httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 47634] mod_ldap connection pool session keepalive not implemented
Date Sat, 12 Dec 2009 19:20:28 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=47634

--- Comment #6 from Stefan Fritsch <sf@sfritsch.de> 2009-12-12 11:20:24 UTC ---
The cleanest fix is the ldap library enabling the tcp keepalive option. Recent
version of OpenLDAP do this. Under Linux, you can tune the interval between
keepalive probes with /proc/sys/net/ipv4/tcp_keepalive_time (default is two
hours). Reducing this to a value below the firewall's state timeout should fix
the problem.

You should try to find out if your OS / your ldap library supports this. If it
doesn't, you should bug the vendor to implement it.

Another fix is to configure the firewall to send tcp reset packets instead of
silently dropping connections.

Apart from that, allowing to set a timeout for ldap searches in Apache httpd
would be a good idea.

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message