Hi,
what is the best way to fix the tls renegotiation problem?
On my site some locations require renegotiation to get a client cert.
But that can simply be moved into the vhost config.
I believe this is not sufficient, is it?
Is OpenSSL 0.9.8l sufficient? Or do I have to patch apache as well?
On Tue 15 Sep 2009, Nick Kew wrote:
> > /\\bcity\\b/ works on my localhost (Debian Linux with Apache
> > 2.2.13-1),
>
> Good. Mystery solved (though I have to confess I'm a little
> surprised you need that in the context).
Here is the piece of code that (I believe) eats the backslashes (mod_inclu
Привет,
On Tue 15 Sep 2009, Victor Porton wrote:
> >
>
> After this change the test 2 passes, but it does not pass if I enter
> http://localhost/test2.shtml?city=2
Perhaps you have to outwit the SSI string parser. Just a guess:
Torsten
--
Need professional mod_perl support?
Just hire me:
On Wed 19 Aug 2009, Qingshan Xie wrote:
> Think I may not describe my question clearly. My question is, in the
> case of Timeout=5 min but ProxyTimeout=10 min in a Reverse Proxy
> Server, if the backend response is over 10 min, when the connection
> will be closed, 5 min or 10 min?
The manual at
On Wed 19 Aug 2009, Qingshan Xie wrote:
> In a Reverse Proxy server, what is the relation of Apache "TimeOut"
> and "ProxyTimeout"? Can someone shed some lights on it?
TimeOut aborts a request if the client/browser takes too long to send or
receive data. ProxyTimeout aborts a connection to the b
Hi,
is distcache the way to go if I have a farm of 2.2.13 httpds or are
there better options to cache SSL sessions in an environment with many
servers?
I am asking because the distcache project seems quite dead.
Thanks,
Torsten
-
On Tue 28 Jul 2009, Freddy Jensen wrote:
> I have created a csh script which I invoke from my web page
> like this:
>
>
>
> The script looks like this:
>
> #!/bin/csh -f
> echo '<\!--#set var="MY_DEBUG" value=1 -->'
> exit 0
>
> Right after executing the csh script I have this html code
> that tr
On Wed 15 Jul 2009, Kevin O'Gorman wrote:
> Errno architecture (i686-linux-2.6.24-gentoo-r4-kosmanor) does not
> match executable architecture
> (i686-linux-thread-multi-2.6.28-gentoo-r5-kosmanor) at
> /usr/lib/perl5/site_perl/5.8.8/Errno.pm line 11.
To me this does not look like a modperl bug but
On Thu 25 Jun 2009, André Warnier wrote:
> > I am using Apache reverse proxy.
> >
> > I want to perform the following and wondering if it is possible:
> >
> > 1) Extract a field (Subject Name) from a client certificate
> > sent over SSL and compare it to a local list I have
> >
> > 2) Add
Hi André,
On Tue 16 Jun 2009, André Warnier wrote:
> Alan Wilson wrote:
> > Thanks - that makes sense, using a test along the lines of
> >
> > print "Content-Type: text/html\n";
> > print "Status: 302 Moved\nLocation:
> > http://www.mydomain.com/test.cgi\n\n";; print "\n";
> >
> > Seems to do what
On Thu 12 Feb 2009, Jürgen Mathwich wrote:
> When doing a
>
> # cat /proc//environ
>
> it shows me more variables than the cgi knows about. Now I have a
> project where I need to pass all the vars without knowing their keys
> to the cgi (just ALL of them), but I don't have any idea how to solve
> t
On Thu 05 Feb 2009, André Warnier wrote:
> Mike Soultanian wrote:
> > André Warnier wrote:
> >> I mean, if in your browser you get such a response page, and look
> >> at the html source of the page, do you really see links to
> >> "http://myserver.tld:81/...";, or are they more like
> >
> > yup.. t
Hi,
I have a compressed and an uncompressed version of the same document on
my disk. If the client sends the correct Accept-Encoding I want to send
the compressed version otherwise the uncompressed. If I send the
compressed version a Vary header is set. So the answer is correct.
But how about
Hi,
I am about to set up compression. One thing puzzles me a bit. Nowadays
most browsers know how to handle compressed data. So, it seems to me
that storing that data compressed on disk and send it via sendfile
would be better than having mod_deflate compress it each time anew. The
few clients
On Tue 21 Oct 2008, Clint Priest wrote:
> When the php module is installed into apache there is a php_flag and
> php_value directive available which could be used to set the value
> from within Apache, the only trick is to only have them take effect
> for certain remote ips. They would be:
>
> php
On Wed 17 Sep 2008, howard chen wrote:
> I am running Apache HTTPD 1.3.37 with mod_php, when using the top
> command, I see:
>
> PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
> 12584 web 15 0 142m 12m 9176 S 8 0.3 2:07.01 httpd
> 12586 web 15 0 142m
On Tue 16 Sep 2008, Rick Yorgason wrote:
> Here's the challenge I'm trying to solve. I'd like to use the
> SSLVerifyClient directive to offer better security to users who know
> about client certificates, but only for users who opt in to the extra
> security.
>
> To make matters more difficult, I'
On Tue 19 Aug 2008, Peter Milanese wrote:
>
> use Sys::Hostname;
> use File::Basename;
> use Apache2::ServerUtil;
> $s = Apache2::ServerUtil->server;
Try to add
use Apache2::ServerRec ();
somewhere before this last line.
Torsten
--
Need professional mod_perl support?
Just hi
On Fri 11 Jul 2008, Mike Friedman wrote:
> I've got a mod_perl handler setup like so, within a vhost:
>
>
> SetHandler perl-script
> PerlResponseHandler MyApp::Dispatcher
>
>
> Under this setup, if I navigate to /myapp/foo/bar/baz, I get:
>
> PATH_INFO => /foo/bar/baz
> SCRIPT_NAM
On Thu 03 Jul 2008, Jorge Medina wrote:
> Can I use a ServerName (services.mydomain.com) that does not match the name
> of the server
Yes, and you can of course use the same certificate for all servers.
Torsten
--
Need professional mod_perl support?
Just hire me: [EMAIL PROTECTED]
-
Hi,
is it possible to hand over the POST input of a SSI document to a virtual
included part of it?
I have an SSI document that contains
This way I can pass parameters that are passed in the URI to the subrequest.
But how can that be done if the request method is POST? (There is only one
suc
On Thu 10 Apr 2008, Andrew Klimov wrote:
> I saw the function $r->location in Perl library for Apache.
> I want to know its analogue in pure "C" Apache API.
modperl saves it in modperl_config_dir_create() that is the dir config
creater. Your C module can do just the same, hook per_dir_config crea
On Fri 29 Feb 2008, Andre Hübner wrote:
> i have just a little problem with name resolution using SSI. Customer of me
> is using and to show IP and Hostname of Client. It works without
> any error, I tried with different ISP. Customer says that his IP could not
> resolved to hostname and this f
On Thu 24 Jan 2008, abhishek jain wrote:
> > The server might not have mod_perl support and that's why it could make
> > that error.
>
> Hi, i do not have access to error log as well, i am on a shared hosting,
I really doubt that a shared hoster that denies access to the error_log
supports mod_pe
On Sat 12 Jan 2008, Graham Frank wrote:
> Correct me if I'm wrong, but should RLimitMem help prevent the RSS value
>
> >from going insane? I disabled my Perl script on one of the web servers
>
> today, and after 11 hours each process got up to a RSS of 550MB each.
http://httpd.apache.org/docs/2.2
On Sat 08 Dec 2007, Christian Lerrahn wrote:
> > RewriteEngine On
> > RewriteRule (.*)//+(.*) $1$2 [R=permanent,L]
>
> Thanks for that. I'm sorry to still bother. I'd like to get rid of
> paths like //foo/bar, too, which do not match with this rule. To be
> honest I don't quite understand the rule.
Hi,
I am trying to generate load with flood. Unfortunately it consumes almost all
of the possible virtual mem (almost 3GB) and dies.
Is it possible to configure it to spawn processes instead of threads?
Why does it consume so much memory?
Thanks,
Torsten
Here my config:
plain
Hi,
I have an apache 2.2.3 with worker mpm and mod_cgid running on a suse linux
SLES9.
Now I see on some servers that one Apache process that ought to die due to
MaxRequestsPerChild is not dying. The server-status module reports for each
of these processes a few (4-5) remaining connections in
Hi Nick,
On Tuesday 24 July 2007 20:10, Nick Kew wrote:
> If necessary, read some of the ApacheCon papers from power-users
> describing getting 10 concurrent connections.
Please forgive me the stupid question but I thought a port number is a 16 bit
integer. How can one get more than 64k conn
On Thursday 19 April 2007 12:11, Torsten Foertsch wrote:
> What is right?
Or would it be better to try the development version?
Torsten
pgpz3ZKTtl9ZG.pgp
Description: PGP signature
Hi,
I am trying to deploy mod_proxy_html-2.5.2 with a httpd 2.2.3 but it fills my
error_log with messages like:
[Thu Apr 19 08:42:50 2007] [error] [client 192.168.254.25] Error in bucket
read
The reason for this message lies in the following part of the code, I think.
if ( APR_BUCKET_IS_E
Hi,
what is the best way to build httpd without epoll support?
Thanks,
Torsten
pgpjqBSmrIWcg.pgp
Description: PGP signature
32 matches
Mail list logo
