flags. On Wed, Sep 20, 2023

Re: [users@httpd] Inquiry about apache httpd compile option

I appreciate you for your response. I understand that some ./configure flags can affect the httpd executable. May I know some examples which ./configure flag affects the httpd executable? 보낸 사람: Eric Covener 보낸 날짜: 2023년 9월 19일 화요일 오전 1:39 받는 사람:

Re: [users@httpd] Inquiry about apache httpd compile option

> Does apache httpd binary depend on the compile options? It may, but a change to a ./configure flag will not necessarily affect the httpd executable. - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional

Re: [users@httpd] Inquiry about apache httpd compile option

I appreciate you for your response. I compared two cases.( Apache httpd version is 2.4.56.) A: httpd binary file created using command "./configure" B: httpd binary file created using command "./configure --enable-ssl --enable-so" I used the command "ldd httpd". However, I cannot find any

Re: [users@httpd] Inquiry about apache httpd compile option

Take a look at the ldd output instead. On Mon., Sep. 18, 2023, 6:40 a.m. (대학원생) 양성현 (컴퓨터공학과), wrote: > I appreciate you for your response. > > I think some different build commands can make different binary files. > > For example, I think that command "./configure" and command "./configure >

Re: [users@httpd] Inquiry about apache httpd compile option

I appreciate you for your response. I think some different build commands can make different binary files. For example, I think that command "./configure" and command "./configure --enable-so --enable-ssl" can make each binary file which has different functionality. However, when I see these

Re: [users@httpd] How do I choose the best settings for the Apache Server?

You will need to ask the cpanel community in that case. On Sun, Sep 17, 2023 at 2:19 AM Jason Long wrote: > Hello, > In the Apache configuration file, there is the following text: > > DO NOT EDIT. AUTOMATICALLY GENERATED. USE INCLUDE FILES IF YOU NEED TO > MAKE A CHANGE > ... > #

Re: [users@httpd] How do I choose the best settings for the Apache Server?

Hello, In the Apache configuration file, there is the following text: DO NOT EDIT. AUTOMATICALLY GENERATED.  USE INCLUDE FILES IF YOU NEED TO MAKE A CHANGE ... #/etc/apache2/conf.d/includes/pre_main_global.conf #/etc/apache2/conf.d/includes/pre_virtualhost_global.conf #

Re: [users@httpd] realtime protection against cloud scans

Marc wrote: > I still need to get familiar with nft. Currently I am using ipset NFT has an equivalent -- also called a set. Here are excerpts from my configuration that show how addresses and ranges appear in a set and how a set is blocked. Defining the set of real-time intrusions: set

RE: [users@httpd] realtime protection against cloud scans

> > using the NTP firewall > > Sorry, using the NFT firewall. > I still need to get familiar with nft. Currently I am using ipset, adding ip's with scripts. But ipset is preconfigured for specific netmask /24 /X. So at some point your /24 is getting full with 65k entries. It would be nice if

Re: [users@httpd] realtime protection against cloud scans

metaed borked: > using the NTP firewall Sorry, using the NFT firewall. - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org

Re: [users@httpd] realtime protection against cloud scans

Marc wrote: > Anyone having a suggestion on how to block cloud crawlers/bots? Obviously I > would like search engine bots to have access, but all the other crap I want to > lose. Only 'real users'. I take a three-pronged approach, using the NTP firewall and some scripts. 1. db-ip.com keeps a

Re: [users@httpd] How do I choose the best settings for the Apache Server?

You can only load one mpm module at a time. Run apachectl -M to see the loaded mpm. On Fri, Sep 15, 2023 at 6:19 PM Jason Long wrote: > Hello, > What happens if I use both modules at the same time? > > > On Fri, Sep 15, 2023 at 3:08 PM, Daniel Ferradal > wrote: > > > El vie, 15 sept 2023 a las

Re: [users@httpd] How do I choose the best settings for the Apache Server?

Hello,What happens if I use both modules at the same time? On Fri, Sep 15, 2023 at 3:08 PM, Daniel Ferradal wrote: El vie, 15 sept 2023 a las 13:36, Daniel Ferradal () escribió: When I probably recommended  MaxSpareThreads == to MaxRequestWorkers was due to Apache httpd with third

RE: [users@httpd] realtime protection against cloud scans

I would even state that >80% of your server load is crap, if you don't block any ranges. Besides that you open yourself up to vulnerability checks and monitoring for domain hijacking etc. > > Does the traffic from those cloud ranges have any significant impact on > your server performance? >

Re: [users@httpd] Apache Perms for Django

I would take a look at: https://cwiki.apache.org/confluence/display/httpd/13PermissionDenied On Mon, Sep 4, 2023 at 2:01 AM Ahmad Bilal wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > I am in the final stage of Django deployment on Apache+mod_wsgi > however I keep getting `403

Re: [users@httpd] Inquiry about apache httpd compile option

What is the problem you are trying to solve here with those compile options? On Sun, Sep 10, 2023 at 5:28 AM (대학원생) 양성현 (컴퓨터공학과) wrote: > Hello, > > First of all, thank you for reading this mail. > > I send an email to this address to ask three questions about apache httpd > compilation. > >

Re: [users@httpd] realtime protection against cloud scans

Does the traffic from those cloud ranges have any significant impact on your server performance? On Tue, Sep 12, 2023 at 10:33 AM Marc wrote: > > Anyone having a suggestion on how to block cloud crawlers/bots? Obviously > I would like search engine bots to have access, but all the other crap I

Re: [users@httpd] where to change this "internal server error message"

So we're likely dealing with mod_security overriding the response. I haven't tinkered with that module in some time to give you a definitive answer. On Fri, Sep 15, 2023 at 11:49 AM Marc wrote: > > > > What is returning the 500 response here? Is php/python/perl involved? > > No, I think this

RE: [users@httpd] where to change this "internal server error message"

> > What is returning the 500 response here? Is php/python/perl involved? No, I think this mod_security is generating this > As for the scrapers, you are absolutely wasting your time customizing the > response. I would just return a 403, actually. I think you might be right. I did not expect

Re: [users@httpd] where to change this "internal server error message"

What is returning the 500 response here? Is php/python/perl involved? As for the scrapers, you are absolutely wasting your time customizing the response. I would just return a 403, actually. On Fri, Sep 15, 2023 at 11:37 AM Marc wrote: > > > See the ErrorDocument directive. > > It does not

RE: [users@httpd] where to change this "internal server error message"

> See the ErrorDocument directive. It does not seem to work. It looks like this config is skipped and the error is loaded directly from the httpd binary. ErrorDocument 500 /406.html > Now, why is that response not suitable? And why would you respond with a > 200 for a blocked user agent? I

Re: [users@httpd] where to change this "internal server error message"

See the ErrorDocument directive. Now, why is that response not suitable? And why would you respond with a 200 for a blocked user agent? On Fri, Sep 15, 2023 at 11:26 AM Marc wrote: > Where/how can I change this message? > > The server encountered an internal error or > misconfiguration and was

[users@httpd] where to change this "internal server error message"

Where/how can I change this message? The server encountered an internal error or misconfiguration and was unable to complete your request. Please contact the server administrator at xxx to inform them of the time this error occurred, and the actions you performed just before this error. More

<    1   2   3   4   5   6   7   8   9   10   >