Re: [users@httpd] LDAP Login Access by Organization Unit

2014-05-30 Thread Eric Covener
On Fri, May 30, 2014 at 5:32 PM, Darly Senecal Baptiste wrote: > By my surprise, Apache accessed only to the first 2 providers mentioned at > the list (ldap-ny, ldap-mia) but not to Chicago. And giving the same > Password Mismatch. Can you share an error log at LogLevel debug that demonstrates it

[users@httpd] LDAP Login Access by Organization Unit

2014-05-30 Thread Darly Senecal Baptiste
Hi Community: I am implementing a svn and git repository servers and users have to access them with their LDAP/AD accounts. Those users are classified by organizational units(OU), that makes in total of 7 OUs. This setting was set in a file called auth_ldap.conf; for example: > AuthLDAPURL >

Re: [users@httpd] Preserve protocol in httpd proxy

2014-05-30 Thread Jim Jagielski
Off the top of my head, I think we would need to add another proxypass option. On May 30, 2014, at 10:21 AM, Maxim Solodovnik wrote: > I also would like to know :) > Is it also possible using Apache 2.4.7? > > > On Fri, May 30, 2014 at 9:08 PM, Jim Jagielski wrote: > Hmmm... let me mull this

Re: [users@httpd] Recommendation for Apache security book

2014-05-30 Thread Steven Siebert
Check out the NIST and DISA checklist and STIG docs, they are good places to start - their checks are based on industry best practices and Apache httpd CVEs. http://iase.disa.mil/stigs/downloads/zip/unclassified_web_srr_checklist_apache_v6r1-12_20100423.zip http://iase.disa.mil/stigs/app_security

[users@httpd] Recommendation for Apache security book

2014-05-30 Thread Felix Almeida
Hello, I was assigned with the task of preparing a security policy for Apache HTTP servers in my company and, despite I have a few years of experience with it (mostly v2.2), I'd like to have a more formal reference material on which I could base the policy. Please, is there any good (and not s

Re: [users@httpd] Preserve protocol in httpd proxy

2014-05-30 Thread Maxim Solodovnik
I also would like to know :) Is it also possible using Apache 2.4.7? On Fri, May 30, 2014 at 9:08 PM, Jim Jagielski wrote: > Hmmm... let me mull this over. > > BTW: CCing on dev@ > On May 29, 2014, at 11:18 AM, Juan Ignacio Barisich < > juan.baris...@gmail.com> wrote: > > > I need to configure

Re: [users@httpd] Preserve protocol in httpd proxy

2014-05-30 Thread Jim Jagielski
Hmmm... let me mull this over. BTW: CCing on dev@ On May 29, 2014, at 11:18 AM, Juan Ignacio Barisich wrote: > I need to configure in Apache 2.4.9 (with mod_proxy and mod_proxy_wstunnel > activated) a proxy with this mapping: > > - http://my.proxy/* --> http://my.backend:8080/* > - ws://my.