Hello,
I've set up my Apache 2.4 web server on Ubuntu for multi-user shared
hosting with sufficient security isolation between all users. Part of my
server config is this:
Options Indexes SymLinksIfOwnerMatch
AllowOverride AuthConfig FileInfo Indexes Limit
Now when I want to
e incoming MTA that is breaking things at
your side.
This also explain why you are having issues with other mailing lists as
well.
18 maggio 2021 16:32, "Yves Goergen"
wrote:
Hello,
I'm having trouble receiving messages from this mailing list because
many of them have a brok
Hello,
I'm having trouble receiving messages from this mailing list because
many of them have a broken DKIM signature. I guess that's because the
mailing list is not configured properly to survive in today's e-mail
world. If a message with a DKIM signature is sent to this list (like
mine),
schrieb Yves Goergen :
I found out I cannot use a test environment because it doesn't have
wildcard certificates. So I had to quickly run this on the live server.
Now I have a bunch of log lines about http2. What should I look for and
how can I understand them? Please advise.
You should see
s@httpd] Disable HTTP2 connection coalescing for different
virtual hosts/domains
Am 17.12.2020 um 14:05 schrieb Yves Goergen :
I found out I cannot use a test environment because it doesn't have
wildcard certificates. So I had to quickly run this on the live server.
Now I have a bunch of log
t case?
Best regards, Stefan
Am 15.12.2020 um 14:33 schrieb Yves Goergen :
Hello,
I just found out the hard way that HTTP2 has a great new feature that
intentionally misdirects requests to the wrong domain. I'm using Apache
on Ubuntu 20.04 with Virtual Hosts, a single shared IPv4 address (wh
this is not the case, a log with "LogLevel http2:debug" would help
to see what is wrong here.
- But if this works, then the mixup happens somewhere in the proxy
handling. What requests do you see incoming in your proxy logs in that case?
Best regards, Stefan
Am 15.12.2020 um 14:33 schrieb
xy
handling. What requests do you see incoming in your proxy logs in that case?
Best regards, Stefan
Am 15.12.2020 um 14:33 schrieb Yves Goergen :
Hello,
I just found out the hard way that HTTP2 has a great new feature that
intentionally misdirects requests to the wrong domain. I'm
Hello,
I just found out the hard way that HTTP2 has a great new feature that
intentionally misdirects requests to the wrong domain. I'm using Apache
on Ubuntu 20.04 with Virtual Hosts, a single shared IPv4 address (what
else can you do these days), HTTP2 and HTTPS. Some of these domains use
I've recently learned about these issues, too.
For those who aren't aware of it, the issue is called BREACH and was
discovered several years ago. The problem is that encrypting makes
content unreadable, but keeps the content length unchanged. That means
the information of content length
Hello,
I'm setting up a new server with Apache HTTPd on Ubuntu 20.04. I think I
have configured everything as usual but it just won't compress static
HTML pages. I does compress the directory index and PHP content (that
doesn't do anything else than a simple text output). All these pages
Hello,
I'd like to let my users install their own SSL certificates through a
web interface for self-management services. If a user provides a
malicious certificate, the entire server will fail to start and the
whole system is down. This is a bit hard but that's how it is.
So I'll have to
else and who value other interfaces, too.
Yves
Von: @lbutlr
Gesendet: Mi, 2018-02-14 02:50 +0100
On 13 Feb 2018, at 13:35, Yves Goergen <nospam.l...@unclassified.de> wrote:
Moving to modern and usable web platforms next time
Web platforms also r
Von: Yann Ylavic
Gesendet: Mo, 2018-02-12 10:47 +0100
On Mon, Feb 12, 2018 at 10:24 AM, Yves Goergen
<nospam.l...@unclassified.de> wrote:
One more of those unpractical mailing lists... (I'm already deleting 99% of
what I receive to ask a single question. This is more than th
One more of those unpractical mailing lists... (I'm already deleting 99%
of what I receive to ask a single question. This is more than the spam.)
Okay, so I'm not going to solve this problem server-side. The client
that gets the error will have to retry on its own more often and even
resend
and everybody uses data centers with tons of servers and load
balancers today?
Yves
Von: Yves Goergen
Gesendet: Sa, 2018-02-03 16:08 +0100
Hello,
I've configured Apache as a reverse proxy for my application server.
When the backend server isn't available, Apache
that could be named "retryconnect".
Yves Goergen
http://unclassified.software
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org
for
the external process. My file validation is implemented in PHP (CLI) anyway.
--
Yves Goergen
http://unclassified.software
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h
. If
not, One of the file is not linked to the others.
openssl rsa -noout -modulus -in FILE.key
openssl req -noout -modulus -in FILE.csr
openssl x509 -noout -modulus -in FILE.cer
Thank you, that seems to catch the manipulations I made to my test file
that would also cause Apache to fail start up.
--
Yves
for the
broken file's VirtualHost, and otherwise ignore the error? At least it
should not fail completely, that's a too drastic measure that cannot be
handled reasonably in an automatic way.
--
Yves Goergen
http://unclassified.software
that the client was denied in my
restricted directory, with is also expected.
But why is the error document file not executed at all anymore?
Apache version is from 2.2.x to 2.4.7 on Ubuntu 14.04.
--
Yves Goergen
http://unclassified.de
http://dev.unclassified.de
in a directory regarded when I'm not even inside
that directory? Why does entering a trailing slash or not make such a
great difference?
--
Yves Goergen LonelyPixel [EMAIL PROTECTED]
Visit my web laboratory at http://beta.unclassified.de
On 05.08.2007 16:23 CE(S)T, Joshua Slive wrote:
On 8/5/07, Yves Goergen [EMAIL PROTECTED] wrote:
On 04.08.2007 18:25 CE(S)T, Joshua Slive wrote:
Once you know that you need to use mod_rewite, there is no point in
fooling around with mod_setenvif. It is simpler to do everything in
mod_rewrite
on it in the documentation.
This is really bugging me since it is one of the few issues I have with
a simple and reliable redirection of my website to one single domain name.
--
Yves Goergen LonelyPixel [EMAIL PROTECTED]
Visit my web laboratory at http://beta.unclassified.de
24 matches
Mail list logo
