R A | 28 Feb 17:46 2015
Picon

Recommended KeepAlive setting when using mpm_event

When using mpm_event, the apache2.conf usual setting "KeepAlive" can be configured normally or should be disabled?
deoren | 27 Feb 00:17 2015

Apache/2.2.22 (Ubuntu) - Location block precedence

Hi,

Thanks in advance for reading this and any for help you can provide.

I call myself trying the steps described in various forum, blog and official documentation
recommendations, but I'm still getting unexpected (to me) behavior from two similar <Location> blocks.
I even took the example from the serverfault.com post referenced below and tried to adapt it to my setup,
but that didn't help either.

I think I must be overlooking something obvious.

My test conf settings:

<Location /sub >
         DAV svn
         SVNPath /var/svn/example.org/testing
         SVNPathAuthz off

         SVNIndexXSLT "/shared/xslt/svnindex.xsl"
         SVNReposName "Sandbox repository"

         # We will use LDAP Authentication
         AuthName "testing sub"
         AuthType Basic
         AuthBasicProvider  ldap
         AuthzLDAPAuthoritative On
                 AuthLDAPGroupAttributeIsDN on
         AuthLDAPGroupAttribute memberUid
         AuthLDAPBindDN "uid=bind-user,ou=bind-accounts,o=example"
         AuthLDAPBindPassword "notrealpassword"
         AuthLDAPUrl ldap://localhost:389/ou=people,o=example?uid

         Require user user1 user2
</Location>

<Location /sub/foo >
         DAV svn
         SVNPath /var/svn/example.org/testing
         SVNPathAuthz off

         SVNIndexXSLT "/shared/xslt/svnindex.xsl"
         SVNReposName "testing sub foo"

         # Block any commit attempts.
         <LimitExcept GET PROPFIND OPTIONS REPORT>
             Order deny,allow
             Deny from All
         </LimitExcept>
</Location>

The LDAP conf options work without issues, but it's the prompt that I am getting which I'd like to _not_
receive for "/sub/foo" requests.

I thought that having the less restrictive and more path specific block beneath the other would allow it to
override the less specific block, but so far no luck.

References:

* http://httpd.apache.org/docs/2.2/sections.html#mergin
* http://lifeonubuntu.com/what-is-the-apache-directive-order-of-precedence/
* http://serverfault.com/questions/391457/how-does-apache-merge-multiple-matching-location-sections
Daryl Rose | 26 Feb 22:49 2015

Upgrading from 2.4.10 to 2.4.12

Just to preface this question, I am not very knowledgeable in Apache.  I did not setup this environment and have absolutely know idea how its configured.  This issue was assigned to me, and I have to resolve it, so I am turning to the user community for help.

Can I upgrade from 2.4.10 to 2.4.12?  Can I just compile 2.4.12 and have it install into the same directory as 2.4.10?  What will it overwrite?  What do I need to save off so it doesn't get over written?

The reason for the question is to resolve security concerns with version 2.4.10. The recommended solution is to upgrade to 2.4.12, but I want to make sure that I don't step on config files, modules etc...

Any advice will be appreciated.

Thank you.

Daryl
zBit | 26 Feb 17:25 2015
Picon

mod_rewrite does not respect env HTTPS

Hello everyone!

I have Apache SSL virtuals behind the Nginx proxy defined with this directive:

SetEnvIf X-Forwarded-Proto https HTTPS=on

Users often use the following rewrite rule in their htaccess files for
detecting SSL connection, but the variable HTTPS is not treated as
expected:

RewriteCond %{HTTPS} =on

Is there any workaround for this? So far, I tried to disable mod_ssl
completely and also checked modules hooks and it seems that
environment files are loaded before the rewrite module.

BR, David
Paul Beckett | 26 Feb 10:21 2015

Prevent caching of 404 responses

I'm running Apache 2.4.10, and using mod_cache_disk . Some of my web content is from flatfiles stored on an NFS export. I think these are occasionally going AWOL, resulting in 404 responses, which appear to then be cached by Apache.

Is there any way to restrict what HTTP response codes are cached by Apache, ideally I would like to only cache 200,301,302 responses.

Thanks,
Paul
Chris Arnold | 26 Feb 08:20 2015

Images Not Loading

Apache 2.4.10 that use to work fine. Then a power outage and now site images do not load. When you look at the error log:


AH00529: /srv/www/htdocs/sites/sitename/images/.htaccess pcfg_openfile: unable to check htaccess file, ensure it is readable and that '/srv/www/htdocs/sites/sitename/images/' is executable


My vhost has AllowOverride None so apache does not look for htaccess but images still dont load. Permissions on that site folder are:


drwxr-xr-x 1 root root


I also put a blank .htaccess file in that directory and reloaded apache with the same results. Why are images not loading?

Oliver Graute | 25 Feb 08:45 2015
Picon

Apache 2.4.12 don't serve me the index.html

After switching from Apache 2.0.64 to 2.4.12 I have some issues on
loading my index.html or any other html page. I always get a 404 Not
found Error Message in my Browser. But if I try to access a simple
index.php with "Hello World "in the same directory that works. I
allready check the user right for the files in /var/www.

What could be the issue here?

My website is located in /var/www

Message in the Browser:

Not Found
The requested URL / was not found on this server.

my /var/log/apache2/error_log:

[Tue Jan 06 19:23:09.446724 1970] [authz_core:debug] [pid 1397]
mod_authz_core.c(809): [client 192.168.2.99:51306] AH01626:
authorization result of Require all granted: granted
[Tue Jan 06 19:23:09.447385 1970] [authz_core:debug] [pid 1397]
mod_authz_core.c(809): [client 192.168.2.99:51306] AH01626:
authorization result of <RequireAny>: granted
[Tue Jan 06 19:23:09.448167 1970] [core:info] [pid 1397] [client 192.168.2.99:51

my /etc/apache2/httpd.conf:

ServerRoot /usr/share/apache2

PidFile /var/run/apache2.pid

Listen 0.0.0.0:80

LoadModule unixd_module /usr/share/apache2/modules/mod_unixd.so
#LoadModule ssl_module /usr/share/apache2/modules/mod_ssl.so
LoadModule authz_core_module /usr/share/apache2/modules/mod_authz_core.so
LoadModule authz_user_module /usr/share/apache2/modules/mod_authz_user.so
LoadModule authz_host_module /usr/share/apache2/modules/mod_authz_host.so
LoadModule authn_core_module /usr/share/apache2/modules/mod_authn_core.so
LoadModule rewrite_module modules/mod_rewrite.so
#LoadModule dir_module /usr/share/apache2/modules/mod_dir.so

<IfModule unixd_module>

User www
Group www

</IfModule>

ServerAdmin you <at> example.com

ServerName localhost

DocumentRoot /var/www

<Directory />
    Options Indexes FollowSymLinks
    AllowOverride None
</Directory>

<Directory /var/www>
    Options FollowSymLinks
    AllowOverride None
    Require all granted
</Directory>

<Files ".ht*">
    Require all denied
</Files>

ErrorLog "/var/log/apache2/error_log"

LogLevel debug

<IfModule log_config_module>

    LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\"
\"%{User-Agent}i\"" combined
    LogFormat "%h %l %u %t \"%r\" %>s %b" common

    <IfModule logio_module>
      # You need to enable mod_logio.c to use %I and %O
      LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\"
\"%{User-Agent}i\" %I %O" combinedio
    </IfModule>

    CustomLog "/var/log/apache2/access_log" common
</IfModule>

<IfModule alias_module>
    ScriptAlias /cgi-bin/ "/usr/cgi-bin/"
</IfModule>

<IfModule cgid_module>

</IfModule>

<Directory "/usr/cgi-bin">
    AllowOverride None
    Options None
    Require all granted
</Directory>

<IfModule mime_module>
    TypesConfig /etc/mime.types
    AddType application/x-compress .Z
    AddType application/x-gzip .gz .tgz
</IfModule>

<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>

LoadModule php5_module /usr/share/apache2/modules/libphp5.so

<IfModule mod_php5.c>
    <FilesMatch "\.ph(p3?|tml)$">
        SetHandler application/x-httpd-php
    </FilesMatch>
    <FilesMatch "\.phps$">
        SetHandler application/x-httpd-php-source
    </FilesMatch>
</IfModule>

<IfModule mod_ssl.c>
    Include /etc/apache2/mod_ssl.conf
</IfModule>

Thanks in advance

Oliver
Daryl Rose | 24 Feb 21:31 2015

Compiling Apache 2.4.10 with openssl 0.9.8j

I'm trying to build Apache 2.4.10 with the system level openssl, which is version 0.9.8j, but I continuously get an error telling me that the version of openssl is to old.  I get to the point where the configuration script is looking for openssl and then it fails.  The message that I receive is:

checking for OpenSSL version >= 0.9.8a... FAILED

I read through the mod_ssl documentation, and it appears to me that 0.9.8 will work, but the configuration continues failing.  

My syntax:  ./configure --prefix=/usr/local/apache2 --with-included-apr --enable-ssl

I did put openssl-1.0.1l on the system, and pointed to that install and Apache successfully compiled.  Will Apache 2.4.10 compile with openssl 0.9.8j, or does it require a 1.0.1 level?

Thank you

Daryl
Michael A. Peters | 24 Feb 15:18 2015
Picon

Apache modifying headers from php

Hi,

I have a php wrapper to js / css files

I use mod_rewrite to have the wrapper handle the request.

I then set the cache rules in php via

header('Cache-Control: max-age=' . $this->maxage);

Apache however then serves it as

Cache-Control: max-age=31557600, max-age=0

It seems most clients do the right thing but...

Apache is also adding an Expires header w/ current timestamp, 
over-ridden by the max-age I know, but I'd rather it not be there.

I want Apache to send max-age=0 for most php content, but not for the 
JS/CSS wrapper content.

How do tell apache not to?

I do have mod_expires active but I am only using that for images and 
multimedia served by php, I do not know if mod_expires is doing this or 
apache itself.

Thanks for suggestions.

CentOS 7 with stock CentOS build of apache but php 5.6.x
phil | 24 Feb 04:09 2015

Changing Email Signatures


Silly question i cant seem able to google up for some reason.
How do i get those email sigs that change every day or every email.
Just a push in the direction of the website would be most appreciated.

--

-- 
Regards,
Phil Steel-Wilson               |       [+61](0)447 64 55 34	
Phil'll Fix It Computers        |       http://philfixit.info
Linux user no.                  |       #564977

If you are happy with my service and rates,
please recommend me to your family and friends.
Treat all email communication as confidential.
It is for the intended recipient only. If you have received
this and you are not the intended recipient please contact,
     admin <at> philfixit.info
Sayan Hazra | 23 Feb 22:56 2015
Picon

Re: Unsubscribe

Please unsubscribe me too. Thanks.


On Mon, Feb 23, 2015 at 10:34 PM, samaneh berenjian <sama.scientist <at> aut.ac.ir> wrote:
​please unsubscribe me.


Gmane