[users@httpd] Fwd: HSTS Missing From HTTPS Server (RFC 6797)

Forwarded from apa...@apache.org. If you choose to respond, please respond to the original sender. BKP -- Forwarded message - From: Jordan Wolkowski Date: Wed, May 21, 2025 at 9:07 AM Subject: HSTS Missing From HTTPS Server (RFC 6797) To: apa...@apache.org Good Morning, I’m

Re: [users@httpd] Fwd: apache2 / httpd graceful/reload failures on Ubuntu 21.04

Reading the source code: >From mod_slotmem_shm: ... 401 apr_shm_remove(fname, pool); 402 rv = apr_shm_create(&shm, size, fname, gpool); ... 408 ap_log_error(APLOG_MARK, rv == APR_SUCCESS ? APLOG_DEBUG : APLOG_ERR, 409 rv, ap_server_conf

[users@httpd] Fwd: apache2 / httpd graceful/reload failures on Ubuntu 21.04

Hi, I've been experiencing a failed apache2 service on Ubuntu 21.04 when performing a reload using the `systemctl reload apache2` command. The command does not always fail, but seems to be failing more often as the number of vhosts increases (currently ca 120). My The `systemctl reload apache2` c

Re: [users@httpd] Fwd: [modwsgi] mod_wsgi 3.4 issues

> > > Any hints appreciated. > > Hi Philip, One thing I didn't see in the snippet is usage of the `WSGIPassAuthorization` directive, which is necessary to pass in the content of the Authorization header into the WSGI environment. Best, Will

[users@httpd] Fwd: [modwsgi] mod_wsgi 3.4 issues

Hi, I asked this on modw...@googlegroups.com but didn't hear back. The documentation with modwsgi only references Apache 1.3, 2.0, and 2.2 authentication. I need to get this up and running quickly, but I can't figure out why the authentication isn't happening. See the configuration informatio

[users@httpd] Fwd: HTTP Header Security Filter (antiClickJackingEnabled x-frame-options) doesn't work with mod_proxy as expected

Note: already asked the tomcat mailing list without receiving any reply I'm trying to configure the header x-frame-options in tomcat8 web.xml: httpHeaderSecurity org.apache.catalina.filters.HttpHeaderSecurityFilter true antiClickJackingOption

Re: [users@httpd] Fwd: Warning from users@httpd.apache.org

Top-posting FTR, DMARC handling has now been updated. The filter no longer removes DKIM headers (it renames them if necessary). Also the DKIM and From headers are handled independently. This should avoid problems previously caused if there were two DKIM Sigs or the Sig appeared after the From hea

Re: [users@httpd] Fwd: Warning from users@httpd.apache.org

> Date: Tuesday, October 29, 2019 22:03:58 + > From: sebb > > On Mon, 28 Oct 2019 at 09:19, sebb wrote: >> >> On Sun, 27 Oct 2019 at 14:21, Richard >> wrote: >> > >> > >> > >> > > Date: Sunday, October 27, 2019 12:17:36 + >> > > From: sebb >> > > >> > >> On Sun, 27 Oct 2019 at 0

Re: [users@httpd] Fwd: Warning from users@httpd.apache.org

On Mon, 28 Oct 2019 at 09:19, sebb wrote: > > On Sun, 27 Oct 2019 at 14:21, Richard > wrote: > > > > > > > > > Date: Sunday, October 27, 2019 12:17:36 + > > > From: sebb > > > > > >> On Sun, 27 Oct 2019 at 09:32, Richard > > >> wrote: > > >> > > >> I agree, there are a range of reasons that

Re: [users@httpd] Fwd: Warning from users@httpd.apache.org

On Sun, 27 Oct 2019 at 14:21, Richard wrote: > > > > > Date: Sunday, October 27, 2019 12:17:36 + > > From: sebb > > > >> On Sun, 27 Oct 2019 at 09:32, Richard > >> wrote: > >> > >> I agree, there are a range of reasons that a receiving host might > >> reject a message. When you add in DMARC

Re: [users@httpd] Fwd: Warning from users@httpd.apache.org

> Date: Sunday, October 27, 2019 12:17:36 + > From: sebb > >> On Sun, 27 Oct 2019 at 09:32, Richard >> wrote: >> >> I agree, there are a range of reasons that a receiving host might >> reject a message. When you add in DMARC - because the headers >> aren't rewritten - the chances of rejec

Re: [users@httpd] Fwd: Warning from users@httpd.apache.org

On Sun, 27 Oct 2019 at 09:32, Richard wrote: > > > > > Date: Saturday, October 26, 2019 13:16:36 +0100 > > From: sebb > > > > On Fri, 25 Oct 2019 at 16:20, Richard > > wrote: > >> > >> > Date: Friday, October 25, 2019 20:37:49 +0530 > >> > From: Tapas Mishra > >> > > >> > Hello, > >> > I am get

Re: [users@httpd] Fwd: Warning from users@httpd.apache.org

> Date: Saturday, October 26, 2019 13:16:36 +0100 > From: sebb > > On Fri, 25 Oct 2019 at 16:20, Richard > wrote: >> >> > Date: Friday, October 25, 2019 20:37:49 +0530 >> > From: Tapas Mishra >> > >> > Hello, >> > I am getting bounce message , what should I do?. >> > >> > T

Re: [users@httpd] Fwd: Warning from users@httpd.apache.org

On Fri, 25 Oct 2019 at 16:20, Richard wrote: > > > > > Date: Friday, October 25, 2019 20:37:49 +0530 > > From: Tapas Mishra > > > > Hello, > > I am getting bounce message , what should I do?. > > > > Thanks > > > > > > -- Forwarded message - > > From: > > Date: W

Re: [users@httpd] Fwd: Warning from users@httpd.apache.org

> Date: Friday, October 25, 2019 20:37:49 +0530 > From: Tapas Mishra > > Hello, > I am getting bounce message , what should I do?. > > Thanks > > > -- Forwarded message - > From: > Date: Wed, Sep 25, 2019 at 11:24 AM > Subject: Warning from users@httpd.apache

[users@httpd] Fwd: Warning from users@httpd.apache.org

Hello, I am getting bounce message , what should I do?. Thanks -- Forwarded message - From: Date: Wed, Sep 25, 2019 at 11:24 AM Subject: Warning from users@httpd.apache.org To: Hi! This is the ezmlm program. I'm managing the users@httpd.apache.org mailing list

[users@httpd] Fwd: httpd + openssl : compilation issues while using shared openssl library

Hi All I am using httpd-2.2.31 , trying to use openssl-1.0.2t with --with-ssl and --enable-ssl parameter. --with-ssl points to the openssl installed directory. I am having redhat 5.7 with x86_64 ,where the compiled binaries would be running. Used the openssl parameters of shared ,to get ssl s

Re: [users@httpd] Fwd: Apache 2.4.39 update for Ubuntu 14.04

Ubuntu 14.04 is no longer supported, so the ppa you are using to install Apache is no long building new versions and Canonical is no longer releasing free security updates. If you pay for an extended support subscription, the version of Apache you will get will be maintained by Canonical and will c

Re: [users@httpd] Fwd: Apache 2.4.39 update for Ubuntu 14.04

Hello, Am 15.05.2019 um 13:43 schrieb Frank Gingras: Nitin, You will need to ask the folks that maintain your distribution/repository for help with updated packages. On Tue, 14 May 2019 at 01:18, Nitin Kadam mailto:nitinkadam1...@gmail.com>> wrote: Hello Team, I have ubuntu 14.04 web

Re: [users@httpd] Fwd: Apache 2.4.39 update for Ubuntu 14.04

Nitin, You will need to ask the folks that maintain your distribution/repository for help with updated packages. On Tue, 14 May 2019 at 01:18, Nitin Kadam wrote: > Hello Team, > > I have ubuntu 14.04 web server with apache 2.4.33 package and with the > latest release of 2.4.39 internal security

[users@httpd] Fwd: Apache 2.4.39 update for Ubuntu 14.04

Hello Team, I have ubuntu 14.04 web server with apache 2.4.33 package and with the latest release of 2.4.39 internal security asked to update same ASAP. when I do apt-cache policy its shows installed version 2.4.33 and candidate also 2.4.33. Can you please help here its production application ser

[users@httpd] Fwd: Active-standby proxy implementation with cgi and shell scripting

Hi All, Any help on below need is highly appreciated: I have an apache httpd running on version 2.4.29 from redhat repos. There are couple of servers that need to be proxied based on their ALIVE and STANDBY status. I can extract the ALIVE status string using a curl command to backend pool membe

[users@httpd] Fwd: [Announcement] Apache HTTP Server 2.4.28 Released

For anyone not subscribed to announce@, sorry I hadn't passed this on... -- Forwarded message -- From: "William A Rowe Jr" Date: Oct 5, 2017 13:48 Subject: [Announcement] Apache HTTP Server 2.4.28 Released To: Cc: Apache HTTP Server 2.4.28 Released > > October 5, 20

[users@httpd] Fwd: Flood 0.4 status? (was: flood 0.4 was never signed for?)

Copying users@ in case some of you are Flood subproject users, please make your voices heard. Thanks, Bill -- Forwarded message -- From: William A Rowe Jr Date: Thu, Sep 14, 2017 at 10:48 AM Subject: Re: Flood 0.4 status? (was: flood 0.4 was never signed for?) To: httpd I kn

[users@httpd] Fwd: Need help on CORS ( Cross Origin Resource Sharing ) Issue

Hello Team, I need help on the CORS issue and what needs to be configured for the below error. User receive CORS error when calling IGC with AJAX Javascript call from the browser. "Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https:/ibm/iis/igc-re

[users@httpd] Fwd: htaccess help

*Atenciosamente, * *Yuri Fontella* -- Forwarded message -- From: Yuri Fontella Date: 2017-06-20 20:47 GMT-03:00 Subject: htaccess help To: users@httpd.apache.org Good Evening, I'm trying to create a rule with the following scenario ... I have a server with two virtual hosts, it'

Re: [users@httpd] Fwd: Patches for CVE-2016-8743 (apache 2.4.18)

Thanks lot Yann for confirming. regards, Rashmi On Sun, Jun 4, 2017 at 4:09 AM, Yann Ylavic wrote: > Hi Rashmi, > > On Thu, Jun 1, 2017 at 11:19 AM, Rashmi Srinivasan > wrote: > > To port the fix for CVE-2016-8743 to 2.2.29, is it ok to port > the > > changes from http://svn.apache.o

Re: [users@httpd] Fwd: Patches for CVE-2016-8743 (apache 2.4.18)

Hi Rashmi, On Thu, Jun 1, 2017 at 11:19 AM, Rashmi Srinivasan wrote: > To port the fix for CVE-2016-8743 to 2.2.29, is it ok to port the > changes from http://svn.apache.org/viewvc?view=revision&revision=1777405 > Would that suffice? > Please advise. That's indeed the

Re: [users@httpd] Fwd: Patches for CVE-2016-8743 (apache 2.4.18)

Hi Yann, Any update on this will be very helpful. regards, Rashmi On Thu, Jun 1, 2017 at 2:49 PM, Rashmi Srinivasan < rashmisrinivasan2...@gmail.com> wrote: > Hi Yann, > To port the fix for CVE-2016-8743 to 2.2.29, is it ok to port > the changes from http://svn.apache.org/viewvc

Re: [users@httpd] Fwd: Patches for CVE-2016-8743 (apache 2.4.18)

Hi Yann, To port the fix for CVE-2016-8743 to 2.2.29, is it ok to port the changes from http://svn.apache.org/viewvc?view=revision&revision=1777405 Would that suffice? Please advise. regards, Rashmi On Fri, Feb 10, 2017 at 1:30 PM, Rashmi Srinivasan < rashmisrinivasan

[users@httpd] Fwd: Query on SSLSessionTickets

Hi, One quick query: How do we figure out if apache is using session tickets, debug log doesnt seem to add "OpenSSL: Loop: SSLv3 write session ticket A" in the debug log? Does this mean session tickets are not in use. Please advise. regards, Rashmi

[users@httpd] Fwd: No reference to apache functions

-- Forwarded message -- From: Hemant Chaudhary Date: Wed, Mar 22, 2017 at 2:48 PM Subject: No reference to apache functions To: users@httpd.apache.org Hi My OS compile all modules and creating .o and .la archives. When I am checking .o file of modules, it is having unresolved r

Re: [users@httpd] Fwd: Patches for CVE-2016-8743 (apache 2.4.18)

Thank a lot for the patch Yann, I will check if this fits in. regards, Rashmi On Wed, Jan 25, 2017 at 6:04 PM, Yann Ylavic wrote: > Hi, > > On Wed, Jan 25, 2017 at 9:17 AM, Rashmi Srinivasan > wrote: > > > We are trying to port the fix for CVE (CVE-2016-8743) to 2.4.18. Tried > > checking th

Re: [users@httpd] Fwd: Patches for CVE-2016-8743 (apache 2.4.18)

Hi, On Wed, Jan 25, 2017 at 9:17 AM, Rashmi Srinivasan wrote: > We are trying to port the fix for CVE (CVE-2016-8743) to 2.4.18. Tried > checking the revision on git for the list of files fixed for this CVE. > There are lots of changes related to RFC7320 and was difficult to figure out > the f

[users@httpd] Fwd: Patches for CVE-2016-8743 (apache 2.4.18)

Hi, We are trying to port the fix for CVE (CVE-2016-8743) to 2.4.18. Tried checking the revision on git for the list of files fixed for this CVE. There are lots of changes related to RFC7320 and was difficult to figure out the files changed for this CVE as We couldnt find the CVE-2016-8743 in the

[users@httpd] Fwd: Content-Type changing intermittently

I load balance two Apache Tomcat instances (5.5.27 - jdk 1.5.0_22) with mod_proxy. Intermittently the Content-Type header of the response does not relate to the actual content type. Instead we receive "text/plain". When connecting directly to the Tomcat http port, instead of going through the Apac

[users@httpd] Fwd: Question

Kind reminder -- Forwarded message -- From: "Abdullah AbuHijleh" Date: Nov 2, 2016 00:46 Subject: Question To: Cc: We need to configure Apache HTTP Server Version 2.4 to work with Kerberos SSO ? Please help

[users@httpd] Fwd: apache 2.2 troubleshooting

Hi, sorry that i posted it here. after some time i realised that the reverse proxy is IHS ibm http server and not pure apache httpd. anyway i post my findings here. after switching from mem caching to disk caching the issue disappeared. E -- Forwarded message -- From: Erik Dobák

Re: [users@httpd] Fwd: old solaris box (but heavily used)

If you have the correct mod_rewrite.so file available you don't need to compile anything. If you need to make changes to the server configuration, you will need to restart the server process. If you are making the rewrite changes in an htaccess file, you don't need to restart anything (as long as h

[users@httpd] Fwd: old solaris box (but heavily used)

Hi, How do I provide a redirect page during site maintenance? Is anyone available for some help? Thanks Jim Pruett

[users@httpd] Fwd: [ANNOUNCE] CFP open for ApacheCon North America 2016

-- Forwarded message -- From: Rich Bowen Date: Wed, Nov 25, 2015 at 12:32 PM Subject: [ANNOUNCE] CFP open for ApacheCon North America 2016 To: Rich Bowen Community growth starts by talking with those interested in your project. ApacheCon North America is coming, are you? We are

Re: [users@httpd] Fwd: Server Problem

Make sure php is enabled on the server. It sounds like it is not. On 11/21/2015 10:37 PM, KARANDEEP SINGH DHALIWAL wrote: -- Forwarded message -- From: *KARANDEEP SINGH DHALIWAL* > Date: Sat, Nov 21, 2015 at 8:17 PM Subject: Server Problem To: use

Re: [users@httpd] Fwd: Server Problem

When you ask a question on a user discussion list, you need to be patient. No one on this list is being paid to answer your questions - if you must have your question answered in a particular amount of time, you should probably find a consultant who you can pay to help you. Disclaimer about WordPr

Re: [users@httpd] Fwd: Server Problem

is nobody knows about it? On Sun, Nov 22, 2015 at 1:43 PM, KARANDEEP SINGH DHALIWAL < dhaliwal...@gmail.com> wrote: > No, because I don't have knowledge about it. I am new here. Could you > please guide me? what I have to change. > > On Sun, Nov 22, 2015 at 12:36 PM, Yehuda Katz wrote: > >> Did

Re: [users@httpd] Fwd: Server Problem

No, because I don't have knowledge about it. I am new here. Could you please guide me? what I have to change. On Sun, Nov 22, 2015 at 12:36 PM, Yehuda Katz wrote: > Did you change AllowOverride, and add RewriteEngine On anywhere in the > config? Otherwise mod_rewrite won't work. > > Sent from a

Re: [users@httpd] Fwd: Server Problem

Did you change AllowOverride, and add RewriteEngine On anywhere in the config? Otherwise mod_rewrite won't work. Sent from a device with a very small keyboard and hyperactive autocorrect. On Nov 22, 2015 1:23 PM, "KARANDEEP SINGH DHALIWAL" wrote: > I tried it and change permalinks but it still n

Re: [users@httpd] Fwd: Server Problem

I tried it and change permalinks but it still not working and having a same problem. In httpd.conf on line 154, LoadModule rewrite_module modules/mod_rewrite.so is already enabled On Sun, Nov 22, 2015 at 11:31 AM, Yehuda Katz wrote: > You have AllowOverride set to none and you don't have mod_re

Re: [users@httpd] Fwd: Server Problem

You have AllowOverride set to none and you don't have mod_rewrite turned on anywhere else in your config, so this isn't a rewrite problem. The reason " http://localhost/KayD/index.php/2015/11/20/hello-world/"; works is because Wordpress is processing the PATH_INFO of the URL. You should try disabl

Re: [users@httpd] Fwd: Server Problem

httpd.conf = https://gist.github.com/dhaliwaljee/264eddd3958f01925d94 .htaccess = https://gist.github.com/dhaliwaljee/f263e27bede345a99639 On Sun, Nov 22, 2015 at 9:27 AM, Yehuda Katz wrote: > The error log says the configuration that is denying access is in that > .htaccess file. Can you post t

Re: [users@httpd] Fwd: Server Problem

The error log says the configuration that is denying access is in that .htaccess file. Can you post the contents of that file (putting it in a pastebin or gist and sending the link is a good way to avoid losing the formatting in an email). - Y Sent from a device with a very small keyboard and hyp

Re: [users@httpd] Fwd: Server Problem

sorry i have been getting attacked here once again .. the attack started when my browsers cert. was expirred .. so from that point he took over .. this has been going on for 15 + years now with me losing many computers on the way .. i needed to go to the extreme this time to almost destroy my compu

[users@httpd] Fwd: Server Problem

-- Forwarded message -- From: KARANDEEP SINGH DHALIWAL Date: Sat, Nov 21, 2015 at 8:17 PM Subject: Server Problem To: users@httpd.apache.org I just installed [first time] WordPress 4.3.1, but I was facing the problem with it so I downgraded and installed 4.2.5 and facing same pro

Re: [users@httpd] Fwd: SSI directives not working on page used in ErrorDocument directive

So I assumed that even though my ErrorDocument was defined outside of the directory where I have SSI parsing enabled it woudl be alright since it references a file that is stored i that directory. This does not seem to be the case though as when I added AddOutputFilter INCLUDES .html before the Er

Re: [users@httpd] Fwd: SSI directives not working on page used in ErrorDocument directive

I have Apache configured to parse all html files for SSI directives. I did try re-naming it to .shtml just to make sure though and it still does not fire the SSI directives, I even removed all but the example you have there but it still doesn't function. Still works when hitting directly, but not

Re: [users@httpd] Fwd: SSI directives not working on page used in ErrorDocument directive

What mechanism are you using to have SSI work on .html pages? I have no problem getting SSI to work when my page extension is .shtml: This is my very simple test which works perfectly: .htaccess: > Options +Includes > ErrorDocument 404 /error.shtml error.shtml: > Last modified: Produces:

[users@httpd] Fwd: SSI directives not working on page used in ErrorDocument directive

Forgot to include my question, Is there some additional step you have to take to get SSI to function on an ErrorDocument page? Thanks - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: us

Re: [users@httpd] Fwd: E tag numbers

On 11/05/15 18:26, Yehuda Katz wrote: > I look constantly for new outlets etc. this exercise came about only > last week whilst > checking background info using Statcrops.com. This indicated (after an > afternoons work) > that 5 Domains were using the exact same Apache server ref. as well as > the

Re: [users@httpd] Fwd: E tag numbers

There is no such thing as "directly with Apache!" The Apache Software Foundation (ASF) provides a home for multiple open-source projects, including the HTTPD server. There is no one at ASF who can help you other than to direct you to the project support webpage: http://httpd.apache.org/support.htm

Re: [users@httpd] Fwd: E tag numbers

1. It is considered rude to reply to an individual instead of to the entire mailing list when you have follow-up questions. Many people on the HTTPD list - including me - charge for consulting services, but answer questions in a public forum to help everyone learn more. 2. As I already said, the E

Re: [users@httpd] Fwd: E tag numbers

E-tags are generated based on information about the file being served. You can see the documentation here: http://httpd.apache.org/docs/current/mod/core.html#fileetag As you noted, Apache HTTPD is used by a significant number of people all over the world. There is no central registry of who owns a

Re: [users@httpd] Fwd: E tag numbers

Hi Steve, ETag numbers are - roughly - checksums of the files being requested which can be used in caching mechanisms. The only directive in the configuration of an Apache HTTP server directly related to the ETag validator is 'FileETag': http://httpd.apache.org/docs/current/mod/core.html#fileetag

[users@httpd] Fwd: E tag numbers

Sirs, Don't know if I'm following the correct protocol! This is the enquiry I sent Eric he informed that I should join this format. I would like an answer to the questions below if possible. regards Steve - Original Message - From: steve owen To: webmas...@apache.org Sent: Mon Ma

Re: [users@httpd] Fwd: Re: effectiveness of DCC checks?

Probably the wrong mailing list ;) Regards, Yann. On Thu, Apr 16, 2015 at 12:54 PM, Kevin A. McGrail wrote: >> Vernon, do you have a recommended score for the implementation of DCC >> with SA? There are concerns that bulk mail from good senders has been >> hit by DCC which is completely by desig

[users@httpd] Fwd: Re: effectiveness of DCC checks?

> Vernon, do you have a recommended score for the implementation of DCC > with SA? There are concerns that bulk mail from good senders has been > hit by DCC which is completely by design. Vernon replied off-list so I wanted to bring the relevant portion back to the list: "My general suggestion

[users@httpd] Fwd: cannot access ports 80 and 443 after upgrade from apache 2.2 to 2.4

hello. i have following issue with my server: i have an ubuntu-server at home. yesterday i upgraded the whole thing to version 14.04. i have been making some research and everything points to the fact that the ubuntu 14.04 comes with apache 2.4, which is supposed to have new and different autho

[users@httpd] Fwd: [SPAM] [users@httpd] HTTP request failed after listening on multiple ports or enabling SSL Module on my Linux Board

Hi All, Does any one has idea about following issue? I can not send single HTTP request after listening on multiple port for httpd (2.4.X) for my custom Linux Board. Regards, Ritesh Prajapati, System Level Solutions (India) Pvt.Ltd. Original Message Subject: [SPA

Re: [users@httpd] Fwd: apache hosting unknown sites !!!

Thu, 17 Apr 2014 kirjutas Joydeep Bakshi : 109.188.125.110 - - [17/Apr/2014:07:27:03 +0200] "GET /Uizz9n HTTP/1.1" 301 - "http://www.tv-house.ru/detail/200/5347"; "Mozilla/5.0 (Windows NT 6.3; WOW64; Trident/7.0; ASU2JS; rv:11.0) like Gecko" 109.188.125.110 - - [17/Apr/2014:07:27:04 +0200] "GET

Re: [users@httpd] Fwd: apache hosting unknown sites !!!

HiHi! 1. The requests are not available at log because I have blocked the .ru domains at firewall level. Let me disable the firewall to generate the logs for you 109.188.125.110 - - [17/Apr/2014:07:27:03 +0200] "GET /Uizz9n HTTP/1.1" 301 - "http://www.tv-house.ru/detail/200/5347"; "Mozilla/5.0

Re: [users@httpd] Fwd: apache hosting unknown sites !!!

Hello respondents, Thanks to all of you for your responses. I'm explaining the points which you have asked. 1. The requests are not available at log because I have blocked the .ru domains at firewall level. Let me disable the firewall to generate the logs for you 95.139.226.205 - - [17/Apr/2014:

Re: [users@httpd] Fwd: apache hosting unknown sites !!!

HiHi! My first thought was that a -spammer- had -misconfigured- something, to point a 'spam target domain name' to your IP address. But those domains are registered '06/'07 which is not typical of spam targets, and they appear to be reputable. Before I go further, a little more info. You men

Re: [users@httpd] Fwd: apache hosting unknown sites !!!

On Wed, Apr 16, 2014 at 12:38 PM, Tom Evans wrote: > On Wed, Apr 16, 2014 at 1:24 PM, Mauricio Tavares > > I guess I am more paranoid than many. :) > > The internet is noisy and full of terrors. > > If you put a server, particularly http server, on the internet and > make it available, peop

Re: [users@httpd] Fwd: apache hosting unknown sites !!!

On Wed, Apr 16, 2014 at 1:24 PM, Mauricio Tavares > I guess I am more paranoid than many. :) The internet is noisy and full of terrors. If you put a server, particularly http server, on the internet and make it available, people will make all kinds of requests to it - not necessarily reque

Re: [users@httpd] Fwd: apache hosting unknown sites !!!

On Wed, Apr 16, 2014 at 8:21 AM, Eric Covener wrote: > On Wed, Apr 16, 2014 at 8:09 AM, Joydeep Bakshi > wrote: >> I have configured apache and also few vhosts which are running well. I have >> also installed varnish for caching. All are running without any issue. >> Suddenly I find from apache a

Re: [users@httpd] Fwd: apache hosting unknown sites !!!

On Wed, Apr 16, 2014 at 8:09 AM, Joydeep Bakshi wrote: > > > > Dear list, > > I have found a strange issue in a newly configured opensuse 13.1 server. > This is a dedicated root server where ssh is running on different port than > default and ssh root login is disabled. > > I have configured apach

Re: [users@httpd] Fwd: apache hosting unknown sites !!!

On Wed, Apr 16, 2014 at 8:09 AM, Joydeep Bakshi wrote: > I have configured apache and also few vhosts which are running well. I have > also installed varnish for caching. All are running without any issue. > Suddenly I find from apache access.log that some unknown sites are hosted > from this serv

[users@httpd] Fwd: apache hosting unknown sites !!!

Dear list, I have found a strange issue in a newly configured opensuse 13.1 server. This is a dedicated root server where ssh is running on different port than default and ssh root login is disabled. I have configured apache and also few vhosts which are running well. I have also installed varnis

[users@httpd] Fwd: How to serve next page requested by a user in the same language than the last one served to that user.

Hi there, I run a the polyglot website http://slint.fr. Currently I add a language code to the requested URL according to the AcceptLanguage header, but this information doesn't always match user wish and I was told that serving different filenames for the same requested URI can prevent proper p

[users@httpd] Fwd: Difference between cookies that are enabled with mod_session and mod_user_track?

-- Forwarded message -- From: jeffmonte101 . Date: Fri, Sep 20, 2013 at 11:13 AM Subject: Difference between cookies that are enabled with mod_session and mod_user_track? To: users@httpd.apache.org Hi all, I am trying to learn the cookie enabling and session/user tracking, which

Re: [users@httpd] Fwd: Segmentation Fault when httpd child processes reach MaxRequestsPerChild

I am not especially experienced with gdb. However, I do know that the debuginfo packages are not installed on the production system. Is there something specific that I could gather that might help? (gdb) bt full > #0 0x7f07d58bf220 in pthread_mutex_lock () from /lib64/libpthread.so.0 > No s

Re: [users@httpd] Fwd: Segmentation Fault when httpd child processes reach MaxRequestsPerChild

> > #gdb bt sample: > >> Program terminated with signal 11, Segmentation fault. >> #0 __pthread_mutex_lock (mutex=0x0) at pthread_mutex_lock.c:50 >> 50unsigned int type = PTHREAD_MUTEX_TYPE (mutex); > is there a complete backtrace?

[users@httpd] Fwd: Segmentation Fault when httpd child processes reach MaxRequestsPerChild

All httpd child processes Segmentation fault near MaxRequestsPerChild, seemingly when it is time for the process to recycle. MaxRequestsPerChild currently set to 1. I am also not able to reproduce this on a test system. Child process exits clean when attached with gdb. Child process also ex

[users@httpd] Fwd: Apache2 - SSI - If-else-/if syntax and some directives issues

Hi Folks Never mind, I have solved the issue... It was related to the perl scripts. The CGI programs (in pl files) are doing this jobs. It was only necessary activate the action-module in apache, set-up correctly the cgi-bin folder and nothing more... Thanks Freddy Mensaje original

[users@httpd] Fwd: reverse proxy /proxy

-- Forwarded message -- From: Visioner Sadak Date: Mon, Aug 19, 2013 at 4:43 PM Subject: reverse proxy /proxy To: Tomcat Users List Hello friends I have some http redirect urls like in my jsp page http://spn1.spinterllyy.com:50070/webhdfs/v1/Namehome1/terfttb.jpg?=OPEN http:

[users@httpd] Fwd: clean_child_exit result in Program terminated with signal 11, Segmentation fault.

Hello, everybody. I am using my setup of Apache for rather long time and all the time it spoof my logfiles with messages like: [Wed Aug 15 13:37:55 2012] [notice] child pid 7415 exit signal Segmentation fault (11), possible coredump in /etc/apache2 It does not affect services running on Apache bu

Re: [users@httpd] Fwd: Apache plugin malware

Thanks Nick! > Sounds a lot like this much more detailed account: http://blog.unmaskparasites.com/2012/09/10/malicious-apache-module-injects-iframes/ Regards, KAM - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org

Re: [users@httpd] Fwd: Apache plugin malware

On 19 Dec 2012, at 23:00, Kevin A. McGrail wrote: > http://arstechnica.com/security/2012/12/apache-plugin-turns-legit-sites-into-bank-attack-platforms/ > > > Annoyingly, the article doesn't say what plugin names to look for. > > Anyone know if this is something we should be looking for? Any

Re: [users@httpd] Fwd: Apache plugin malware

On Wed, Dec 19, 2012 at 6:00 PM, Kevin A. McGrail wrote: > http://arstechnica.com/**security/2012/12/apache-** > plugin-turns-legit-sites-into-**bank-attack-platforms/ > > Annoyingly, the article

[users@httpd] Fwd: Apache plugin malware

http://arstechnica.com/security/2012/12/apache-plugin-turns-legit-sites-into-bank-attack-platforms/ Annoyingly, the article doesn't say what plugin names to look for. Anyone know if this is something we should be looking for? Any specific plugin names, etc.? Regards, KAM

[users@httpd] Fwd: scorebord permissions

Hello, I have an issue where, apache is, when using graceful reload, setting perms for domains as root -rw--- 1 root root 44 Sep 1 05:59 somedomain yet if I delete this and either click on URL, or, stop apache and cleanly start apache it is recreated cleanly as: -rw--- 1 apa

Re: [users@httpd] Fwd: LocationMatch regex variables for Auth*?

On 2 Jun 2012, at 17:56, Jerrad Pierce wrote: > > AuthType Digest > AuthDigestFile /var/data/httpd/auth/$1 Wildcards don't work like that over general directives. What you're looking for is mod_macro. Google will find it for you. -- Nick Kew

[users@httpd] Fwd: LocationMatch regex variables for Auth*?

Hello all, I need to create many very similar LocationMatch directives with Auth directives inside, since each location needs to be restricted to a different user. I am looking for a means to get this functionality that is more maintainable than adding/ removing many similar chunks of config by pa

Re: [users@httpd] Fwd: Black screen on Ubuntu Server 11.10

> Nothing works fine (about power management). The machine launches fine the > Java application but if I don't use the machine, a few minutes later, > appears a black screen. I have assumed that screen has been disabled by > Linux kernel. And that has to do with Apache... what exactly? Nowdays it

[users@httpd] Fwd: Build 2.4.2 RPMs fails on Centos 6.2 for ?deprecated? dependancy distcache

Bit more information regarding this I am able to configure, make, and install httpd. I guess with apr-devel out of the way I'll be trying this method for now. I checked the src rpm for httpd-2.2.14-2 and found this comment in httpd.spec * Tue Dec 8 2009 Joe Orton - 2.2.14-2 - drop distcach

[users@httpd] Fwd: Take a look at this...

Hi Friend...I had reached the end of the line this would really interest you im headed straight to the top dont hesitate trying this outhttp://schmuckgalerie-blankenese.de/PhilipMorgan11.html";>http://schmuckgalerie-blankenese.de/PhilipMorgan11.htmltalk to you later.

[users@httpd] Fwd: Configuration issue allowing unauthenticated access from 127.0.0.1 to a single directory within a password-protected directory structure

Apologies, I sent the wrong config. Here is the WORKING config (except for the location restriction of 127.0.0.1 for the REST directory). Any help with this would be appreciated! :-) > >ServerName sub.domain.tld > >RewriteEngine On >#RewriteLog /var/log/httpd/modrewrite

Re: [users@httpd] Fwd: Virtualhost location variable

On April 15, 2011 18:19 , "Michele Mase'" wrote: I need to block the access on a particular location,as the example: ... Order Deny,Allow Deny from all Allow from localhost safenet1 safenet2 ... ... I need to do the same for all the virtualhosts, more than 1K... You should be able to put t

[users@httpd] Fwd: Virtualhost location variable

Anyone? -- Forwarded message -- From: Michele Mase' Date: Wed, Mar 30, 2011 at 10:30 AM Subject: Virtualhost location variable To: users@httpd.apache.org I've the following situation: I need to block the access on a particular location,as the example: ... Order Deny,Allow Deny

Re: [users@httpd] Fwd:

I understand Ill do some looking into it I can say that apache is running as user apache and ill make all the docs owner apche see if that helps seems to be if i make the file from root then i dont have the problem but if i chown it then its a problem ??? who knows but thanks for the help. --- Mar

Re: [users@httpd] Fwd:

Doing a chown should make no difference when the permissions have read for everyone set, although there may be something in sles I don't know about. Most probably your apache is running as another user, maybe nobody or apache or something like that. Check the httpd.conf file to find out. You c

Re: [users@httpd] Fwd:

Seems to wokr now I cp the file with a different name the only thig i can think of is this file was made by user Mark then it got a "chown root:root" then copied where as this new file was just copied as root period. Any ideas as to why this happened and how I can protect it from happening again w

  1   2   >