On Tue, Jan 27, 2009 at 10:54 PM, William A. Rowe, Jr.
wrote:
> Eric Covener wrote:
>> On Tue, Jan 27, 2009 at 4:05 PM, Raj Jay wrote:
>>> Sorry for resending this. Just wondering if ProxyRemote works when using SSL
>>> between Apache and the remote server (specified using ProxyPass)? If not,
>>>
Eric Covener wrote:
> On Tue, Jan 27, 2009 at 4:05 PM, Raj Jay wrote:
>> Sorry for resending this. Just wondering if ProxyRemote works when using SSL
>> between Apache and the remote server (specified using ProxyPass)? If not,
>> any alternate solutions will be greatly appreciated.
>>
>> Thanks!
>
On Tue, Jan 27, 2009 at 9:24 PM, Marty Enright wrote:
> I have downloaded and installed the new version of apache for windows xp
> first time user I can reach my server internally but not externally
>
> Spoke with smc for router support and turned on port 80 for port forwarding
> smc says that the
I have downloaded and installed the new version of apache for windows xp
first time user I can reach my server internally but not externally
Spoke with smc for router support and turned on port 80 for port forwarding
smc says that the other ports that need to be setup for port forwarding come
from
Buck Golemon amd.com> writes:
>
> Matt McCutchen mattmccutchen.net> writes:
>
> >
> > On Sat, 2009-01-24 at 09:17 -0500, Brian Mearns wrote:
> > > On Fri, Jan 23, 2009 at 6:44 PM, Buck Golemon
> amd.com> wrote:
> > > > Thanks for the reply, but if I remove the SetHandler directive above,
it
On Tue, Jan 27, 2009 at 6:43 PM, Jeff Ambrosino wrote:
> I'm using Apache as a reverse proxy to a back-end (origin) web server,
> handling SSL traffic. I have SSLSessionCache enabled, which lets the
> Apache server cache the client's public key to prevent the need to
> renegotiate subsequent conn
I'm using Apache as a reverse proxy to a back-end (origin) web server,
handling SSL traffic. I have SSLSessionCache enabled, which lets the
Apache server cache the client's public key to prevent the need to
renegotiate subsequent connections. But my question is whether this
also helps when Apache
Thanks I got it working.
I had to use CacheIgnoreQueryString On because backend webserver was not
sending expiration time and cache module in apache won't cache the resource
if it has query strings and it has no expiration module.
I resolved this by turning off CacheIgnoreQueryString on apache c
>> Like I said, it's not clear to me how this [HTTP Digest Authentication]
>> would solve my [Session Hijacking] problem. Can
>> you elaborate a little?
Wow, well thanks both of you for the great information. I didn't
realize that a new nonce was generated for each request, so I didn't
see how it
dd123 wrote:
You are right. My apache switched to different runtime user though it started
as root.
I changed the dir permission and atleast I can see some contents in the
cache dir
But now, I have hit another roadblock:
Basically, I want the images to be served via cache and my images are
disti
On Tue, Jan 27, 2009 at 4:47 PM, Charles Li wrote:
> I have setup my rewrite with the following:
>
> RewriteCond %{HTTP_HOST} ^.*serverINTG.*$ [NC]
>
> When I type in http://serverINTG.com/index, it get translated back to the
> real servername. But if I type in http://serverINTG.com/index/, with
You are right. My apache switched to different runtime user though it started
as root.
I changed the dir permission and atleast I can see some contents in the
cache dir
But now, I have hit another roadblock:
Basically, I want the images to be served via cache and my images are
distinguishable thr
I have setup my rewrite with the following:
RewriteCond %{HTTP_HOST} ^.*serverINTG.*$ [NC]
When I type in http://serverINTG.com/index, it get translated back to the real
servername. But if I type in http://serverINTG.com/index/, with a slash, it
stay with the alias. How do I make it stay with
On Tue, Jan 27, 2009 at 12:19 PM, cumm wrote:
> hi,
>
> my configuration:
>
> apache: v2.2.8
> os: suse linux 10
> website: http://www.yanghuamao.cn
>
> plz go to the site - the jpg file can be downloaded fully, but the mdb
> file can only be downloaded at about 21k bytes!
EnableSendfile off?
-
On Tue, Jan 27, 2009 at 4:05 PM, Raj Jay wrote:
> Sorry for resending this. Just wondering if ProxyRemote works when using SSL
> between Apache and the remote server (specified using ProxyPass)? If not,
> any alternate solutions will be greatly appreciated.
>
> Thanks!
> -Raj.
The manual says it
Sorry for resending this. Just wondering if ProxyRemote works when using SSL
between Apache and the remote server (specified using ProxyPass)? If not,
any alternate solutions will be greatly appreciated.
Thanks!
-Raj.
On Sat, Jan 24, 2009 at 3:55 PM, Raj Jay wrote:
> Thanks Eric! This was helpf
Brian Mearns wrote:
On Tue, Jan 27, 2009 at 2:35 PM, Nick Kew wrote:
On Tue, 27 Jan 2009 14:16:55 -0500
Brian Mearns wrote:
I'm not concerned right now with security of content, I'm concerned
with someone highjacking another person's session.
Then Digest Authentication is exactly what you w
On Tue, 2009-01-27 at 14:16 -0500, Brian Mearns wrote:
> I'm not concerned right now with security of content, I'm concerned
> with someone highjacking another person's session. I send a session
> token, and the client sends it back, either in cookie data or in the
> URL. Either way, it's plain tex
dd123 wrote:
I have a webserver servicing the images and url for that webserver looks like
this:
http://backend-server.abc.com/mcs-stream-war/asset/streamAsset?id=e98a887b-2eb1-456d-ba18-d21a1b0b06cc
The above URL is basically an image.
Now, I want to front this webserver with a reverse proxy
I have a webserver servicing the images and url for that webserver looks like
this:
http://backend-server.abc.com/mcs-stream-war/asset/streamAsset?id=e98a887b-2eb1-456d-ba18-d21a1b0b06cc
The above URL is basically an image.
Now, I want to front this webserver with a reverse proxy caching apache
On Tue, Jan 27, 2009 at 2:35 PM, Nick Kew wrote:
> On Tue, 27 Jan 2009 14:16:55 -0500
> Brian Mearns wrote:
>
>> I'm not concerned right now with security of content, I'm concerned
>> with someone highjacking another person's session.
>
> Then Digest Authentication is exactly what you want.
Like
On Tue, 27 Jan 2009 14:16:55 -0500
Brian Mearns wrote:
> I'm not concerned right now with security of content, I'm concerned
> with someone highjacking another person's session.
Then Digest Authentication is exactly what you want.
--
Nick Kew
Application Development with Apache - the Apache
On Tue, Jan 27, 2009 at 1:49 PM, Matt McCutchen wrote:
> On Tue, 2009-01-27 at 18:35 +, Nick Kew wrote:
>> On Tue, 27 Jan 2009 10:02:58 -0500
>> Brian Mearns wrote:
>>
>> > . So basically what I'm coming
>> > to is that session's aren't completely insecure unless over HTTPS?
>>
>> Well, you c
What about your httpd.conf ...
How do you have your LISTEN directive formated...???
http://httpd.apache.org/docs/2.2/mod/mpm_common.html#listen
We had a case that was the opposite from yours...
...we could access one of our sites via an IP address, but not via
"localhost"...
...the problem wa
On Tue, 2009-01-27 at 18:35 +, Nick Kew wrote:
> On Tue, 27 Jan 2009 10:02:58 -0500
> Brian Mearns wrote:
>
> > . So basically what I'm coming
> > to is that session's aren't completely insecure unless over HTTPS?
>
> Well, you can send a session token.
>
> With HTTP Digest Authentication,
On Tue, 27 Jan 2009 10:02:58 -0500
Brian Mearns wrote:
> . So basically what I'm coming
> to is that session's aren't completely insecure unless over HTTPS?
Well, you can send a session token.
With HTTP Digest Authentication, it's secure.
--
Nick Kew
Application Development with Apache - the
Yes Evan, it is behind NAT gateway, but Iam on the server itself and
trying it out with IP address, yes the port 80 and 443 both are open,
when I do a telnet test with IP address, both the ports work. Somehow it
takes localhost but not the server IP in the url.
Suresh.
-Original Message-
Is your machine behind a NAT gateway? If so, is port 80 correctly
forwarded from your public IP address to the private IP address
you're likely on?
At 10:02 AM 1/27/2009, you wrote:
Hello All,
I have implemented apache web server 2.2 with SSL and local security
policy using htpasswd. Everyt
Hello All,
I have implemented apache web server 2.2 with SSL and local security
policy using htpasswd. Everything looks fine, and when I use
https://localhost it works, but when I use IP address of the machine
like https://12.13.14.10 it fails, any idea how to resolve this. I have
added in syste
Eric Covener wrote:
On Tue, Jan 27, 2009 at 4:44 AM, Norman Khine wrote:
Hello,
I have a very strange issue when adding the google analytics code to my
site.
If you go to http://uk.expert.travel and click on a section and then
click back to the main home page, I get a 502 proxy error.
and in
hi,
my configuration:
apache: v2.2.8
os: suse linux 10
website: http://www.yanghuamao.cn
plz go to the site - the jpg file can be downloaded fully, but the mdb
file can only be downloaded at about 21k bytes!
plz help!
--
martin
-
Hi,
I am having an issue. I have a webserver that is running Apache 2.2 with
proxy_pass that talks to an app server running JBOSS. The issue I am having
is that any time we upload a file, on the apache side we are getting 503 if
the file is over 17mb.
We are running Proxy Balancer and our settin
On Tue, Jan 27, 2009 at 9:52 AM, Nick Kew wrote:
> On Tue, 27 Jan 2009 08:26:12 -0500
> Brian Mearns wrote:
>> By this I mean I'm just verifying each time the session id is
>> sent by the client (in the query string or in a cookie) that it's from
>> the same IP-address as the one that initi
On Tue, 27 Jan 2009 08:26:12 -0500
Brian Mearns wrote:
> Sorry, this isn't strictly apache related, but this seems like a good
> place to find HTTP expertise and insight. I'm just wondering if
> ip-address-spoofing is of concern with HTTP in general? Specifically,
> I'm using server side sessions
Sorry, this isn't strictly apache related, but this seems like a good
place to find HTTP expertise and insight. I'm just wondering if
ip-address-spoofing is of concern with HTTP in general? Specifically,
I'm using server side sessions and "authenticating" them against IP
address. By this I mean I'm
On Tue, Jan 27, 2009 at 3:26 AM, Issac Goldstand wrote:
> Short answer: No.
>
> Long answer: There are patches in the works (none of them really going
> anywhere AFAIK, and don't expect anything until a major version bump,
> but they're there) but even if they ever make it in, you'd still need to
On Tue, Jan 27, 2009 at 4:44 AM, Norman Khine wrote:
> Hello,
> I have a very strange issue when adding the google analytics code to my
> site.
> If you go to http://uk.expert.travel and click on a section and then
> click back to the main home page, I get a 502 proxy error.
>
> and in my error lo
On Tue, Jan 27, 2009 at 1:48 AM, ananth desh wrote:
> Hello All,
> Thanks for all your tips , Now when i run on port 2443 instead of
> 443 i get an error on the browser as below
> "Description: You have made a request for a secure SSL connection to a
> forbidden port number"
>
Sounds like a mess
Hello,
I have a very strange issue when adding the google analytics code to my
site.
If you go to http://uk.expert.travel and click on a section and then
click back to the main home page, I get a 502 proxy error.
and in my error log i get this entry:
(104)Connection reset by peer: proxy: error r
Short answer: No.
Long answer: There are patches in the works (none of them really going
anywhere AFAIK, and don't expect anything until a major version bump,
but they're there) but even if they ever make it in, you'd still need to
explicitly listen with UDP.
Issac
Brian Mearns wrote:
> Does
40 matches
Mail list logo
