[users@httpd] Auth failure when a rewrite rule is moved out to an htaccess file

I have a problem where authorisation behaves differently when a rewrite rule is moved from the main configuration to an .htaccess file. Any advice appreciated. The site looks like this: $ tree /var/www5 /var/www5 |-- dir1     |-- test1.html |-- dir2 |   |-- test2.html |-- index.html |-- passwo

Re: [users@httpd] ProxyPass to an IPv6 link-local address

Dino Ciuffetti: > 18 luglio 2025 01:03, "Lexi Winter" wrote: > > the problem here is it does not seem to understand how to parse the > > scope id, which is separated from the address by '%'. > > Yes, exactly. That’s the core issue. The APR library, together with > mod_proxy_http and proxy_util, c

Re: [users@httpd] ProxyPass to an IPv6 link-local address

18 luglio 2025 01:03, "Lexi Winter" wrote: > ProxyPass http://[fd00::1]:80/ > > the problem here is it does not seem to understand how to parse the > scope id, which is separated from the address by '%'. Yes, exactly. That’s the core issue. The APR library, together with mod_proxy_http and pro

Re: [users@httpd] ProxyPass to an IPv6 link-local address

Paul: > Have you tried without the "[ ]" square brackets in the Location directive? thank you for the suggestion, but this does not work either: ProxyPass http://fe80::2%vm.cgit:80/ the error being: ProxyPass Unable to parse URL: http://fe80::2%vm.cgit:80/ > RFC 1738 is

Re: [users@httpd] ProxyPass to an IPv6 link-local address

On 7/17/25 17:04, Lexi Winter wrote: hello, i am having trouble trying to use ProxyPass to proxy a request to an HTTP backend on an IPv6 link-local address. for example, using this: ProxyPass "http://[fe80::2%vm.cgit]:80"; returns an error: AH01083: error parsing URL http://[fe80::

[users@httpd] ProxyPass to an IPv6 link-local address

hello, i am having trouble trying to use ProxyPass to proxy a request to an HTTP backend on an IPv6 link-local address. for example, using this: ProxyPass "http://[fe80::2%vm.cgit]:80"; returns an error: AH01083: error parsing URL http://[fe80::2%vm.cgit]:80: Invalid host/port i was

Re: [users@httpd] Apache 2.4.64 and SNI

Hi Yes, we're also seeing some different behaviour since the update to 2.4.64 To us, it seems like an incomplete fix that has unwanted side effects. This is the patch for CVE-2025-23048 -> https://github.com/apache/httpd/commit/c4cfa50c9068e8b8134c530ab21674e77d1278a2 How to reproduce: Simple

Re: [users@httpd] Apache 2.4.64 and SNI

On Fri, 11 Jul 2025, Pavel Matěja wrote: Hi, I've just updated Apache to the 2.4.64 version and it's kind of strange. I used to got proper response from Apache with multiple virtual hosts. When I tested using openssl s_client -connect A.B.C.D:443 -crlf -noservername after upgrade I got: 421 Mi

[users@httpd] Apache 2.4.64 and SNI

Hi, I've just updated Apache to the 2.4.64 version and it's kind of strange. I used to got proper response from Apache with multiple virtual hosts. When I tested using openssl s_client -connect A.B.C.D:443 -crlf -noservername after upgrade I got: 421 Misdirected Request "The client needs a new

[users@httpd] CVE-2025-53020: Apache HTTP Server: HTTP/2 DoS by Memory Increase

Severity: moderate Affected versions: - Apache HTTP Server 2.4.17 through 2.4.63 Description: Late Release of Memory after Effective Lifetime vulnerability in Apache HTTP Server. This issue affects Apache HTTP Server: from 2.4.17 up to 2.4.63. Users are recommended to upgrade to version 2

[users@httpd] CVE-2025-49812: Apache HTTP Server: mod_ssl TLS upgrade attack

Severity: moderate Affected versions: - Apache HTTP Server through 2.4.63 Description: In some mod_ssl configurations on Apache HTTP Server versions through to 2.4.63, an HTTP desynchronisation attack allows a man-in-the-middle attacker to hijack an HTTP session via a TLS upgrade. Only co

[users@httpd] CVE-2025-49630: Apache HTTP Server: mod_proxy_http2 denial of service

Severity: low Affected versions: - Apache HTTP Server 2.4.26 through 2.4.63 Description: In certain proxy configurations, a denial of service attack against Apache HTTP Server versions 2.4.26 through to 2.4.63 can be triggered by untrusted clients causing an assertion in mod_proxy_http2.

[users@httpd] CVE-2025-23048: Apache HTTP Server: mod_ssl access control bypass with session resumption

Severity: moderate Affected versions: - Apache HTTP Server 2.4.35 through 2.4.63 Description: In some mod_ssl configurations on Apache HTTP Server 2.4.35 through to 2.4.63, an access control bypass by trusted clients is possible using TLS 1.3 session resumption. Configurations are affecte

[users@httpd] CVE-2024-42516: Apache HTTP Server: HTTP response splitting

Severity: moderate Affected versions: - Apache HTTP Server 2.4.0 through 2.4.63 Description: HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of applications hosted or proxied by the server can split the HTTP

Re: [users@httpd] mod_fcgid: can't apply process slot

On 6/9/25 12:36, Lars Noodén wrote: Hello, I have a FastCGI script working with Apache2 on one system, but seem to have missed something while trying to port it over to another system. On the new system, the browser takes a long time before finally returning a "503 Service Unavailable" messag

Re: [users@httpd] Re: mod_rewrite: Conditionally set RemoteIPHeader

On Wed, Jun 11, 2025 at 6:48 PM wrote: > > Does anyone know of a way to conditionally set the RemoteIPHeader > directive for mod_remoteip? I've tried a few things; a simple if/else > says "RemoteIPHeader is not allowed here." And trying to set my own > request header that I can point "RemoteIPHead

[users@httpd] Re: mod_rewrite: Conditionally set RemoteIPHeader

Does anyone know of a way to conditionally set the RemoteIPHeader directive for mod_remoteip? I've tried a few things; a simple if/else says "RemoteIPHeader is not allowed here." And trying to set my own request header that I can point "RemoteIPHeader" to doesn't seem to work; no matter how I o

Re: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11

ports "c:/whatever" and you say it's at "C:/whatever." Maybe > trivial (I gave up on Windows in 2003 and can't remember whether case > was sensitive), but asking a .conf to find a file in the wrong place > normally fails. > > Good luck, > Paul >

Re: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11

ensitive), but asking a .conf to find a file in the wrong place normally fails. Good luck, Paul ?? *From:*Bill Wiest *Sent:* June 9, 2025 9:55 AM *To:* users@httpd.apache.org *Subject:* RE: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11 *CAUTION:*This email originated from outs

Re: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11

Syntax error on line 188 of C:/Apache24/conf/httpd.conf: Cannot > load c:/PHP/php5apache2_4.dll into server: The specified module could not > be found. > > > > Yes, I do have this .dll in C:\PHP. > > > > ?? > > > > *From:* Bill Wiest > *Sent:* June 9, 2

RE: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11

an issue with Windows 11. Everything works fine on Windows 10. From: Frank Gingras Sent: June 9, 2025 3:46 PM To: users@httpd.apache.org Subject: Re: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11 CAUTION: This email originated from outside of the organization. Do not click lin

RE: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11

The specified module could not be found. Yes, I do have this .dll in C:\PHP. ?? From: Bill Wiest Sent: June 9, 2025 9:55 AM To: users@httpd.apache.org Subject: RE: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11 CAUTION: This email originated from outside of the organization. Do n

RE: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11

The x86 and x64 redistributables were missing, but, after installing them and restarting the machine I still get the same error. From: Bill Wiest Sent: June 9, 2025 9:28 AM To: users@httpd.apache.org Subject: RE: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11 CAUTION: This

RE: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11

That may be, I will check. From: Eric Covener Sent: June 9, 2025 9:22 AM To: users@httpd.apache.org Subject: Re: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11 CAUTION: This email originated from outside of the organization. Do not click links or open attachments unles

Re: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11

>> httpd.exe: Syntax error on line 75 of C:/Apache24/conf/httpd.conf: Cannot >> load modules/mod_actions.so into server: The specified module could not be >> found. > > > Windows will give this error if a dependency of the .so is not found. > Could you be missing some redistributable runtime? On

Re: [users@httpd] Apache 2.6 Can't Find Server Root - Win 11

On Mon, Jun 9, 2025 at 9:20 AM Bill Wiest wrote: > I have to move my Apache 2.6 installation from a Windows 10 machine to a > Windows 11 machine. > > > > I copied the C:\Apache24 folder over to C:\Apache24 on the Win 11 machine. > > > > When I launch Apache on the Win 11 machine, I get this error

[users@httpd] Apache 2.6 Can't Find Server Root - Win 11

I have to move my Apache 2.6 installation from a Windows 10 machine to a Windows 11 machine. I copied the C:\Apache24 folder over to C:\Apache24 on the Win 11 machine. When I launch Apache on the Win 11 machine, I get this error: C:\Apache24\bin>httpd.exe httpd.exe: Syntax error on line 75 of C

[users@httpd] mod_fcgid: can't apply process slot

Hello, I have a FastCGI script working with Apache2 on one system, but seem to have missed something while trying to port it over to another system. On the new system, the browser takes a long time before finally returning a "503 Service Unavailable" message. When that happens, the log file

Re: [users@httpd] Preventing Synology NAS WebStaion from overriding my customization

On 31/5/25 16:48, Wilkinson, J Lance wrote: Indeed that’s what I did. Using docker image php8.2-Apache-bullseye in Synology Container Manager. Only problem is a lot of things I try are best installed using a shell and there’s no shell access with that image. That makes things hard to work

Re: [users@httpd] Preventing Synology NAS WebStaion from overriding my customization

Indeed that’s what I did. Using docker image php8.2-Apache-bullseye in Synology Container Manager. Only problem is a lot of things I try are best installed using a shell and there’s no shell access with that image. That makes things hard to work around a lot of times but my config survives now

Re: [users@httpd] Preventing Synology NAS WebStaion from overriding my customization

On 15/4/25 16:00, Wilkinson, J Lance wrote:  Long time since I posted a query -- it's been 8+ years since retirement.   Brought up my first Apache 2.4 httpd in that time, this time in a Synology NAS using WebStation.   Anybody found a way to counter WebStation's overwriting my http.conf

Re: [users@httpd] Decades old minor bug...

On 5/22/2025 10:45 AM, Kalin KOZHUHAROV wrote: > > logname? logINname? Remote user login name? > Anything but "LOGname"! It is about a user, a login, not a log(file). Whoever wrote the %l code and documentation for Apache didn't hallucinate the word "logname". It was at least marginally acceptabl

[users@httpd] Decades old minor bug...

Hi there, I've been using the httpd since the 1.x days and today after revisiting some of the logging format documentation for n-hundredth time, I noted the doc text of this long forgotten and unused feature in `mod_log_format` is strange: %l Remote logname (from identd, if supplied). logname? lo

Re: [users@httpd] Rewrite not applied?

On Wed, May 21, 2025 at 1:12 PM J Lance Wilkinson wrote: > > On 5/21/2025 1:07 PM, Frank Gingras wrote: > > > > On Wed, May 21, 2025 at 12:19 PM J Lance Wilkinson wrote: > >> I have a directory /PMHS72/ which contains a few .html and .php files >> that I want to present, and all other files in t

Re: [users@httpd] Rewrite not applied?

On 5/21/2025 1:07 PM, Frank Gingras wrote: On Wed, May 21, 2025 at 12:19 PM J Lance Wilkinson wrote: I have a directory /PMHS72/ which contains a few .html and .php files that I want to present, and all other files in the directory are blocked. I need to rewrite requests for

Re: [users@httpd] Was there a post about mis-matched libraries?

On Wed, May 21, 2025 at 12:27 PM Knute Johnson wrote: > I seem to remember a post a few weeks ago about mis-matched libraries > causing apache to shut down right after startup. Was that on this list? > Was there a resolution? > > Thanks, > > -- > > Knute Johnson > gro...@knutejohnson.com > > >

Re: [users@httpd] Rewrite not applied?

On Wed, May 21, 2025 at 12:19 PM J Lance Wilkinson wrote: > I have a directory /PMHS72/ which contains a few .html and .php files > that I want to present, and all other files in the directory are blocked. > > I need to rewrite requests for the files in the directory to redirect > any explicit re

[users@httpd] Was there a post about mis-matched libraries?

I seem to remember a post a few weeks ago about mis-matched libraries causing apache to shut down right after startup. Was that on this list? Was there a resolution? Thanks, -- Knute Johnson gro...@knutejohnson.com - To u

[users@httpd] Rewrite not applied?

I have a directory /PMHS72/ which contains a few .html and .php files that I want to present, and all other files in the directory are blocked. I need to rewrite requests for the files in the directory to redirect any explicit requests for files in the directory, UNLESS they are those few whit

[users@httpd] Fwd: HSTS Missing From HTTPS Server (RFC 6797)

Forwarded from apa...@apache.org. If you choose to respond, please respond to the original sender. BKP -- Forwarded message - From: Jordan Wolkowski Date: Wed, May 21, 2025 at 9:07 AM Subject: HSTS Missing From HTTPS Server (RFC 6797) To: apa...@apache.org Good Morning, I’m

Re: [users@httpd] Ubuntu 22.04/Apache 2.4.58 can enable cgid, but not cgi

On 18/05/2025 10:43, EML wrote: On 18/05/2025 02:29, Frank Gingras wrote: First, you are free to change the mpm to event by commenting out the LoadModule directive for prefork, and uncommenting the LoadModule directive for event.  You will want to stop using the mod_php DSO if you change

Re: [users@httpd] Ubuntu 22.04/Apache 2.4.58 can enable cgid, but not cgi

On 18/05/2025 02:29, Frank Gingras wrote: First, you are free to change the mpm to event by commenting out the LoadModule directive for prefork, and uncommenting the LoadModule directive for event.  You will want to stop using the mod_php DSO if you change to the event mpm, mind you. As f

Re: [users@httpd] Ubuntu 22.04/Apache 2.4.58 can enable cgid, but not cgi

On Sat, May 17, 2025 at 4:00 PM EML wrote: > This combination (22.04.2/2.4.58) defaults to mpm_prefork. I have a > previous (working) Apache config which uses mod_cgid, and which sets > 'CGIDScriptTimeout'. Since this is a non-threading prefork system, I've > attempted to change 'CGIDScriptTimeou

[users@httpd] Ubuntu 22.04/Apache 2.4.58 can enable cgid, but not cgi

This combination (22.04.2/2.4.58) defaults to mpm_prefork. I have a previous (working) Apache config which uses mod_cgid, and which sets 'CGIDScriptTimeout'. Since this is a non-threading prefork system, I've attempted to change 'CGIDScriptTimeout' to 'CGIScriptTimeout'. However, this doesn't w

[users@httpd] long shot -- laravel?

Hi. Follow up to a post I did a few days ago with regards to installing/setting up domains/dns/servers. This comes down to getting a better understanding of laravel/apache. So, if anyone has skills, or knows someone who does, pass the shout to the resource. Willing to discuss payment for a very

Re: [users@httpd] long shot -- laravel?

On Wed, May 14, 2025 at 11:13 PM bruce wrote: > Hi. > > Follow up to a post I did a few days ago with regards to > installing/setting up domains/dns/servers. > > This comes down to getting a better understanding of laravel/apache. > > So, if anyone has skills, or knows someone who does, pass the

Re: [users@httpd] long shot -- laravel?

t;> Original message ---- >> From: bruce >> Date: 15/5/25 13:14 (GMT+10:00) >> To: users@httpd.apache.org >> Subject: [users@httpd] long shot -- laravel? >> >> Hi. >> >> Follow up to a post I did a few days ago with regards to >> install

Re: [users@httpd] long shot -- laravel?

come to mind. > > Apologies for top-posting. My grasp of Samsung email config is pitiful. > > > -- > Unsigned mail from my phone > > > > Original message > From: bruce > Date: 15/5/25 13:14 (GMT+10:00) > To: users@httpd.apache.org > Subject: [us

RE: [users@httpd] long shot -- laravel?

13:14 (GMT+10:00) To: users@httpd.apache.org Subject: [users@httpd] long shot -- laravel? Hi.Follow up to a post I did a few days ago with regards to installing/setting up domains/dns/servers.This comes down to getting a better understanding of laravel/apache.So, if anyone has skills, or knows

Re: [users@httpd] long shot -- laravel?

thanks. by the way -- I've posted a number of places, to try to get a handle on this. no luck yet. i've lurked on the list for a bit. does it get much traffic? On Wed, May 14, 2025 at 11:42 PM Frank Gingras wrote: > > > On Wed, May 14, 2025 at 11:13 PM bruce wrote: > >> Hi. >> >> Follow up

Re: [users@httpd] Re: dns/web server setup guru

On Wed, May 14, 2025 at 4:00 PM bruce wrote: > hi. > > think u miss my primary issue. to completely walk through/setup web > domain/server. > > ie, purchase url name, apply that to remote server/instance. setup > subdomains for different test apps, etc.. > > > On Wed, May 14, 2025, 3:38 PM bruc

[users@httpd] Re: dns/web server setup guru

hi. think u miss my primary issue. to completely walk through/setup web domain/server. ie, purchase url name, apply that to remote server/instance. setup subdomains for different test apps, etc.. On Wed, May 14, 2025, 3:38 PM bruce wrote: > Hi. > > Working on a few test web projects/apps. N

Re: [users@httpd] dns/web server setup guru

On Wed, May 14, 2025 at 3:39 PM bruce wrote: > Hi. > > Working on a few test web projects/apps. Normally, using a test remote > distance with the actual ipAdress is ok. However, a few test apps appear to > require/specify setting up actual sub-domains. > > I'm considering setting up test "domain"

[users@httpd] dns/web server setup guru

Hi. Working on a few test web projects/apps. Normally, using a test remote distance with the actual ipAdress is ok. However, a few test apps appear to require/specify setting up actual sub-domains. I'm considering setting up test "domain" for this purpose. So, looking for someone skilled in this

Re: [users@httpd] mod_bw and mod_cache

Thanks, Eric. I should have mentioned my mod_cache settings; I already have CacheQuickHandler set to off. However I did notice in the mod_bw docs the ability to filter by MIME type as well. I specified the types of files I'm expecting to serve: AddOutputFilterByType MOD_BW application/x-7z-compres

Re: [users@httpd] mod_bw and mod_cache

Maybe CacheQuickHandler off? https://httpd.apache.org/docs/2.4/mod/mod_cache.html#cachequickhandler Eric Covener cove...@gmail.com On Thu, May 1, 2025, 4:36 PM Patrick Coyne wrote: > Hi, > > I've got Apache httpd 2.4.62 running as a reverse proxy on Windows. > I'm using mod_cache/mod_cache_dis

[users@httpd] mod_bw and mod_cache

Hi, I've got Apache httpd 2.4.62 running as a reverse proxy on Windows. I'm using mod_cache/mod_cache_disk to cache the files retrieved from an upstream server so that other clients making the same request will have a shorter trip. I'm trying to use mod_bw to throttle the bandwidth used by clients

[users@httpd] LetsEncrypt drops OCSP support - required config changes?

Dears, I received the info that LetsEncrypt drops support for OCSP of their certificates. I took a look on my apache2 config and found   SSLUseStapling On   SSLStaplingCache "shmcb:logs/ssl_stapling(32768)" The docs (https://httpd.apache.org/docs/trunk/mod/mod_ssl.html#sslusestapling) are no

Re: [users@httpd] Retrieval of historical access logs removed by logrotate

Hi, Thank you for your input. Unfortunately our filesystem was XFS. So, we are looking at other tools that work on XFS. I will post an update on the outcome of other tools Regards Amjath On Tue, Apr 29, 2025 at 11:49 PM Antony Stone < antony.st...@apache.open.source.it> wrote: > On Tuesday 29 A

Re: [users@httpd] Retrieval of historical access logs removed by logrotate

Hi, Amjath Khan S wrote: > (...) Is there a possibility to recover the historical logs deleted > by logrotate. Any help would be appreciated That is unlikely. It depends how active your system is, in case the storage space allocated for those files has already been reused or not. If not, you

Re: [users@httpd] Retrieval of historical access logs removed by logrotate

On Tuesday 29 April 2025 at 19:07:06, Amjath Khan S wrote: > We have a bugzilla instance that is hosted on http server. The logrotate > configuration of the server is set for the default 4 weeks and old logs > were removed on a weekly basis. Is there a possibility to recover the > historical logs

[users@httpd] Retrieval of historical access logs removed by logrotate

Hi, We have a bugzilla instance that is hosted on http server. The logrotate configuration of the server is set for the default 4 weeks and old logs were removed on a weekly basis. Is there a possibility to recover the historical logs deleted by logrotate. Any help would be appreciated Regards Am

Re: [users@httpd] Apache dropping content-length response header from reverse proxy

On 2025-04-23 14:16, Rainer Canavan wrote: > From: Erik Thuning [...] > I have an apache server running as reverse proxy for a tomcat > application using mod_proxy_ajp. An external application pulling data > from mine has a hard requirement to get a content-length header in the > response and w

Re: [users@httpd] Apache dropping content-length response header from reverse proxy

> From: Erik Thuning [...] > I have an apache server running as reverse proxy for a tomcat > application using mod_proxy_ajp. An external application pulling data > from mine has a hard requirement to get a content-length header in the > response and won't accept transfer-encoding=chunked. Tomcat

[users@httpd] Apache dropping content-length response header from reverse proxy

Hi! I'd be grateful for any insight into what seems like it must be a simple issue, but I can't for the life of me find any answers in the documentation or on the wider internet. I have an apache server running as reverse proxy for a tomcat application using mod_proxy_ajp. An external applic

[users@httpd] Preventing Synology NAS WebStaion from overriding my customization

 Long time since I posted a query -- it's been 8+ years since retirement. Brought up my first Apache 2.4 httpd in that time, this time in a Synology NAS using WebStation. Anybody found a way to counter WebStation's overwriting my http.conf customization? Trying to create directory index s

Re: [users@httpd] Preventing Synology NAS WebStaion from overriding my customization

On Tue, Apr 15, 2025 at 12:00 PM Wilkinson, J Lance wrote: > Oh agreed. Just hoped some might be lurking here. > Lance > > On Apr 15, 2025, at 10:21 AM, Frank Gingras wrote: > >  > > > On Tue, Apr 15, 2025 at 10:02 AM Wilkinson, J Lance wrote: > >>  >> >> Long time since I posted a query --

Re: [users@httpd] Preventing Synology NAS WebStaion from overriding my customization

Oh agreed. Just hoped some might be lurking here. Lance On Apr 15, 2025, at 10:21 AM, Frank Gingras wrote:  On Tue, Apr 15, 2025 at 10:02 AM Wilkinson, J Lance mailto:jl...@psu.edu>> wrote:  Long time since I posted a query -- it's been 8+ years since retirement. Brought up my first Ap

Re: [users@httpd] Preventing Synology NAS WebStaion from overriding my customization

On Tue, Apr 15, 2025 at 10:02 AM Wilkinson, J Lance wrote: >  > > Long time since I posted a query -- it's been 8+ years since retirement. > Brought up my first Apache 2.4 httpd in that time, this time in a Synology > NAS using WebStation. Anybody found a way to counter WebStation's > overwrit

Re: [users@httpd] Allow or Deny from large numbers of hosts

пт, 21 мар. 2025 г. в 16:02, Christopher Schultz : > > All, > > Is there a way to load a bunch of allow or deny hosts from a file or > other data-store? I have several dozen CIDR expressions and they will > need to change periodically, so it would be more convenient if I could > load them from at l

Re: [users@httpd] RewriteCond and negative matching

On Mon, Apr 14, 2025 at 12:17 PM Dave Wreski wrote: > >> If the "home page" is an index file in the documentroot, a simple >> FallbackResource will suffice, and you don't need to use mod_rewrite at >> all. >> >> I believe that only works for physical files, like /images/myimage.gif, >> and not fo

Re: [users@httpd] RewriteCond and negative matching

If the "home page" is an index file in the documentroot, a simple FallbackResource will suffice, and you don't need to use mod_rewrite at all. I believe that only works for physical files, like /images/myimage.gif, and not for virtual paths set up by Joomla, like /news/

Re: [users@httpd] RewriteCond and negative matching

Hi, We're getting a ton of 404s for URLs for paths that don't exist, like /apps and other nonsense off the root that never existed that I'd like to redirect to the homepage. ... If the "home page" is an index file in the documentroot, a simple FallbackResource will suffice, and y

Re: [users@httpd] RewriteCond and negative matching

On Mon, Apr 14, 2025 at 11:32 AM Dave Wreski wrote: > Hi, > > We're getting a ton of 404s for URLs for paths that don't exist, like >> /apps and other nonsense off the root that never existed that I'd like to >> redirect to the homepage. >> > ... > > If the "home page" is an index file in the doc

Re: [users@httpd] RewriteCond and negative matching

On Sun, Apr 13, 2025 at 11:21 PM Dave Wreski wrote: > Hi, > > We're getting a ton of 404s for URLs for paths that don't exist, like > /apps and other nonsense off the root that never existed that I'd like to > redirect to the homepage. > > Here's what I'm working with so far, but it redirects eve

[users@httpd] RewriteCond and negative matching

Hi, We're getting a ton of 404s for URLs for paths that don't exist, like /apps and other nonsense off the root that never existed that I'd like to redirect to the homepage. Here's what I'm working with so far, but it redirects everything to the homepage, including valid articles. For exampl

Re: [users@httpd] Crash in Version 2.4.57 with OpenSSL 3.1.4

On 3/4/25 20:43, Soujanya Rai wrote: Thank you for your response. When you say stable 3.0.x, are those multi-threaded deployments? Have you come across any similar issues with the 3.x version? Until I find enough data to corroborate the issues with 3.1, it might be hard to make the version sw

Re: [users@httpd] Crash in Version 2.4.57 with OpenSSL 3.1.4

Thank you for your response. When you say stable 3.0.x, are those multi-threaded deployments? Have you come across any similar issues with the 3.x version? Until I find enough data to corroborate the issues with 3.1, it might be hard to make the version switch. Thanks! -smrai On Thu, Apr 3, 2025

Re: [users@httpd] Crash in Version 2.4.57 with OpenSSL 3.1.4

On 27/3/25 19:21, Soujanya Rai wrote: Hello, Apache HTTP Version: 2.4.57 In our Org, we are currently in the process of upgrading OpenSSL version to 3.1.6 and httpd is being run as a multi-threaded process. Occasionally we are seeing crashes with backtrace in the OpenSSL code, usually relat

Re: [users@httpd] Error trying to start MySQL today

On Sunday 30 March 2025 at 20:39:56, Don Zillen wrote: > 2025-03-30 11:05:08 0 [Note] Starting MariaDB 10.4.32-MariaDB 1. Why are you asking this on an Apache httpd list? 2. What happens if you revert to yesterday's backup? 3. Have you tried the suggested instructions in the log output?

[users@httpd] Error trying to start MySQL today

2025-03-30 11:05:08 0 [Note] Starting MariaDB 10.4.32-MariaDB source revision c4143f909528e3fab0677a28631d10389354c491 as process 29032 Cannot find checkpoint record at LSN (1,0x565a) 2025-03-30 11:05:08 0 [ERROR] mysqld.exe: Aria recovery failed. Please run aria_chk -r on all Aria tables and del

[users@httpd] wrong date in log file name after change to CEST

Hi, Do you have an experience with wrong date in file name after today's change CET to CEST in Apache httpd 2.4.63? File names have yestarday's date appendix in case I'm use logrotate with -l parameter When I tried to remove -l param and restart apache, log was created with todays date. But rest

[users@httpd] Crash in Version 2.4.57 with OpenSSL 3.1.4

Hello, Apache HTTP Version: 2.4.57 In our Org, we are currently in the process of upgrading OpenSSL version to 3.1.6 and httpd is being run as a multi-threaded process. Occasionally we are seeing crashes with backtrace in the OpenSSL code, usually related to double-freeing of OpenSSL structures.

[users@httpd] Fortigate 301E firewall is using Apache HTTP server

Subject: Fortigate 301E firewall is using Apache HTTP server Good day from Singapore, I have discovered that Fortigate 301E firewall is using Apache HTTP server! Regards, Mr. Turritopsis Dohrnii Teo En Ming Targeted Individuals in Singapore GIMP = Government-Induced Medical Problems 24 Mar 2025

Re: [users@httpd] Allow or Deny from large numbers of hosts

Frank, On 3/21/25 10:15 AM, Frank Gingras wrote: On Fri, Mar 21, 2025 at 9:03 AM Christopher Schultz mailto:ch...@christopherschultz.net>> wrote: All, Is there a way to load a bunch of allow or deny hosts from a file or other data-store? I have several dozen CIDR expressions and t

Re: [users@httpd] Allow or Deny from large numbers of hosts

On Fri, Mar 21, 2025 at 9:03 AM Christopher Schultz < ch...@christopherschultz.net> wrote: > All, > > Is there a way to load a bunch of allow or deny hosts from a file or > other data-store? I have several dozen CIDR expressions and they will > need to change periodically, so it would be more conv

Re: [users@httpd] Allow or Deny from large numbers of hosts

On Fri, Mar 21, 2025 at 12:53 PM Christopher Schultz < ch...@christopherschultz.net> wrote: > Frank, > > On 3/21/25 10:15 AM, Frank Gingras wrote: > > On Fri, Mar 21, 2025 at 9:03 AM Christopher Schultz > > mailto:ch...@christopherschultz.net>> > wrote: > > > > All, > > > > Is there a way

[users@httpd] Allow or Deny from large numbers of hosts

All, Is there a way to load a bunch of allow or deny hosts from a file or other data-store? I have several dozen CIDR expressions and they will need to change periodically, so it would be more convenient if I could load them from at least a file on the disk and clean-up my config a bit. I su

Re: [users@httpd] Proxy servers or serve direct codebase

What if you have an apache acting as a gateway which is configured to only accepting html drop everything else from the Internet then forward only html to the backend server for processing on the private network, would that not make the backend server less vulnerable than if you hadn't taken the

Re: [users@httpd] Proxy servers or serve direct codebase

On Sun, Mar 16, 2025 at 4:20 AM Zahid Rahman wrote: > > Let me rephrase my question then. Using Apache without the reverse proxy > feature > https://httpd.apache.org/docs/2.4/howto/reverse_proxy.html > > Does it leave your apache webserver vulnerable to attack ? No, enabling mod_proxy in a serv

Re: [users@httpd] Proxy servers or serve direct codebase

Let me rephrase my question then. Using Apache without the reverse proxy feature https://httpd.apache.org/docs/2.4/howto/reverse_proxy.html Does it leave your apache webserver vulnerable to attack ? https://www.groundupsystem.com/ https://www.groundupsystem.

Re: [users@httpd] Proxy servers or serve direct codebase

I don't have error when setting up software . I am very good at following instructions. If I do have issues then I just restart the setup process. Because I know anything I am doing has been tested by professional who take pride, so it is best not log on a mailing list and advertise one can not

Re: [users@httpd] Proxy servers or serve direct codebase

On Fri, Mar 14, 2025 at 12:13 AM Zahid Rahman wrote: > I don't have error when setting up software . > I am very good at following instructions. > > If I do have issues then I just restart the setup process. Because I know > anything I am doing has been tested by professional who take pride, so

Re: [users@httpd] Proxy servers or serve direct codebase

On Thu, Mar 13, 2025 at 9:38 PM Zahid Rahman wrote: > > That's my point , the majority of websites must be hosted without a proxy > server in front leaving the codebase vulnerable to attack. > > I was just wondering 🤔 the number of vulnerable websites in > percentage terms ? > > > > > ¯

Re: [users@httpd] Proxy servers or serve direct codebase

On 3/13/25 21:38, Zahid Rahman wrote: That's my point , the majority of websites must be hosted without a proxy server in front leaving the codebase vulnerable to attack. I was just wondering 🤔 the number of vulnerable websites in percentage terms ? My pages are presently off. I do not

Re: [users@httpd] Proxy servers or serve direct codebase

That's my point , the majority of websites must be hosted without a proxy server in front leaving the codebase vulnerable to attack. I was just wondering 🤔 the number of vulnerable websites in percentage terms ? ¯\_(ツ)_/¯ ♡۶♡ ۶♡۶ On Thu, 13 Mar 2025, 1

Re: [users@httpd] Proxy servers or serve direct codebase

On Thu, Mar 13, 2025 at 1:53 PM Zahid Rahman wrote: > The usual routine when hosting a website is :- > > One is given access to the apache webserver via filezilla whereby the > locally tested code from local machine is uploaded using ftp port 22. > > The code is then served by the apache web

Re: [users@httpd] Proxy servers or serve direct codebase

The usual routine when hosting a website is :- One is given access to the apache webserver via filezilla whereby the locally tested code from local machine is uploaded using ftp port 22. The code is then served by the apache webserver via port 80. If this is the routine followed by most hos

Re: [users@httpd] Proxy servers or serve direct codebase

On Thu, Mar 13, 2025 at 11:22 AM Zahid Rahman wrote: > Serving codebase directly means setting up an index.html file in the > config directory on the same disk as the apache install as per > these instructions > > > https://documentation.ubuntu.com/server/how-to/web-services/install-apache2/inde

Re: [users@httpd] Proxy servers or serve direct codebase

Serving codebase directly means setting up an index.html file in the config directory on the same disk as the apache install as per these instructions https://documentation.ubuntu.com/server/how-to/web-services/install-apache2/index.html ¯\_(ツ)_/¯ ♡۶♡ ۶♡۶ On Thu

  1   2   3   4   5   6   7   8   9   10   >