Hi,
Does anyone know why Apache httpd (2.4.4) fails to start if the pem file set
in SSLProxyMachineCertificateFile is formatted:
-BEGIN PRIVATE KEY-
MIIEvgIB
...
-END PRIVATE KEY-
the error is "incomplete client cert configured for SSL proxy (missing or
encrypted private key?) "
WOW!! very nice - thank you - I wasn't close at all :-)
Your code does work on my test servers.
--
View this message in context:
http://apache-http-server.18135.x6.nabble.com/header-unset-server-does-not-work-tp5006287p5006351.html
Sent from the Apache HTTP Server - Users mailing list archi
Thank you both for the replies.
I have used mod_security in the past, but concerned it would be
missimplemented.
1/ Do you think that AddServerHeader directive will ever be added to the
core Apache ?
2/ would someone reading the "module writing" tutorials be able to create a
module to modify or
Hi,
After setting "ServerTokens Prod", I would like to modify or remove the
server header that says "Apache" from the response.
Reading some googles it says that is not possible with "Header unset server"
as you'd expect from reading
http://httpd.apache.org/docs/current/mod/mod_headers.html
Besid
Would'nt you think that a (simple) timer for the header could fend off some
of the effect. Can't we assume that if it takes more than 3 second to enter
the header we do not want that client (i'll have to learn to type faster in
telnet :-).
Thanks - Fred
awarnier wrote:
&g
Hi,
http://httpd.apache.org/docs/2.2/mod/core.html#timeout says:
The TimeOut directive currently defines the amount of time Apache will wait
for three things
1. The total amount of time it takes to receive a GET request
...
1. seems to be misleading, tests with "Timeout 3" does not appear very
Hi,
I kept on testing with the attributes max_packet_size and packetSize (in
worker.properties and server.xml) and it appears to fix the large header
problem.
Does this mean that all the headers together have to fit into a buffer which
size is set by max_packet_size?
Thanks - Fredk
fredk2
Hi,
When I send a request to Tomcat via mod_jk I get the following error (code
413):
Request Entity Too Large
The requested resource
/myapp/jsp/cookieshowvalue.jsp
does not allow request data with GET requests, or the amount of data
provided in the request exceeds the capacity limit.
I total s
Hi,
I am not sure at what version it started (1.2.18?) but you can use the pipe
| rotatelog (http://httpd.apache.org/docs/2.2/programs/rotatelogs.html) eg.
daily rotation:
JkLogFile "|/usr/apache2/bin/rotatelogs -l /usr/myweb/logs/mod_jk_%Y%m%d.log
86400"
which does not involve any SIG... howe
Hi,
See the thread http://www.nabble.com/forum/ViewPost.jtp?post=21890574 you
will likely find some answers as well as this forum if you search for
"Deadlock".
Rgds - FredK
Jayam wrote:
>
> Hi All,
>
> We got following errors in our apache log files. Users complained they
> were
> not able
t the
sysvsem configuration been drastically improved since Solaris 8 aka 2004 -
eg. no /etc/systems entry required anymore).
-
Eric Covener wrote:
>
> On Thu, Jan 15, 2009 at 2:46 PM, fredk2 wrote:
>>
>> Hi,
>>
>> I was doing some stress test (with apache
Hi,
I was doing some stress test (with apache ab, 100 users, 100K requests) to
compare an Apache prefork and worker mpm. The test url is a simple hello
servlet on Tomcat 6.0.x via mod_jk. On my Solaris 10 server with only the
Apache with worker mpm I see following error messages in my jk log:
A
Hi,
thank you ... can we assume this to be the same risks as the warning against
using DSO modules?
Is there any reasons to think that the apache would execute slower if
compiled with this hook?
Rgds - Fred
William A. Rowe, Jr. wrote:
>
> fredk2 wrote:
>> Hi,
>>
>>
Hi,
is there any reasons why you would not want in production (or hardened
server) an apache compiled with -enable-exception-hook?
The manual says:
"For safety reasons this directive is only available if the server was
configured with the --enable-exception-hook option. It enables a hook that
al
t to mess with a process that so many
brilliant people have worked out over the years :-)
Thanks again - Fred
William A. Rowe, Jr. wrote:
>
> fredk2 wrote:
>> Hi,
>>
>> I am looking to compile httpd for a specific target directory structure
>> that
>> I do not
Hi,
I am looking to compile httpd for a specific target directory structure that
I do not have acccess to.
So I cannot use --prefix=/target/dir
If I set --prefix=/build/dir then all the configuration files in conf have
the wrong directory instead of the proper /target/dir.
Are there some additio
Hi,
The default Apache httpd.conf (all versions e.g 2.2.x, 1.3.20+) has the
following line
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
downgrade-1.0 force-response-1.0
This is documented at http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#msie
Is this still necessary when
I guess you are not passing the full URL to the servlet, try:
RewriteRule ^/url1(.*) /MyApp/MyServlet$1 [PT]
Cheers, Fred
--
View this message in context:
http://www.nabble.com/Apache%2Bmod_jk%2BTomcat%2Bmod_rewrite%2Bcookie-tf2922976.html#a8178908
Sent from the Apache HTTP Server - Users
Hello:
When i compile apache 2.2.3 on Linux with SSL the mod_ssl.so has some
dependencies that it does not have when compiled on Solaris (8,9,10):
extras (ldd):
libgssapi_krb5.so.2 => /usr/kerberos/lib/libgssapi_krb5.so.2
libkrb5.so.3 => /usr/kerberos/lib/libkrb5.so.3
lib
assuming you compile your own apache 2.x you can configure with
--enable-static-support so that the support tools have no lib dependencies.
another thing that works - although i cannot say it is the best method (i am
no compiler expert) - is to export the var CC="gcc -static-libgcc" before
the c
Hi,
When I compile apache 2.2.2 with openssl 0.9.8b (gcc 3.4.x, linux and
solaris) I can start Apache with ssl successfully.
Openssl:
./config --prefix=/usr/opt/openssl0.9.8b -static-libgcc
Apache:
./configure --prefix=/usr/opt/apache2.2.2 \
--enable-so --enable-mods-shar
21 matches
Mail list logo
