CheapWebHosting.co.nz
|
CheapWebHosting.co.nz
|
The world is a vampire o//
hi. just installed apache2. trying to make a virtualhost rule,
and it goes "permission denied" even though the directory exists.
using the default htdocs directory works, and the permissions are
fine on the new directory. must the entire hierarchy of directories
be owned by the user running the httpd for it to work?
(the "permission denied" is shown when trying to access the
website through http)
step one
whatever the problem, step one is to look in the error log
(and any other logs that may apply, such as suexec, mod_rewrite, or
mod_security).
directive on my new directory?
client denied by server
configuration
Have a look at
http://wiki.apache.org/httpd/Errors/ClientDeniedByServerConfiguration
for a better idea of what this error message means
directive.
fajita, thanks!
huh?
how to disable suexec in mod_perl on apache2 ?
(installed from portage in gentoo)
yay, works. thanks.
hello all, I am thinking to add a header for all the sites I
am browsing in local to identify when i am checking my local copy
or production one. can i add this header in my apache config
?
or i need to add the code in my webapp ?
Can anyone tell me if I can in fact insert the highlighted
section of this link into .htaccess file: http://pastebin.com/938262
I was told last night here that it wasnt possible and that I had
to edit the httpd.conf directly, unfortunately this is not an
option
Virtualhost context?
server config
^
ok, not virtual host then, If I put the details in between the
VHOST directive in a .htaccess file, will this work?
nope
well...
You can put the rewrite stuff and the php
hosting value stuff
DocumentRoot and ServerName don't but the rest does
And the directoryindex
the directoryindex is http://httpd.apache.org/docs/2.0/mod/mod_dir.html#directoryindex
or http://httpd.apache.org/docs/mod/mod_dir.html#directoryindex
of course depending on your web hosting providers AllowOverride
settings
Also the rewriterule will not work like that.
true
Ok so in .htaccess, I can include everything except DocumentRoot
& ServerName - the php_value stuff is fine and the
DirectoryIndex and rewrite stuff will work if AllowOverride is
allowed, correct?
Hello, I want, that if in the URL is "PHPSESSID" like
index.html?PHPSESSID=19f436764a12d19a81d238194188aaa4. redirect him
to a 404 page with modrewrite.. can somebody help me?
RewriteRule requires minor editing, mainly removing the first
slash / replacing it with ^
lamp, but other than that, this will all work in a
.htaccess?
basicly, yes
Great thanks guys
hi lamp, can you help me too?
airwave, why do you not disable GET phpsessionid in php
then?
i have dealt with that before, when a site had _GET sessids and
then a search engine started directing all the viewers in with same
sessionid. but you don't want to 404 the search engine or you'll
drop off the intarweb
the problem is
the PHPSESSID is at an html host page and with
modrewrite i redirect it to another page.. and in this php page der
is no PHPSESSID
aha
just plain dissable url session ids
have an issue i had before but not sure why it came back when
i type loclahost in browser it goes to one of my vh and not my root
site
main server goes away?
main host goes away?
main host goes away is http://httpd.apache.org/docs/2.2/vhosts/name-based.html#using
(See note about "Main host goes away")
default vhost?
The first-listed virtual host is always the default one when
using name based virtual hosts. See http://www.onlamp.com/pub/a/apache/2004/01/08/apacheckbk.html
for more details.
take a look at those two
i do have namevirtualhost but in the past localhost would still
work is it always going to default is there a way i can get
localhost back
where would you like the localhost to point? to default vhost or
something else?
lamp:to root
to / ?
sounds like a bad idea
thumbs, to my document root
well we asked you where that was. You never replied.
I get 403s from wget localhost:8090/index.php with this config:
http://apache.pastebin.ca/593610
what does the error log say, exactly?
lemme find it
6 -0700] "GET /index.php HTTP/1.0" 403
no, that's the access log
try tht error log
oh
6 2007] [error] [client 127.0.0.1] (13)Permission denied: access to
/index.php
but the dir is all owned by the same uid/guid with 660 on files
and 770 on directories
Run namei -m on the full path to that index.php file and make
sure that Apache can actually access it.
Is stuff owned by the apache user or group?
'k trying that now
That 0 on the end there could very well be the problem if
not.
if namei lists a bunch of perms, then it can see it,
right?
(exit status of namei was 0)
no, make sure each directory below the location where the
files are hosted is 711
If namei lists a bunch of perms, you need to examine them and
see if the Apache user has access to them, given those
perms.
We'd be glad to look at the output if you like.
that would help tremendously
lemme paste to the end of my config
http://apache.pastebin.ca/593625
output is in the "question" field on that page
I'm not sure who's in what group, but it may be necessary to
make that index.php file +r
where am I able to use the SuexecUserGroup and User commands in
my config? im getting an error they are "not allowed here"
chmod +r /opt/projects/intrigo-lobby\:trunk\:1022/ and
/opt/projects/intrigo-lobby\:trunk\:1022/product/
SuexecUserGroup context
SuexecUsergroup may be used in either server configvirtual
host
User context
server config
http://apache.pastebin.ca/593629
What fajita said - where'd you use them?
doesn't that indicate that clay:clay are the right perms for the
file?
inside of my Directory /var/www
also, chmod the php host file to
644
i really just want to get a single, particular script run as
a specific user, so if there is a better way im all for
it.
ownership and permissions are different.
You have to set it for an entire server host or
virtualhost. You can't set it for just a directory.
actually, I think I've been starting the daemon as root. doesn't
apache suid?
is there any other way to acheive the goal?
(I thought it was suid/sgid, which would make my assumptions
less horribly flawed)
Immediately after it binds to the ports, Apache relinquishes
privileges, and reverts to the user defined in the User
directive.
No, I'm afraid not. There is, however, a brand new article on the
wiki host
about this topic.
oh.
http://wiki.apache.org/httpd/Recipes/Privilege_Separation
If you look in the output of ps aux you'll see what user that
is.
thanks.
Or find the User directive.
daemon:daemon I see
:-/
Okay, that gets me started. Thanks for your patience everyone.
(I'm completely new to DNS/apache/mysql/etc. I'm HCI, not
web-admin, but my company's out of HCI work for the
month....)
Yeah, the privilege stuff is irritating at times.
https://pc-stop.co.uk/admin/ .
I've set the user/pass combo as pcstop and 12345 in .htpasswd file.
In .htaccess I've set AuthType as Basic and AuthUserFile to
.htpasswd, as well as putting "require valid-user" at end. I don't
seem to be able to get it to work, any ideas?
jamey-pc: Please elaborate on what's happening.
jamey-pc : What, exactly, does the error log say?
jamey-pc: What exactly is happening, and in what way does it differ
from what you want to be happening?
Nothing in the error log apart from a missing error page when
access is denied. It keeps requesting for a user/pass combo (the
dialog keeps reappearing) yet I type pcstop as username and 12345
as password
Perhaps you'll forgive me - "nothing in the error log" cannot
be true in this case.
If there is indeed nothing in the error log, you're looking in the
wrong error log.
good point. Never mind! I've recovered an old htaccess file that
now works. Thanks anyway, I'm going to investigate the associated
htpasswd file and see what was wrong. CPanel shared hosting is
rubbish at providing real Apache error logs
Yes, I've noticed that.
Weird, the password file which was stored out of the
public_html directory (above it) has same encrypted password line
in it, but this one works. Hm.
jamey-pc: never discount the power of invisible characters and
font ambiguity for non-ascii chars...
:-D
hey hoooo brothers =D
hi apache support .aspx ?
not natively
asp
Cleopatra had one or ask me about asp on apache or a
snake
would somebody be so nice to help me sort out a problem with
my virtual hosts configuration please?
asp on apache
asp on apache is http://httpd.apache.org/docs/misc/FAQ.html#aspee
mod_mono or chilisoft or mod_aspdotnet
jink what do u mean by not natively ?
i mean that you should read the docs i just gave you
hi
privet, wfq.
jink u gave me doc ?
where
morning fajita
asp on apache is http://httpd.apache.org/docs/misc/FAQ.html#aspee
mod_mono or chilisoft or mod_aspdotnet
can somebody tell me, why it works when i surf to my homepage
"www.autobach.de" and _not_ if i just use "autobach.de" ... althoug
ServerAlias is set to "autobach.de"...? I cant find the
problem
ok i will
is it not possible to know wha exact error apache throws up
withoug having direct access to its logs, isn't?
you can get an HTTP status code, but not the reason behind
it
ok, I looked for the reason behind it.
but if write an .htaccess, besides the particular apache
directivas needed for this app, I need to redifne the oders llike
Oder,denay and so on. I've got a 500 error code but I am sure every
directive I have written are fine because of I copied them from an
app's install file
deny
Many dirctives are permitted in the main config and are not
permitted in the .htaccess file.
deny is http://httpd.apache.org/docs-2.0/mod/mod_access.html#deny
or http://httpd.apache.org/docs/mod/mod_access.html#deny
or http://httpd.apache.org/docs/2.2/mod/mod_authz_host.html
Also, depending on the setting of AllowOverride, some of
those may still not be permitted.
for example, I have left my .htaccess empty, just to know
what is going on and I continue getting same internal server
error.
Ah.
Well, then, it's likely a file permission problem, but I'd just be
guessing at that point.
The error log is your friend.
Much guesswork eliminated.
DrBacchus, the problem is I don't have access to theses
logs
to o-ss.net/test.php?i=data
how hard is that?
Well, the better solution is to turn on MultiViews
Options +MultiViews
Options +MultiViews is how one turns on content
negotiation
That'll make foo.php behave as foo when convenient.
Can you do that in HTaccess
Yes
Usually.
If AllowOverride Options is on.
above your rewriteengine ?
I have another rewrite
but
the .htaccess has the same permissions as my index.php which
contains a phpinfo call. If I remove the .htaccess the index.php is
coming up, so permissions should be discarded shouldn't
it?
how to proxy requests to localhost:8080, if the domain is
"example"?
rewrite? proxy?
any way apache will present the php source for download
(instead of parsing it when
AddType application/x-httpd-php .php
"AddType application/x-httpd-php .php" is wrong, rather user
"AddHandler application/x-httpd-php .php" instead.
AddType application/x-httpd-php-source .phps
is in the config ?
how to proxy requests to localhost:8080, if the domain is
"example"? rewrite? proxy?
How could I know if I am allowed to write my own .htacces for
an application?
garbage
try putting junk in your htaccess file. If it's being read,
you will get an Internal Server Error when accessing that
resource.
Which is what's happening.
So we already know that you're permitted to use .htaccess
files.
What we dont know is why you're getting the 500 error in
general.
Which really we can't know without seeing the error log.
Which you say you don't have access to.
A bit of a catch-22 one might say.
hi all!
All is not in today, dfeser
lol
i have a very strange problem with apache...
there are no strange problems. All are very well defined, and
hence not even problems at all!
i have a load module line in my httpd.conf
the question is I am installing a app. On the app's
directions I have to add some directivas to httpd.conf but I
haven't got access to httpd nor apaches's log error, so I am using
a .htaccess
LoadModule php4_module
"xphp-4.2.3-win32\sapi\php4apache.dll"
but when i try to start apache it tells me that this module can't
be found
I thought Apache on Windows used / as PATH sperator.
DrBacchus, I have just written an Alias to a folder inside my
public_html to know if it's really working but I got all the time
internal server error
Alias, IIRC, needs FileInfo to override.
Nope...
I was wrong.
even if i do this the problem is there
server config, virtual host
^
Cannot load x:/php4apache.dll into server: (126) The specified
module could not be found
wtf?
the question is, I don't know if I have to write a
virtualhost as I was written one more section into my httpd.conf
for any other service in the system
you CANNOT put a virtual host into a .htaccess file.
What is the preferred way to have mysite.org and
www.mysite.org go to the same DocumentRoot ?
serveralias
vis a vis DNS and apache?
http://httpd.apache.org/docs/2.2/mod/core.html#serveralias
#1 you're using windows. #2. if you're using apache2.2, php4
doesn't have a working apache2.2 module for windows. #3. php5.2 is
the version of php that has a working php module for apache 2.2 on
windows
windows.. barf
#4. jMCg needs a kick in the nads
in DNS you can have either *.foo in A or you have www.foo in
A or you have www.foo in CNAME or you have blah blah
blah.......
in Apache you have ServerAlias.
seems to make sense.. I'll enable wildcard with my DNS and read
on ServerAlias. Thanks
And you can have loooooooooooooooooooooooots of server aliases..
or you have *.foo as server alias.
I suggest NOT to use * in DNS.. but that's just me...
does nobody know about this problem?
why's that?
change your \'s to /'s
yes i did this
even tried to copy the dll to X:/php4apache.dll
even that doesnt work
same error
what error message do you get EXACTLY ?
you betcha
Cannot load x:/php4apache.dll into server: (126) The
specified module could not be found
thats the error I get
a network drive?
didn't i just answer dfeser's question?
no idea
sorry, .me bows ou
back to fajita hacking for me then
#1 you're using windows. #2. if you're using apache2.2, php4
doesn't have a working apache2.2 module for windows. #3. php5.2 is
the version of php that has a working php module for apache 2.2 on
windows
#4. jMCg needs a kick in the nads
yes, i think i did... if not answered at least replied
megaspaz sorry this setup had already worked...
answer me this, are you running apache 2.2?
brb.. doing some hack for vsftpd
:P
ServerAlias documentation seems confusing
its version 1.3.27
egads
1.3 and windows?
php is 4.2.3
yes
and php 4.2?
you lookin' to get pwned?
its just a live cd that runs on localhost
to provide a live cd with joomla
never used 1.3, but doesn't loading modules in 1.3 require
addmodules as well?
other than that, g'luck
Is it possible to tell apache to log something from the http
header inside of the client's IP?
inside=instead
logformat
well, logformat is
http://httpd.apache.org/docs-2.0/mod/mod_log_config.html#logformat
the addmodule line is there as wwll
well
if there is it'd be listed in there ^^ in the docs
blame Roobarb-Work
thanks
jMCg-- # thought you had fajita learn something funny
uSuck
ok, somethigns wrong if 2 people are blaming me...
hi all
Or actually niq
la la
He started the blame-game!
I'm trying to force anyone that isnt on our internal network
to only be able to view a certain url, using mod_rewrite. I'm
running 1.3 on oracle's rebranded redhat distro. I tried using the
following rules, but apache barfed and wouldnt start. Here are the
rules I'm trying to use... RewriteCond %{REMOTE_ADDR}
!^10\.
RewriteRule ^/*$ /pls/apex/f?p=103 [R=301]
erhm, if you use 10.x address, why not bind the vhost to 10.x
only?
create a separate vhost for the wan side?
granny
oh yeah, no fajita
she ain't here
pctony-- # fajita killer
two words for you
fuck off
la la la la la
:P
how to proxy requests to localhost:8080, if the domain is
"example"? rewrite? proxy?
mod_proxy
somebody said mod_proxy was http://httpd.apache.org/docs-2.0/mod/mod_proxy.html
or http://httpd.apache.org/docs/mod/mod_proxy.html
http://httpd.apache.org/docs/2.2/mod/mod_proxy.html
woo!
granny
Granny Weatherwax tells us the most important thing about
magic is when _not_ to use it. The same is true of
mod_rewrite.
reverse proxy
rumour has it reverse proxy is http://www.apachetutor.org/admin/reverseproxies
rumour has it reverse proxy is a href="http://www.apachetutor.org/admin/reverseproxies"http://www.apachetutor.org/admin/reverseproxies/a
well, I have written in my .htaccess a DirectoryIndex
homepage.html only and even so I continue getting an internal
server error
me too. but this doesn't work: http://pastie.caboo.se/74396
that's yuck
does this work? one vhost listening on example and another,
listening on everithing else?
should
it has been said that should is ="please do this; it's not
required, but it makes life better"
if you set up your vhosts right
i mean that's the point of them...
order?
i heard order was http://httpd.apache.org/docs-2.0/mod/mod_access.html#order
or http://httpd.apache.org/docs/mod/mod_access.html#order
also see: http://httpd.apache.org/docs/2.2/mod/mod_authz_host.html#order
ok..
which order do i have to use? *, example or example, *, if it
depends only on the order?
#access stuff for this vhost if you want... other stuff ...
/Location... /virtualhost
servername foo.com ... blah blah blah ... /virtualhost
wotevah
thanks
i try
so user goes to foo.com gets, one site of stuff
user goes to example.com, gets your tomcat stuff, but it looks
like apache is doing the serving...
yada yada yada
tomcat reverse proxy
tomcat reverse proxy is http://wiki.apache.org/httpd/Recipes/TomcatReverseProxy
megaspaz, if you were allowed to use .htaccess and you write
just in it a DirectoryIndex homepage.html, at least, that should
work
not necessarily
allowoverride none
AllowOverride None means "Please ignore my htaccess files." and
is the default setting. or See http://www.onlamp.com/pub/a/apache/2003/12/04/apacheckbk.html
Can anyone tell me why this rewrite rule didnt work? I want
to force any url entered on this server to go to the rewrite
destination. RewriteRule ^/*$ /pls/apex/f?p=103 [R=301]
allowoverride
AllowOverride tells Apache what things you wish to permit in
.htaccess files. See http://httpd.apache.org/docs/2.2/mod/core.html#allowoverride
megaspaz but then, when you create .htaccess the server should
ignore it
depends on your override
it is true
if you're doing specific override options then you might not
have set the correct override for the one that isn't
"working"
[qsa]
i guess [qsa] is query string append (see 'QSA') http://rewrite.drbacchus.com/rewritewiki/Flags_2fQSA
my company uses apache 2.0.46 on rhel3, we have a little over
550 virtual hosts all with 2 log files (access/error) when I add
another virtual host, apache no longer starts. Any idea how to
check the file descriptors to find out how many files are opened by
apache and the other users?
lsof
i guess lsof is your friend! lsof -i:80 to see what's using
port 80. You may need to run lsof as root on some
platforms
oh fds
so, It could give the case Apache does not ignore your
.htaccess but you are now allowed to write anything int this file
due to you override
mmhmm... but apache would ignore some directive in there
definitely sounds like you've hit the limit though
that's what I am thinking. I am trying to get them to do the
mass virtual hosts and then parse the logs
depends really though... sometimes apache might give an
error, sometimes it'll just ignore... depends on the
directive
or used piped logs
you can pipe them all to the same program
or, as you say, you can put them all in the same file
this is a production system, what would be the best method for
keeping cpu/ram down?
in terms of logging?
yea
"ditch php"
hee hee
that was one of them
:P
the cheapest way is to dump all the logs from all the vhosts
into a single file
labelling each line with the vhost
Does anyone have any idea whats wrong with my
rewriterule?
didn't i just answer that?
and then cron a process to split the files every few
minutes
[qsa]
hmmm... [qsa] is query string append (see 'QSA') http://rewrite.drbacchus.com/rewritewiki/Flags_2fQSA
nickometer [11011110
'[11011110' is 98.39% lame, niq
thanks!
heh
but use one of the piped logger programs
megaspaz, my httpd.conf has an AllowOverride None in Directory
/
there's probably one which does what you want
that's normal
directory /
is a filesystem directory, not a URL path. If you put options
in this block, don't be surprised when whatever you're trying to do
doesn't work.
doesn't work. if i request the example-site, i get a "dont
have permission"-error :s
well, what's the config look like
i'm guessing that most of your vhosts are idle most of the
time
so it doesn't make much sense to have two log fds open for each
one
all the time
and what's the exact error in your error log
apache2 doesn't want to pw protect a directory after this guide
http://linuxhelp.blogspot.com/2006/02/password-protect-your-website-hosted.html
.. what's the deal?
"client denied by server configuration: proxy:http://localhost:8080" is in the
error.log
you used a frigging blog site for an authorative source?
yea, I am trying to convince them to remove the logs from
each and parse them or pipe it.
megaspaz, I am using a public_html. I haven't seen any
symlink to my directory so I supposes the Apache's administrator
have done it by using some directives. Could he set up my
public_html so that nothing I write in the .htaccess
works
and what's your vhost config look like?
the vhosts are mainly active during the day 8-6
it's possible
and how could I know that?
google had it highly ranked- I figured it had some
reputation.
ask him?
google's ranking is done by popularity, not quality
popularity != quality
auth
http://httpd.apache.org/docs/2.2/howto/auth.html
look at http://wiki.apache.org/httpd/Recipes/PasswordBasicAuth
for some basic examples!
megaspaz, . But by editing the httpd.conf is not
possible?
i don't know... can you edit httpd.conf?
yes
often they are correlated. thanks fajita.
correlated... heh heh
yeah
it is the ongly thing I can do. I can't look at in the errors
files
oook...
well the error log will help you narrow down what you're looking
for
without it 'em it's just a guessing game...
check your userdir set up
yes I know, but i am not allowed
you should have Directory /home/*/public_html
NameVirtualHost *
somebody said NameVirtualHost * was 6usually what you want, if
you only have one ip address
no fajita, NameVirtualHost * is bad form. You should never
use this. It will break your heart.
okay, megaspaz.
namevirtualhost *
Consider using NameVirtualHost *:80 instead, to avoid port
overlap.
you didn't read my config very well did you
#access stuff for this vhost if you want... other stuff ...
/Location... /virtualhost
because of the slashes?
no
look up
port-specification?
hi again :p
?
i fixed my problem
you need to set access
how?
and you need trailing / for the proxypass(reverse) lines
because you're proxying the / url path
how what?
order
well, order is http://httpd.apache.org/docs-2.0/mod/mod_access.html#order
or http://httpd.apache.org/docs/mod/mod_access.html#order
also see: http://httpd.apache.org/docs/2.2/mod/mod_authz_host.html#order
allow
hmmm... allow is http://httpd.apache.org/docs-2.0/mod/mod_access.html#allow
or http://httpd.apache.org/docs/mod/mod_access.html#allow
http://httpd.apache.org/docs/2.2/mod/mod_authz_host.html
deny
deny is http://httpd.apache.org/docs-2.0/mod/mod_access.html#deny
or http://httpd.apache.org/docs/mod/mod_access.html#deny
or http://httpd.apache.org/docs/2.2/mod/mod_authz_host.html
^^ with those
how to set access? you wrote "if you want" for the
location-tag
where is the options directive?
supposed to be put
options context
server config, virtual host, directory, .htaccess (.htaccess
requires AllowOverride Options in the httpd config)
context
context is http://httpd.apache.org/docs/mod/directive-dict.html#Context
http://httpd.apache.org/docs/2.0/mod/directive-dict.html#Context
http://httpd.apache.org/docs/2.2/mod/directive-dict.html#Context
^^ read those
thank you
allow from all /Location. now apache doesn't start anymore
:s
what's the error?
sry, just a syntax error.
now it works!
huge thanks, megaspaz
np
fixed
thanks megaspaz
hello, if i'm using mod_python should I use the prefork mpm,
or something else?
megaspaz, this is the config for the public_html
http://pastebin.ca/593766
yeah
At least, the test I have made with DirectoryIndex blabla.html
should work
you need indexes added to allowoverride
so no it shouldn't work
until you add indexes and restart apache
Is there anyway I can have a directory hidden on http://localhost but still have pics in that
directory anonymously hotlinked?
megaspaz, son I can't even make alias. They would not work
neither
alias override
crap
alias
it has been said that alias is http://httpd.apache.org/docs/2.2/mod/mod_alias.html#alias
hey folks. i just setup webdav shares, using mod_ssl, mod_dav,
mod_userdir, and mod_authnz_ldap. anyone have any pointers on how
to restrict https://foo.com/~user (which matches
uid in ldap) to just that user?
alias context
server config, virtual host
alias doesn't work in htaccess
only works in server config and virtualhost
ah, more specifically, using some sort of generic access
control, not user-specific. too many users to do that.
yeah, i figured that's what you meant.
i was trying to think of a clever or devious hack
there isn't an authmap somewhere?
mod_auth_external
somebody said mod_auth_external was ~a flexible tool for
creating authentication systems based on other databases at
http://www.unixpapa.com/mod_auth_external.html
ooh, that looks interesting
it does, but it won't do what you want either
it is, rather
it can, with a bit of work
megaspaz, in this tutorial says I could use Alias in .htaccess
http://www.buildwebsite4u.com/advanced/htaccess-file.shtml
perhaps
that tutorial is wrong
if there was a way to pass the ~user being requested
alias
i think alias is http://httpd.apache.org/docs/2.2/mod/mod_alias.html#alias
right
use the official docs
that should be in a header, no? they're already auth'd
yeah, but headers aren't available to external programs
that was the basis of the hack i was thinking of, though.
header to env variable?
REMOTE_USER
REMOTE_USER is an environment variable which contains the
username, if a user had to authenticate.
alias was never allowed in htaccess from apache 1.3 to the
present... that guy doing that tutorial smoked too much
crack
but you'd need a post-authenticate pass to check that
we do that, exactly
using mod_perl or a custom module?
or directly in apache
to do that http://pastebin.ca/593780, I need
to have indexes at the AllowOverride for the public_html setting
up
yes
you are so fast
if you want any index directive to work in htaccess
because iRule
:P
megaspaz, thaks a lot. I think this is my last step. It is time
to report then
thanks a lot
it would be a trivial module
that last pastebin, is that the right url?
i see a location /opsboobahfoobarsomething
hah!
mod_authz_ownder
where?
mod_authz_owner
mod_authz_owner is http://httpd.apache.org/docs/2.2/mod/mod_authz_owner.html
which has nothing to do with your blah about ~user
to do that http://pastebin.ca/593780, I need
to have indexes at the AllowOverride for the public_html setting
up
^^ thar
i think that's your solution
well
thiyes, this is
yes this is
i have this lines in mod_rewrite
RewriteCond %{HTTP_HOST} ^www
RewriteRule ^(.*)$ http://corporacaoweb.com/$1
[L,R=302]
this is what i have to do in my .htaccess
ok... well now i'm confused... because you said you had issues
with your ~user thing...
i wanna redirect all of requistions in www.coporacaoweb.com/* to
corporacaoweb.com/*
i thought a pre-req to writable webdav was that the user
running apache owned all the files?
how i do it?
that last pastebin looks like it has nothing to do with your
~user thing
if i'm wrong, i'd totally be happy, cause then i can give the
devs access to their unix homes too!
can't you do with apache just having write access?
megaspaz, I am using a public_html.
could be a group permission, no?
what about enabling ssh?
i could be wrong, i haven't set up dav that way
has nothing to do with your public_html
ah, they have ssh. they're a lazy bunch.
megaspaz, the question is I have to add that lines into the
httpd and I haven't got permissions enough to do it so I was trying
to use a .htaccess to do that
yeah, but where?
it has been said that yeah, but is %perchild really ever
going to happen?
in theory, on those lines there as two alias
ah, yes, with proper umask, yes, i can totally do this.
hmm.
everything under my public_html
ok
yeah so then the allowoverride change would be the userdir
config
you'd need to do it there as well
has nothing to do with your userdir
if you wanted indexes for /blah
megaspaz, but inagine this location is in my public_html
ok
all that I need is the administrator redefine the public_html's
AllowOverride
either way, you need to edit the main apache config
isnt?
let me know if it works
will do
is in your public_html, then yes
megaspaz, but on those lines there were two alias as the
app's directions say
2 aliases to what?
those alias was pointing to /pulbic_html
i didn't see anything dealing with public_html
I think I am getting you in an mess as I am not explalin
myself very well
except for that stuff you showed me
which is a userdir config
let me please explain things from the beginning
ruh roh
word
In the beginning was the Word, and the Word was with God, and
the Word was God. (John 1:1)
I have to install a app under my public_html directory
lol ll
sorry
You will be!!
in the app's directions say what I pasted + two alias pointing
into the public_html
the question is, I had to do into httpd.conf but I have not got
permissions enough to do it, so I have decided to do it by
.htaccess
what I did not know is I could not do it without indexes option for
AllowOverride
I have just found out when you told me that
to report the Apache administrater
so you really don't need to edit public_html's directory
but it doesn't hurt
blocks of the aliases
megaspaz, yes exactly
but as i could not, i tried to do it by means of
.htaccess
the indexes will only work if you access the app with like,
blah.com/~user/app/
being an ingnorant because of I did not know that
well, it really sounds like you need to ask your admin how
he's set up your stuff in regards to access
apc
Try using http://apache.pastebin.ca - It's a
good pastebin, and is even set up to highlight Apache
'stuff'.
megaspaz, the question is it was a test that a company tells
me to do. For this reason I couldn't ask the administrator
otherwise i had done long time ago
well, if said company has a site hosted somewhere and they made
a vhost for said company and set vhost docroot to
/home/company/public_html, then you editing the userdir
configuration doesn't do you any good
you'd have to make the changes in said vhost
megaspaz, the question is I think the administrater supplied
me everything that in theory I would need but it is not at
all
well if that's a question, i can't answer it because i don't
know how the adminstrator set up your stuff
so g'luck
even, setting up perl I have to fight a lot, but this handicap I
can't jump it
megaspaz, I know. You have done all that was in your hands and I
am very grateful
once again thanks
good luck to ya
hi, i just installed the apache webserver SSL version 2.2,
and i had a question regarding it and download managers
i have a bunch of documents that i need a colleague to access,
he can download them manually if he selects, "save target as..."
but can he use something like flashget?
we tried but it doesn't seem to work... not sure what to do, we
limited it to 1 connection maximum and 1 job , and entered the
username / password.. but it just sits there
How do you run Ruby CGI scripts without the
#!/usr/local/bin/ruby bit in line 1?
Do I need to setup a MIME type for .rb and then an
Action?
snoopdave, not through cgi
do tell!
fcgi has a wrapper directive you can do something like that
with
or you can use mod_ruby
*fcgid
and they both perform WAY better than cgi, ruby cgi would
probably kill your server if you got any regular
traffic.
or you can run mongrel and reverse proxy to it
*shrugs*
that too
probably be easier than setting up fcgid or mod_ruby :p
which brings a question up on my mind.
think fcgi is the easiest route?
tomcat 6 has that new IO stuff, I want to play with the comet
interface they added, If i did a reverse proxy through apache,
would it break the persistent comet connection you think?
snoopdave, no reverse proxy to mongrel.
Tim B just said "setup a ScriptAlias" but his Ruby scripts don't
have the #! deal
*fcgid
couldn't tell ya. don't run tomcat 6... i can only suggest
trying it on a test server...
(trying to run Tim Bray's Atom Protocol Excersizer)
probably what I am going to do
the whole thing is for experimentation anyway.
it will be blogged... oh yes, it will be blogged
it's just the fun of tomcat's documentation problem.
tomcat's
netsplit
tomcat knowhow just splitted away.
really??? netsplit???
how you noticed???
jMCg, got dragged away by proprietary servlet/jsp
containers?
GEDDY LEE?!?!
net unsplit!
wow that you saw that
you're unbelievable! OOOOOooooohhhhhhhh!
GEDDY? play me some bass
Why Geddy?!
why not?
Why Why not?
Why Why Why not?
/ban *
:/
lol
society started it :
And this is societies reaction to YOU.
heh
first ban in days... I feel the urge..
ban context?
i don't know
How can I see the headers send from client browser?
watching headers
I am trying to embed a .avi file into a webpage on an apache22
server run on my internal net. I can get the windows media player
to show up but it will not stream the file. It appears to be trying
to download the file completely before it will begin to play... Any
special things I have to do with my Apache conf to make this
possible?
I am trying to embed a .avi file into a webpage on an apache22
server run on my internal net. I can get the windows media player
to show up but it will not stream the file. It appears to be trying
to download the file completely before it will begin to play... Any
special things I have to do with my Apache conf to make this
possible?
?
headers
header watching
headers is see head
head
Off with jpeg's head!
bah
humbug
fajita++
I need to see what languages the browser requests through
header
wireshark, tcpdump, ngrep, etc...
if you're using firefox/mozilla, grab livehttpheaders
extension
perl ftw!
mod_log_forensic?
hmmm... mod_log_forensic is http://httpd.apache.org/docs/2.2/mod/mod_log_forensic.html
mod_whatkilledus!
mod_whatkilledus is at http://people.apache.org/~trawick/
, and reports exact details of a request that caused a
crash
is that allso for checking what headders the browser is
sending?
add \"%{Accept-Language}i\" to your LogFormat line, to log the
language request headers
hi all
how can i check if mod_proxy is loaded ?
Roobarb-Work: ahh, thanks
httpd -M?
httpd -M lists both statically and dynamically loaded modules
for apache version 2.2 and higher
look for a LoadModule line for it in your config
or try to use some of the modules directives
livehttpheaders lets you see all the headers
hello, why do apache processes on my system hang around for
something like ever after doing their job?
so they don't have to be started again when a new request comes
in
KeepAlive?
rumour has it KeepAlive is http://httpd.apache.org/docs-2.0/mod/core.html#keepalive
i have the loadmodule line in my config but the directive
return an error
when seeking help regarding errors, it is best to say what
the error is exactly,
verbatim
Verbatim means "word for word" "copy and paste". It means we
want the exact error message from the error log. That also means
use a pastebin for 3 lines. Ask me about 'apc' for which pastebin
to use.
or what you mean by hanging? apache keeps certain amount of
idle processes/threads available for the reason dkr told. And if
you use keepalive, then processes waits KeepAliveTimeout amount of
seconds if client makes another request
you there
cya
I am trying to embed a .avi file into a webpage on an
apache22 server run on my internal net. I can get the windows media
player to show up but it will not stream the file. It appears to be
trying to download the file completely before it will begin to
play... Any special things I have to do with my Apache conf to make
this possible?
they are not reused
pong
Ping.
I have a pretty complicated export. if I start it 3 time I
have three process hanging around uing 20%mem ( of 4GB )
each
in cpu means they do nothing, after 2minutes there is a short D and
they fall from 30% to 20%
not sure how reliable top is in the means but using 900MB of Ram
after the client is shutdown seams unreal to me
I've never seen apache that much ram
how many modules are you loading?
s/apache/apache use/
the spare processes have 0.3%
Hello users of the wonderful Apache.
I bring you a question from my tribe.
its apache-ssl having 15 lines with LoadModule
No, not that. But keep guessing.
question
If you have a question, please go ahead and ask it. We have the
answers... or a whole lot of sarcasm...
(By the way, I was kidding :-))
ask
If you have an apache related question, please go ahead and
ask it. We will not beat it out of you. We won't bite you either,
at least until we get to know you better
elaborate
You make no sense, try to rephrase your question and
elaborate on what you want, what you tried, and what didn't work
(paste the error message you see in the error log, usually named
error_log or error.log). Also tell us what platform you are on and
what version of apache you are using.
Guys, chill out :-)
-- gone
which column in top are you looking at? vm size or rss?
we'll chill so much, we won't talk anymore!
%MEM
well, %MEM is that it?
You could see how that would be a problem.
6 2007] [error] [client 213.176.151.102] Invalid method in
request
This is what I get in my newly created VirtualHost.
When I try to access it, that is.
If I want to make all traffic originating from 192.168.1.15
only be able to view /pls/apex/f?p=103 , wouldnt the following
rewrite rules work?
RewriteCond %(REMOTE_ADDR) ^192.168.1.15
RewriteRule ^ /pls/apex/f?p=103 [R=301,L]
Hi there
trying to speak https to http host?
that does seem high, assuming that %MEM is based on RES
SSLEngine On
SSLEngine On is indeed valid directive in 1.3.x
you're doing ssl to http or http to ssl. common issue is you're
mixing * with non* ports
http
http is Hypertext Transfer Protocol; see URL:ftp://ftp.isi.edu/in-notes/rfc2616.txt.rfc2616
Thank you, smart bot.
are you using some caching module?
or http to https host (in this case most of the versions give
decent error message)
Thanks guys, let me crawl trough my file and see if I can
find something suspicious
check for NameVirtualHost *
could anyone tell me what is involved in deciding whether a
client is allowed to request some resource?
I was trying to access the page from HTTPS :-)
blocks as well
I'm getting reiterated "access denied" errors, and can't seem to
figure out why...
you have to enable ssl in the vhost then
keepAlive is probably cool for static binary content, perhaps I
should trie to remove it for big generated content?
Thanks, I'll put the SSLEngine on.
file permissions, dirctory permission as they relate to the
ser apache rus as
oh.. you enabling ssl? i thought it was already
enabled...
ser = user
what are you using to generate the content?
*shrugs*
still watch out for port mixing
php and postgres
how big are the content pages?
file permissions
what about apache owning all the files, plus having chmodded
to 777 (just to test this...) and having an allow from all in the
server config, and still not being able to get it?
or downloads as the case may be
anyone have any ideas about my rewrite problems?
granny
Granny Weatherwax tells us the most important thing about
magic is when _not_ to use it. The same is true of
mod_rewrite.
results in 11MB so it shouldnt take more than 20
instead of treating symptoms like that, read the error log for a
more useful error.
apache shouldnt really own anything, just needs read and in
some cases execute (directories,cgi)
permission denied. not more nor less
Syntax error on line 9 of
/etc/apache2/mods-enabled/proxy.conf:
Invalid command 'Order', perhaps misspelled or defined by a module
not included in the server configuration
well, you never know. but several hundred does seem
excessive
permissions
Files need to be readable by the Apache user (e.g. 644).
Directories and scripts need the X bit too (e.g. 755). That
includes *all* parent directories of a resource. If you have a
symlink, check both the source and targetIf you have AllowOverride
for an unreadable directory, the error message will refer to
.htaccess. See also selinux
^^^
what was the default mpm i should be using ?
worker or prefork
if you're using mod_php, /me says prefork
worker is threaded, prefork isn't
ok thanks
worker doesn't prefork afters
if you're using the reverse proxy model, i'd try doing worker
on the front end and prefork on the backends
bif you're using the reverse proxy model, i'd try doing worker on
the front end and prefork on the backends/b
but keep your minclients low on the backends
well... doesn't seem like there's a straightforward answer to
this.
sure there is, what have you checked so far other than the
error log?
I've checked file permissions, any directives that might be
rejecting users (like allow and deny), file ownership and
groups.
selinux is deactivated. first thing i did when things started to go
weird.
I'm accessing from localhost, so firewall is no issue.
Invalid command 'Order', perhaps misspelled or defined by a
module not included in the server configuration
why this ?
mod_access not enabled
*not loaded
order
somebody said order was http://httpd.apache.org/docs-2.0/mod/mod_access.html#order
or http://httpd.apache.org/docs/mod/mod_access.html#order
also see: http://httpd.apache.org/docs/2.2/mod/mod_authz_host.html#order
paste up your config, and the permissions on the documentroot
and subdirs if you want and we'll hav a look
apc
Try using http://apache.pastebin.ca - It's a
good pastebin, and is even set up to highlight Apache
'stuff'.
notice the name change of mod_access in apache 2.2
megaspaz, if I shouldnt use mod_rewrite, how can I achieve
the desired result?
the question isn't whether you should or shouldn't use
mod_rewrite... the question is do you need to use it?
what are you trying to achieve?
I have 192.168.1.15 set up as a reverse proxy to this
webserver, so I only want to allow access from that IP to a
specific url (/pls/apex/f?p=103)
My goal was to force all traffic from that IP to that url with
mod_rewrite, but if there is a better way I'm all ears
done. you might find it here: http://apache.pastebin.ca/593934
[11011110: do the parms matter or just the /pls/apex/f ?
yea, they matter
it takes you to a different oracle app if you change that value,
which is what im trying to lock down
gotcha.
hi. i've broken my apache2 install on ubuntu by deleting the
000-default file. i've tried to re-create it but abache says it
isnt there on reload. what should the owner and permissions on that
file be?
I'll be down for a while. If anyone finds the time to look at
that, just drop me a mail at chris@pixware.org. I'll be back in 1
hour or less anyways. Thanks guys
looking now
megaspaz, is there a command to see if a module is loaded
?
I need a bit of help with a htaccess redirect. Lets say i
want to redirect only traffic to domain.com and
domain.com/index.php to domain.com/clientarea.php. I want all other
files in that site root to be able to be linked to fine. Any
tips?
directive by itself with out the auth. The auth works with
out the redirect. I just can't get them to work together. It
requests the user authe
affect.
This woman's internet disappeared
i have this lines in mod_rewrite
RewriteCond %{HTTP_HOST} ^www
RewriteRule ^(.*)$ http://corporacaoweb.com/$1
[L,R=302]
i wanna redirect all of requistions in www.coporacaoweb.com/* to
corporacaoweb.com/*
how i do it?
dont do that, do this. New VirtualHost clock for
www.coporacaoweb.com and put a Redirect / http://corporacaoweb.com in it.
clock/block
arreyder, this is best like use mod_rewrite?
use the Redirect.
listen to arreyder
dacat, ok
arreyder, thanks man.
np, glad to help
what -D params did you start apache with to use the
proxy
none
the config file doesn't have any conditionals in it
If I understand, what you need is a RedirectMatch /secure
https://host/secure in the port
80(non ssl) virtualhost
so APACHE2_OPTS="-D DEFAULT_VHOST" should be ok
i dont need -D proxy or anything
that depends on how you wrote your config file
i wrote mine from scratch, it's only 25 lines long
the stuff on the wiki is the difficult bit
http://wiki.apache.org/httpd/Recipes/Different_UserIDs_Using_Reverse_Proxy
listen, load 4 modules, tune the mpm
i haven't done much tuning to it, i'll need to do that sometime
i guess
more specificly maybe RedirectMatch ^/secure adjust as
needed
note, i use a custom script to start that apache as well.
it specifies a server-root and a config-file
i use a custom script to start and stop the backends also
oh, and jslive removed my comment about specifying pidfile and
scoreboardfile in every apache instance, but you do have to do
that. make sure they're distinct.
and watch out for log files, too
you have a more detailed doc ?
if you start the backends non-root (recommended by me) then
you have to give them filesystem paths they can get at
no
that's why i'm typing into this window
lol
i just wrote that off-the-cuff in the hopes that someone
might find it useful
ok i will start to configure this and when i run into issues i
too will type into this window
but on the assumption that people who do mass vhosting have
read the apache manual
i figured the rewritemap/rewritecond thing was non-obvious
the rest is pretty straightforward
Invalid command 'ProxyRequests', perhaps mis-spelled or
defined by a module not included in the server configuration.... so
i do need to include a few more modules
you need mod_proxy and mod_proxy_http. also mod_rewrite and
mod_authz_host iirc
yeah, those are the four i have loaded
hi, when i write http://myserver/index.pl I get the
text instead of the page. I have seen in the perl.conf inside
conf.d the moudles is loaded by LoadModule and the module exists
inside the modules directory
could this be something like what you have to change for php in
apache so that it can recognize ext .php?
could be. do you want to use modperl or do you want to use
cgi?
i dont have mod_authz_host as i am using apache 2.0
mod_access
mod_access is http://httpd.apache.org/docs-2.0/mod/mod_access.html
or http://httpd.apache.org/docs/mod/mod_access.html
Called mod_authz_host in 2.1 and later
the config is untested on 2.0, but i don't see why it
wouldn't work
ok
jpeg uffffffff that is a good question. The thing is in my
public_html I am linking to /home/app/bin/cgi-bin/index.pl
so I can guess is to cgi
what is the map suppose to look like
/usr/local/etc/apache22/host_to_ip ?
there's an example on that page
each line has two space-separated fields
first the domain name
then the ip:port
you can use comments (#)
RewriteMap
RewriteMap is http://httpd.apache.org/docs/2.2/mod/mod_rewrite.html#rewritemap
or http://httpd.apache.org/docs/2.0/mod/mod_rewrite.html#rewritemap
or http://httpd.apache.org/docs/1.3/mod/mod_rewrite.html#rewritemap
or http://www.onlamp.com/pub/a/apache/2005/04/28/apacheckbk.html
explains the format and the theory
jpeg, the app asks me to add these lines into the httpd by I
haven't been able because of I am not root http://pastebin.ca/593780
ahh ok i found it
and I have made a cat httpd | grep PerlSendHeader and I could
not find it
that's a mod_perl setup
so that means, without it i can do a lot of things but no
with perl
you can run perl cgis
but I would need to add that Options ExecCGI
you should be able to put those lines in .htaccess, too, i
would have thought
in my perl module configuration
options execcgi
i heard options execcgi was )how you enable cgis to run in a
directory
rici, I have tried
fajita-- # unhelpful
huh?
options +execcgi
Options +ExecCGI allows a directory to execute CGI
scripts.
not perl specific
sethandler cgi-script
but, my administrater did not write AllowOverride Indexes for my
public_html
rici, so I will not able to add those lines into my
.htaccess
ah
i don't think execcgi is covered by allowoverride indexes
execcgi override?
give a sec
options?
i guess options is http://httpd.apache.org/docs/2.0/mod/core.html#options
or http://httpd.apache.org/docs/1.3/mod/core.html#options
or see 'Options Context' Don't mix 'relative' and 'absolute'
values. See: http://www.onlamp.com/pub/a/apache/2005/09/08/apacheckbk.html
yeah. options.
I will show you
i can't remember the last time i used an .htaccess file
maybe i never have
don't they give you a cgi directory?
let me check in a sec
hi. I have two servers with two identical (I thought) copies
of Apache2.2 worker. When I request a URL on one server, in the
logs I see "GET /whatever HTTP/1.1", but on the other server when I
request the same URL I see not one, but THREE entries: "HEAD
/whatever HTTP/1.1", "GET /whatever HTTP/1.0" and a second "GET
/whatever HTTP/1.0". Why is this? It breaks my apps.
that's your browser at work
rici, the only thing I have been able to find about cgi is
for /var/www/cgi but nor for my public)html
it's the same browser
are there any infra folks here? jira is having
troubles...
public_html
public_html is http://httpd.apache.org/docs-2.0/howto/public_html.html
well, that's a drag
besides, I tried it with both Firefox and Lynx
same results
dunno, but the choice of requests is made by the browser
the HEAD GET GET sequence looks like the browser is validating
it's cache
rici, the problem is I have no way to modify the httpd.conf.
All that I have got is what I showed you
i sympathize
take it up with your sysadmin
8 2007] [error] [client 172.31.4.20] client denied by server
configuration:
Oh... could it be that I'm accessing the second (broken)
server through a proxy? could that be it?
yes
thank you
fajita, client denied by server configuration
Have a look at
http://wiki.apache.org/httpd/Errors/ClientDeniedByServerConfiguration
for a better idea of what this error message means
fajita, cdbsc?
i haven't a clue, rici
ProxyPass /portal http://172.31.1.2/portal
8 2007] [error] [client 172.31.4.20] client denied by server
configuration:
how is it possible ?
read fajita's link
i can understand if the site was local
but i user reverse proxy
it s not a local directory
then don't block it locally
access restrictions apply to proxy'd urls too, if you've configured
them
When using multiView for content negotiation to resolve the
language of the site, how can I make a link on the site to change
the language to something else?
rici, i don t block locally
i have to start an apache process for each of the loopback
hosts correct? ./apachectl -f /usr/local/apache2/conf/host1.conf -k
start
i beg to differ
ues
yes
although you might or might not want to use apachectl for
that
Someone please help... I am not sure if this is apache related,
but I have nowhere else to turn, and apache is where the log trail
stops: http://rafb.net/p/gVDMWN64.html
yah i am going to have to patching my init file
ok lets see if i understand this... we are setting up a name
based vhost for the port 80 server. then we start a bunch of ip
vhosts on different ports.
for host in /usr/local/apache2/webs/*; do /path/to/httpd -d
/usr/local/apache2/webs/$host -f /usr/loal/apache2/webs/httpd.conf
-k start ; done
something like that
oh, except that you want to start them as the appropriate user
so you'll need a sudo or something to set the user group
there's no virtual host directives anywhere in my test config
although a user server could respond to more than one hostname;
it's free to use vhosts inside its config
the rewrite in the proxy server is in lieu of vhost
directives
ahh yes
effectively it's a vhost setup. it just doesn't use vhost
directives
so each init file needs to start as a different user using
sudo or something in addition to the user and group specified in
the config ?
instead of the user/group specified in the config
if you start the main process as user:group, it can't change it
so you don't need to / cannot put user & group in the
config
that's the advantage of starting the main process non-root;
gives you more protection
also keeps the configs simpler
if you start as non-root, how do you bind to 1024 ?
if you additionally start them in a chroot environment,
they'll have limited filesystem access
i don't
the loopback ports are all high port numbers
fair enough
for a loopback port, who cares?
as long as the backend app doesn't do something stupid like
create it's own absolute urls
I probably missed the beginning - mod_proxy yes?
my suggested process separation setup
using mod_rewrite to allow for easy config of the frontend
server
Related Topic:
I had him to to use flashget but it doesnt seem to work even when he has my login information somebody mentioned