Hi Nick.
On Mon, 2013-08-05 at 15:38 +0100, Nick Kew wrote:
> > AFAIU, strict HTTP 1.0 has neither persistent connections / keep-alives
> > - a connection ends after a single request has been responded.
> > Neither does it have Host: headers.
>
> No, it has keepalives and Host headers. But th
Hi.
1) I'd have a question on how to set up a reverse proxy to a http 1.0 in
the cleanest most standard conforming way.
AFAIU, strict HTTP 1.0 has neither persistent connections / keep-alives
- a connection ends after a single request has been responded.
Neither does it have Host: headers.
a) Do
On Sat, 2012-12-22 at 10:13 -0500, Eric Covener wrote:
> How slow?
Without xml2enc it's about as fast as if I directly access the origin...
so say few milliseconds... with xml2enc its (depending on the respective
page) from 5-20 seconds.
Cheers,
Chris.
smime.p7s
Description: S/MIME cryptographi
Hi again.
I did some more investigation and found out the following:
The slowness is apparently not caused by any INFLATE/DEFLATE
combination, cause when I use:
#ProxyHTMLEnable off
SetOutputFilter INFLATE;proxy-html;DEFLATE
... it's still fast.
Actually the slowness seems to come from mod_xml2
Hi.
This is about using the external mod_proxy_html (3.1) with Apache 2.2...
but I guess it’s largely identical to the one included in Apache 2.4.
The setup I have is working, but it’s quite slow (and the machine is
extremely powerful, 16 cores, 92 G RAM, fastest disks... 10GbE
networking).
The
Hi Brian.
On Sun, 2012-12-09 at 07:48 -0600, Brian Millett wrote:
>
>
> Require all denied
>
> DirectoryIndex logon.jsp
> RewriteEngine On
> RewriteRule \.(pl|php|cgi) - [QSA,PT,L]
> RewriteRule \.(jpg|jpeg|gif|png|html)$ - [QSA,PT,L]
> RewriteRule
Hi.
I'm using a reverse proxy set up with ProxyPassMatch as the space I map
to is rather complex and can't be mapped with a normal ProxyPass.
Now the problem is obviously that:
ProxyPassReverse
ProxyPassReverseCookieDomain
ProxyPassReverseCookiePath
are only made for the simply ProxyPass form an
Hi.
I'm using Apache 2.2.22 and 2.2.16... and I wondered how vulnerable I'm
for the BEAST and CRIME attacks...
wrt to BEAST:
I know most browsers fix that already,... but I'd rather have it really
enforced by the server.
Further I would not prefer to disable my AES or enabled RC4 at all.
Also th
O=GermanGrid/OU=LMU/CN=Christoph Anton
Mitterer SUCCESS 3 "/C=DE/O=GermanGrid/OU=LMU/CN=Christoph Anton Mitterer"
"/C=DE/O=GermanGrid/CN=GridKa-CA" 3EC4; "GET
/icinga/classic/images/interface/menu_less.gif HTTP/1.1" 200 200; 506 410 447;
"lcg-lrz-monitoring
On Sun, 2012-02-19 at 09:04 -0500, Eric Covener wrote:
> > 2nd access:
> > I get an error, that no SNI hostname would have been provided, but still,
> > the ouput appears in the log file of the non-default name based vhost,
> > strange isn't it?
> No, Apache will still do normal vhost resolution.
B
;%{User-Agent}i\""
This is all from the non-default name based vhost... the default one's
is empty.
1st access with success:
02/19/12 03:30:35> 129.187.131.227:443 91.8.45.224;
/C=DE/O=GermanGrid/OU=LMU/CN=Christoph Anton Mitterer SUCCESS 3
"/C=DE/O=GermanGrid/OU=LMU
Hey.
This is actually from
https://issues.apache.org/bugzilla/show_bug.cgi?id=52703 but it seems
bug hunting is not welcomed there anymore, as I've already had to
experience in https://issues.apache.org/bugzilla/show_bug.cgi?id=52630
...
So I was redirected here to the list...
Well maybe so
Hey.
I guess I've found a solution on my own, well at least a partial one.
Here it is for those interested:
Don't set the "vhost-wide" SSLVerifyClient require directly in the
block, but either in a
SSLVerifyClient require
or (if this is enough, as all the content lies in the filesystem
Hi.
Is it somehow possible to limit the _usage_ of cgi-scripts to one
or .
I do not mean the _location_ of the cgi-scripts themselves (which can be
limited e.g. via ScriptAlias).
Here's the case:
I have a vhost, where PHP shall be enabled for a single , but
only for this directory.
This is ea
Hi.
I'd like to run PHP via CGI,... and especially run it as separate user.
But it seems that with suexec it's only possible to set a uid/gid für
suexec per vhost.
I would however like to set this per directory, as I have multiple
subdirs, e.g.
/davical
/forum
which all use CGI (or even PHP),.
Hi.
I wondered whether the following is somehow possible (I guess it's not).
I have a SSL vhost,... and I'd like to require SSL client cert
authentication _per default_ ... but selectively being able to not
demand it for some directories/files/locations.
Having something like:
SSLVerifyClient
On Tue, 2011-12-27 at 10:28 -0500, Eric Covener wrote:
> > Is there a different whether I match
> > "^/path/tovHost$"
> > or
> > "^/path/tovHost/$"
>
> yes, the note unique to 2.3 is about that. I don't remember where it
> mattered.
Yeah,.. I've read the note in trunk-doc,... but it is unclear
On Tue, 2011-12-27 at 09:54 -0500, Eric Covener wrote:
> Probably doesn't make much practical sense, since you can just use
> directory match in 2.3/2.4 and no change to Files or Directory would
> likely to ever be available in any older release.
Ah... now I've seen what you mean,... it now suppor
Hi...
When I have e.g.
Options none
AllowOverride none
Satisfy all
Order allow,deny
Deny from all
and I make a subdir with just:
Allow from all
1) Then all of:
Options none
AllowOverride none
Satisfy all
Order
On Tue, 2011-12-27 at 09:31 -0500, Eric Covener wrote:
> You could undo it in a subsequent section that only matched longer
> directory paths. DirectoryMatch is pretty limited in 2.2 and probably
> not so helpful.
Yeah,.. I've thought about this,.. but that also seems a bit hacky...
Would it mak
On Tue, 2011-12-27 at 03:31 -0500, Eric Covener wrote:
> nest Files inside of Directory.
That shouldn't help should it?
When I want to do this for files in the root dir of my vhost (e.g.
robots.txt),... I'd have to add the in that and
it would also apply to all other subdirs of the vhost's r
Hi.
Is it possible to set options (i.e. Allow from all) for a _single_ file
while not using ?
I'd like to have a default-deny policy for the whole vhost,... therefore
I have something like:
Order allow,deny
deny from all
But I'd like to allow access for single files or dirs.
For dirs this is
Hi.
I'd like to use content negotiation with MultiViews, but still being able
to set a qs which applies in case several variants would have the same
quality based on the client’s selection.
E.g. if a client says "Accept: image/*; qs=0.5, */*; qs=0.1" and I have a
image test.jpeg and test.png, Apac
Hi.
I'm having a vhost, which is reachable via one canonical name, e.g.
example.org, and also via several aliases, e.g. www.example.org,
example.com, etc.
I want that whenever requests are made via one of the aliases, that
those are redirected to the canonical name.
IMHO there are about the fol
Hi...
(Yes I've read the documentation section about merging sections, but
IMHO it's not absolutely clear IMHO)
I have one vhost containing about:
...
SSLRequireSSL
...
and possibly also a later location-section on /, containing other
directives, e.g.
#do e.g. some proxy stuff
25 matches
Mail list logo
