httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Boyle Owen" <Owen.Bo...@swx.com>
Subject RE: [users@httpd] SV: [SPAM: ] - RE: [users@httpd] Generating self-signed key doesn't work? - Email found in subject
Date Tue, 30 Mar 2004 14:00:00 GMT
> -----Original Message-----
> From: Erik Andersson [mailto:erik.andersson@cybercomgroup.com]
>  
> I applied the recommended changes and searched for 443 in 
> both ssl.conf and found no occurances except in ssl.conf.. I 
> stopped the server using ./apachectl stop

... and then restarted it, I hope? You know that you have to stop and start apache to pick
up changes to the config, don't you?

> to check so I 
> didn't had any other server running on port 443 and there was 
> no such server.
>  
> What am I to do now?!?

What happened after you restarted?

>  
> I have some virtual host setup in httpd.conf, maybe thats 
> causing the problem? 

You VHs look OK. 

> Can it be something wrong with mod_ssl.so?

Unlikely. Or 9 million other people would have problems too...

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored. 

>  
> Here is my httpd.conf:
>  
> #
> # Based upon the NCSA server configuration files originally 
> by Rob McCool.
> #
> # This is the main Apache server configuration file.  It contains the
> # configuration directives that give the server its instructions.
> # See <URL:http://httpd.apache.org/docs-2.0/ 
> <http://httpd.apache.org/docs-2.0/> > for detailed information about
> # the directives.
> #
> # Do NOT simply read the instructions in here without understanding
> # what they do.  They're here only as hints or reminders.  If 
> you are unsure
> # consult the online docs. You have been warned.  
> #
> # The configuration directives are grouped into three basic sections:
> #  1. Directives that control the operation of the Apache 
> server process as a
> #     whole (the 'global environment').
> #  2. Directives that define the parameters of the 'main' or 
> 'default' server,
> #     which responds to requests that aren't handled by a 
> virtual host.
> #     These directives also provide default values for the settings
> #     of all virtual hosts.
> #  3. Settings for virtual hosts, which allow Web requests to 
> be sent to
> #     different IP addresses or hostnames and have them handled by the
> #     same Apache server process.
> #
> # Configuration and logfile names: If the filenames you 
> specify for many
> # of the server's control files begin with "/" (or "drive:/" 
> for Win32), the
> # server will use that explicit path.  If the filenames do *not* begin
> # with "/", the value of ServerRoot is prepended -- so "logs/foo.log"
> # with ServerRoot set to "/opt/app/apache/2.0.43" will be 
> interpreted by the
> # server as "/opt/app/apache/2.0.43/logs/foo.log".
> #
> ### Section 1: Global Environment
> #
> # The directives in this section affect the overall operation 
> of Apache,
> # such as the number of concurrent requests it can handle or where it
> # can find its configuration files.
> #
> #
> # ServerRoot: The top of the directory tree under which the server's
> # configuration, error, and log files are kept.
> #
> # NOTE!  If you intend to place this on an NFS (or otherwise network)
> # mounted filesystem then please read the LockFile 
> documentation (available
> # at 
> <URL:http://httpd.apache.org/docs-2.0/mod/mpm_common.html#lock
> file 
> <http://httpd.apache.org/docs-2.0/mod/mpm_common.html#lockfile> >);
> # you will save yourself a lot of trouble.
> #
> # Do NOT add a slash at the end of the directory path.
> #
> ServerRoot "/opt/app/apache/2.0.43"
> #
> # The accept serialization lock file MUST BE STORED ON A LOCAL DISK.
> #
> <IfModule !mpm_winnt.c>
> <IfModule !mpm_netware.c>
> #LockFile logs/accept.lock
> </IfModule>
> </IfModule>
> #
> # ScoreBoardFile: File used to store internal server process 
> information.
> # If unspecified (the default), the scoreboard will be stored in an
> # anonymous shared memory segment, and will be unavailable to 
> third-party
> # applications.
> # If specified, ensure that no two invocations of Apache 
> share the same
> # scoreboard file. The scoreboard file MUST BE STORED ON A LOCAL DISK.
> #
> <IfModule !mpm_netware.c>
> <IfModule !perchild.c>
> #ScoreBoardFile logs/apache_runtime_status
> </IfModule>
> </IfModule>
> 
> #
> # PidFile: The file in which the server should record its process
> # identification number when it starts.
> #
> <IfModule !mpm_netware.c>
> PidFile logs/httpd.pid
> </IfModule>
> #
> # Timeout: The number of seconds before receives and sends time out.
> #
> Timeout 300
> #
> # KeepAlive: Whether or not to allow persistent connections (more than
> # one request per connection). Set to "Off" to deactivate.
> #
> KeepAlive On
> #
> # MaxKeepAliveRequests: The maximum number of requests to allow
> # during a persistent connection. Set to 0 to allow an 
> unlimited amount.
> # We recommend you leave this number high, for maximum performance.
> #
> MaxKeepAliveRequests 1000
> #
> # KeepAliveTimeout: Number of seconds to wait for the next 
> request from the
> # same client on the same connection.
> #
> KeepAliveTimeout 15
> ##
> ## Server-Pool Size Regulation (MPM specific)
> ## 
> # prefork MPM
> # StartServers: number of server processes to start
> # MinSpareServers: minimum number of server processes which 
> are kept spare
> # MaxSpareServers: maximum number of server processes which 
> are kept spare
> # MaxClients: maximum number of server processes allowed to start
> # MaxRequestsPerChild: maximum number of requests a server 
> process serves
> <IfModule prefork.c>
> StartServers         5
> MinSpareServers      5
> MaxSpareServers     10
> MaxClients         150
> MaxRequestsPerChild  0
> </IfModule>
> # worker MPM
> # StartServers: initial number of server processes to start
> # MaxClients: maximum number of simultaneous client connections
> # MinSpareThreads: minimum number of worker threads which are 
> kept spare
> # MaxSpareThreads: maximum number of worker threads which are 
> kept spare
> # ThreadsPerChild: constant number of worker threads in each 
> server process
> # MaxRequestsPerChild: maximum number of requests a server 
> process serves
> <IfModule worker.c>
> StartServers         2
> MaxClients         150
> MinSpareThreads     25
> MaxSpareThreads     75 
> ThreadsPerChild     25
> MaxRequestsPerChild  0
> </IfModule>
> # perchild MPM
> # NumServers: constant number of server processes
> # StartThreads: initial number of worker threads in each 
> server process
> # MinSpareThreads: minimum number of worker threads which are 
> kept spare
> # MaxSpareThreads: maximum number of worker threads which are 
> kept spare
> # MaxThreadsPerChild: maximum number of worker threads in 
> each server process
> # MaxRequestsPerChild: maximum number of connections per 
> server process
> <IfModule perchild.c>
> NumServers           5
> StartThreads         5
> MinSpareThreads      5
> MaxSpareThreads     10
> MaxThreadsPerChild  20
> MaxRequestsPerChild  0
> </IfModule>
> # WinNT MPM
> # ThreadsPerChild: constant number of worker threads in the 
> server process
> # MaxRequestsPerChild: maximum  number of requests a server 
> process serves
> <IfModule mpm_winnt.c>
> ThreadsPerChild 250
> MaxRequestsPerChild  0
> </IfModule>
> # BeOS MPM
> # StartThreads: how many threads do we initially spawn?
> # MaxClients:   max number of threads we can have (1 thread 
> == 1 client)
> # MaxRequestsPerThread: maximum number of requests each 
> thread will process
> <IfModule beos.c>
> StartThreads               10
> MaxClients                 50
> MaxRequestsPerThread       10000
> </IfModule>    
> # NetWare MPM
> # ThreadStackSize: Stack size allocated for each worker thread
> # StartThreads: Number of worker threads launched at server startup
> # MinSpareThreads: Minimum number of idle threads, to handle 
> request spikes
> # MaxSpareThreads: Maximum number of idle threads
> # MaxThreads: Maximum number of worker threads alive at the same time
> # MaxRequestsPerChild: Maximum  number of requests a thread 
> serves. It is 
> #                      recommended that the default value of 
> 0 be set for this
> #                      directive on NetWare.  This will allow 
> the thread to 
> #                      continue to service requests 
> indefinitely.                          
> <IfModule mpm_netware.c>
> ThreadStackSize      65536
> StartThreads           250
> MinSpareThreads         25
> MaxSpareThreads        250
> MaxThreads            1000
> MaxRequestsPerChild      0
> </IfModule>
> # OS/2 MPM
> # StartServers: Number of server processes to maintain
> # MinSpareThreads: Minimum number of idle threads per process, 
> #                  to handle request spikes
> # MaxSpareThreads: Maximum number of idle threads per process
> # MaxRequestsPerChild: Maximum number of connections per 
> server process
> <IfModule mpmt_os2.c>
> StartServers           2
> MinSpareThreads        5
> MaxSpareThreads       10
> MaxRequestsPerChild    0
> </IfModule>
> #
> # Listen: Allows you to bind Apache to specific IP addresses and/or
> # ports, in addition to the default. See also the <VirtualHost>
> # directive.
> #
> # Change this to Listen on specific IP addresses as shown below to 
> # prevent Apache from glomming onto all bound IP addresses (0.0.0.0)
> #
> #Listen 12.34.56.78:80
> Listen 80
> #
> # Dynamic Shared Object (DSO) Support
> #
> # To be able to use the functionality of a module which was 
> built as a DSO you
> # have to place corresponding `LoadModule' lines at this 
> location so the
> # directives contained in it are actually available _before_ 
> they are used.
> # Statically compiled modules (those listed by `httpd -l') do not need
> # to be loaded here.
> #
> # Example:
> # LoadModule foo_module modules/mod_foo.so
> #
> LoadModule ssl_module modules/mod_ssl.so 
> #
> # ExtendedStatus controls whether Apache will generate "full" status
> # information (ExtendedStatus On) or just basic information 
> (ExtendedStatus
> # Off) when the "server-status" handler is called. The default is Off.
> #
> #ExtendedStatus On
> ### Section 2: 'Main' server configuration
> #
> # The directives in this section set up the values used by the 'main'
> # server, which responds to any requests that aren't handled by a
> # <VirtualHost> definition.  These values also provide defaults for
> # any <VirtualHost> containers you may define later in the file.
> #
> # All of these directives may appear inside <VirtualHost> containers,
> # in which case these default settings will be overridden for the
> # virtual host being defined.
> #
> <IfModule !mpm_winnt.c>
> <IfModule !mpm_netware.c>
> #
> # If you wish httpd to run as a different user or group, you must run
> # httpd as root initially and it will switch.  
> #
> # User/Group: The name (or #number) of the user/group to run httpd as.
> #  . On SCO (ODT 3) use "User nouser" and "Group nogroup".
> #  . On HPUX you may not be able to use shared memory as 
> nobody, and the
> #    suggested workaround is to create a user www and use that user.
> #  NOTE that some kernels refuse to setgid(Group) or semctl(IPC_SET)
> #  when the value of (unsigned)Group is above 60000; 
> #  don't use Group #-1 on these systems!
> #
> User myuser
> Group mygroup
> </IfModule>
> </IfModule>
> #
> # ServerAdmin: Your address, where problems with the server should be
> # e-mailed.  This address appears on some server-generated pages, such
> # as error documents.  e.g. admin@your-domain.com
> #
> ServerAdmin you@your.address
> #
> # ServerName gives the name and port that the server uses to 
> identify itself.
> # This can often be determined automatically, but we 
> recommend you specify
> # it explicitly to prevent problems during startup.
> #
> # If this is not set to valid DNS name for your host, server-generated
> # redirections will not work.  See also the UseCanonicalName 
> directive.
> #
> # If your host doesn't have a registered DNS name, enter its 
> IP address here.
> # You will have to access it by its address anyway, and this 
> will make 
> # redirections work in a sensible way.
> #
> #ServerName new.host.name:80
> #
> # UseCanonicalName: Determines how Apache constructs self-referencing 
> # URLs and the SERVER_NAME and SERVER_PORT variables.
> # When set "Off", Apache will use the Hostname and Port supplied
> # by the client.  When set "On", Apache will use the value of the
> # ServerName directive.
> #
> UseCanonicalName Off
> #
> # DocumentRoot: The directory out of which you will serve your
> # documents. By default, all requests are taken from this 
> directory, but
> # symbolic links and aliases may be used to point to other locations.
> #
> DocumentRoot "/opt/app/apache/2.0.43/htdocs"
> #
> # Each directory to which Apache has access can be configured 
> with respect
> # to which services and features are allowed and/or disabled in that
> # directory (and its subdirectories). 
> #
> # First, we configure the "default" to be a very restrictive set of 
> # features.  
> #
> <Directory />
>     Options FollowSymLinks
>     AllowOverride AuthConfig
>   AuthType  Basic
>   AuthName  "My Development Server"
>   AuthUserFile  /opt/app/apache/2.0.43/conf/mydom.passwords
>   Require valid-user
> </Directory>
> #
> # Note that from this point forward you must specifically allow
> # particular features to be enabled - so if something's not working as
> # you might expect, make sure that you have specifically enabled it
> # below.
> #
> #
> # This should be changed to whatever you set DocumentRoot to.
> #
> <Directory "/opt/app/apache/2.0.43/htdocs">
> #
> # Possible values for the Options directive are "None", "All",
> # or any combination of:
> #   Indexes Includes FollowSymLinks SymLinksifOwnerMatch 
> ExecCGI Multiviews
> #
> # Note that "MultiViews" must be named *explicitly* --- "Options All"
> # doesn't give it to you.
> #
> # The Options directive is both complicated and important.  Please see
> # http://httpd.apache.org/docs-2.0/mod/core.html#options
> # for more information.
> #
>     Options Indexes FollowSymLinks
> #
> # AllowOverride controls what directives may be placed in 
> .htaccess files.
> # It can be "All", "None", or any combination of the keywords:
> #   Options FileInfo AuthConfig Limit
> #
>     AllowOverride None
> #
> # Controls who can get stuff from this server.
> #
>     Order allow,deny
>     Allow from all
> </Directory>
> #
> # UserDir: The name of the directory that is appended onto a 
> user's home
> # directory if a ~user request is received.
> #
> UserDir public_html
> #
> # Control access to UserDir directories.  The following is an example
> # for a site where these directories are restricted to read-only.
> #
> #<Directory /home/*/public_html>
> #    AllowOverride FileInfo AuthConfig Limit Indexes
> #    Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
> #    <Limit GET POST OPTIONS PROPFIND>
> #        Order allow,deny
> #        Allow from all
> #    </Limit>
> #    <LimitExcept GET POST OPTIONS PROPFIND>
> #        Order deny,allow
> #        Deny from all
> #    </LimitExcept>
> #</Directory>
> #
> # DirectoryIndex: sets the file that Apache will serve if a directory
> # is requested.
> #
> # The index.html.var file (a type-map) is used to deliver content-
> # negotiated documents.  The MultiViews Option can be used for the 
> # same purpose, but it is much slower.
> #
> DirectoryIndex index.html index.html.var
> #
> # AccessFileName: The name of the file to look for in each directory
> # for additional configuration directives.  See also the 
> AllowOverride 
> # directive.
> #
> AccessFileName .htaccess
> #
> # The following lines prevent .htaccess and .htpasswd files 
> from being 
> # viewed by Web clients. 
> #
> <Files ~ "^\.ht">
>     Order allow,deny
>     Deny from all
> </Files>
> #
> # TypesConfig describes where the mime.types file (or equivalent) is
> # to be found.
> #
> TypesConfig conf/mime.types
> #
> # DefaultType is the default MIME type the server will use 
> for a document
> # if it cannot otherwise determine one, such as from filename 
> extensions.
> # If your server contains mostly text or HTML documents, 
> "text/plain" is
> # a good value.  If most of your content is binary, such as 
> applications
> # or images, you may want to use "application/octet-stream" instead to
> # keep browsers from trying to display binary files as though they are
> # text.
> #
> DefaultType text/plain
> #
> # The mod_mime_magic module allows the server to use various 
> hints from the
> # contents of the file itself to determine its type.  The 
> MIMEMagicFile
> # directive tells the module where the hint definitions are located.
> #
> <IfModule mod_mime_magic.c>
>     MIMEMagicFile conf/magic
> </IfModule>
> #
> # HostnameLookups: Log the names of clients or just their IP addresses
> # e.g., www.apache.org (on) or 204.62.129.132 (off).
> # The default is off because it'd be overall better for the 
> net if people
> # had to knowingly turn this feature on, since enabling it means that
> # each client request will result in AT LEAST one lookup 
> request to the
> # nameserver.
> #
> HostnameLookups Off
> #
> # EnableMMAP: Control whether memory-mapping is used to deliver
> # files (assuming that the underlying OS supports it).
> # The default is on; turn this off if you serve from NFS-mounted 
> # filesystems.  On some systems, turning it off (regardless of
> # filesystem) can improve performance; for details, please see
> # http://httpd.apache.org/docs-2.0/mod/core.html#enablemmap
> #
> #EnableMMAP off
> #
> # ErrorLog: The location of the error log file.
> # If you do not specify an ErrorLog directive within a <VirtualHost>
> # container, error messages relating to that virtual host will be
> # logged here.  If you *do* define an error logfile for a 
> <VirtualHost>
> # container, that host's errors will be logged there and not here.
> #
> ErrorLog logs/error_log
> #
> # LogLevel: Control the number of messages logged to the error_log.
> # Possible values include: debug, info, notice, warn, error, crit,
> # alert, emerg.
> #
> LogLevel warn
> #
> # The following directives define some format nicknames for use with
> # a CustomLog directive (see below).
> #
> LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" 
> \"%{User-Agent}i\"" combined
> LogFormat "%h %l %u %t \"%r\" %>s %b" common
> LogFormat "%{Referer}i -> %U" referer
> LogFormat "%{User-agent}i" agent
> #
> # The location and format of the access logfile (Common 
> Logfile Format).
> # If you do not define any access logfiles within a <VirtualHost>
> # container, they will be logged here.  Contrariwise, if you *do*
> # define per-<VirtualHost> access logfiles, transactions will be
> # logged therein and *not* in this file.
> #
> CustomLog logs/access_log common
> #
> # If you would like to have agent and referer logfiles, uncomment the
> # following directives.
> #
> #CustomLog logs/referer_log referer
> #CustomLog logs/agent_log agent
> #
> # If you prefer a single logfile with access, agent, and 
> referer information
> # (Combined Logfile Format) you can use the following directive.
> #
> #CustomLog logs/access_log combined
> #
> # ServerTokens
> # This directive configures what you return as the Server 
> HTTP response
> # Header. The default is 'Full' which sends information about 
> the OS-Type
> # and compiled in modules.
> # Set to one of:  Full | OS | Minor | Minimal | Major | Prod
> # where Full conveys the most information, and Prod the least.
> #
> ServerTokens Full
> #
> # Optionally add a line containing the server version and virtual host
> # name to server-generated pages (internal error documents, 
> FTP directory 
> # listings, mod_status and mod_info output etc., but not CGI 
> generated 
> # documents or custom error documents).
> # Set to "EMail" to also include a mailto: link to the ServerAdmin.
> # Set to one of:  On | Off | EMail
> #
> ServerSignature On
> #
> # Aliases: Add here as many aliases as you need (with no 
> limit). The format is 
> # Alias fakename realname
> #
> # Note that if you include a trailing / on fakename then the 
> server will
> # require it to be present in the URL.  So "/icons" isn't 
> aliased in this
> # example, only "/icons/".  If the fakename is 
> slash-terminated, then the 
> # realname must also be slash terminated, and if the fakename 
> omits the 
> # trailing slash, the realname must also omit it.
> #
> # We include the /icons/ alias for FancyIndexed directory 
> listings.  If you
> # do not use FancyIndexing, you may comment this out.
> #
> Alias /icons/ "/opt/app/apache/2.0.43/icons/"
> <Directory "/opt/app/apache/2.0.43/icons">
>     Options Indexes MultiViews
>     AllowOverride None
>     Order allow,deny
>     Allow from all
> </Directory>
> #
> # This should be changed to the ServerRoot/manual/.  The 
> alias provides
> # the manual, even if you choose to move your DocumentRoot.  
> You may comment
> # this out if you do not care for the documentation.
> #
> Alias /manual "/opt/app/apache/2.0.43/manual"
> <Directory "/opt/app/apache/2.0.43/manual">
>     Options Indexes FollowSymLinks MultiViews IncludesNoExec
>     AddOutputFilter Includes html
>     AllowOverride None
>     Order allow,deny
>     Allow from all
> </Directory>
> #
> # ScriptAlias: This controls which directories contain server scripts.
> # ScriptAliases are essentially the same as Aliases, except that
> # documents in the realname directory are treated as applications and
> # run by the server when requested rather than as documents 
> sent to the client.
> # The same rules about trailing "/" apply to ScriptAlias 
> directives as to
> # Alias.
> #
> ScriptAlias /cgi-bin/ "/opt/app/apache/2.0.43/cgi-bin/"
> <IfModule mod_cgid.c>
> #
> # Additional to mod_cgid.c settings, mod_cgid has Scriptsock <path>
> # for setting UNIX socket for communicating with cgid.
> #
> #Scriptsock            logs/cgisock
> </IfModule>
> #
> # "/opt/app/apache/2.0.43/cgi-bin" should be changed to 
> whatever your ScriptAliased
> # CGI directory exists, if you have that configured.
> #
> <Directory "/opt/app/apache/2.0.43/cgi-bin">
>     AllowOverride None
>     Options None
>     Order allow,deny
>     Allow from all
> </Directory>
> #
> # Redirect allows you to tell clients about documents which 
> used to exist in
> # your server's namespace, but do not anymore. This allows 
> you to tell the
> # clients where to look for the relocated document.
> # Example:
> # Redirect permanent /foo http://www.example.com/bar
> #
> # Directives controlling the display of server-generated 
> directory listings.
> #
> #
> # IndexOptions: Controls the appearance of server-generated directory
> # listings.
> #
> IndexOptions FancyIndexing VersionSort
> #
> # AddIcon* directives tell the server which icon to show for different
> # files or filename extensions.  These are only displayed for
> # FancyIndexed directories.
> #
> AddIconByEncoding (CMP,/icons/compressed.gif) x-compress x-gzip
> AddIconByType (TXT,/icons/text.gif) text/*
> AddIconByType (IMG,/icons/image2.gif) image/*
> AddIconByType (SND,/icons/sound2.gif) audio/*
> AddIconByType (VID,/icons/movie.gif) video/*
> AddIcon /icons/binary.gif .bin .exe
> AddIcon /icons/binhex.gif .hqx
> AddIcon /icons/tar.gif .tar
> AddIcon /icons/world2.gif .wrl .wrl.gz .vrml .vrm .iv
> AddIcon /icons/compressed.gif .Z .z .tgz .gz .zip
> AddIcon /icons/a.gif .ps .ai .eps
> AddIcon /icons/layout.gif .html .shtml .htm .pdf
> AddIcon /icons/text.gif .txt
> AddIcon /icons/c.gif .c
> AddIcon /icons/p.gif .pl .py
> AddIcon /icons/f.gif .for
> AddIcon /icons/dvi.gif .dvi
> AddIcon /icons/uuencoded.gif .uu
> AddIcon /icons/script.gif .conf .sh .shar .csh .ksh .tcl
> AddIcon /icons/tex.gif .tex
> AddIcon /icons/bomb.gif core
> AddIcon /icons/back.gif ..
> AddIcon /icons/hand.right.gif README
> AddIcon /icons/folder.gif ^^DIRECTORY^^
> AddIcon /icons/blank.gif ^^BLANKICON^^
> #
> # DefaultIcon is which icon to show for files which do not 
> have an icon
> # explicitly set.
> #
> DefaultIcon /icons/unknown.gif
> #
> # AddDescription allows you to place a short description 
> after a file in
> # server-generated indexes.  These are only displayed for FancyIndexed
> # directories.
> # Format: AddDescription "description" filename
> #
> #AddDescription "GZIP compressed document" .gz
> #AddDescription "tar archive" .tar
> #AddDescription "GZIP compressed tar archive" .tgz
> #
> # ReadmeName is the name of the README file the server will 
> look for by
> # default, and append to directory listings.
> #
> # HeaderName is the name of a file which should be prepended to
> # directory indexes. 
> ReadmeName README.html
> HeaderName HEADER.html
> #
> # IndexIgnore is a set of filenames which directory indexing 
> should ignore
> # and not include in the listing.  Shell-style wildcarding is 
> permitted.
> #
> IndexIgnore .??* *~ *# HEADER* README* RCS CVS *,v *,t
> #
> # AddEncoding allows you to have certain browsers (Mosaic/X 
> 2.1+) uncompress
> # information on the fly. Note: Not all browsers support this.
> # Despite the name similarity, the following Add* directives 
> have nothing
> # to do with the FancyIndexing customization directives above.
> #
> AddEncoding x-compress Z
> AddEncoding x-gzip gz tgz
> #
> # DefaultLanguage and AddLanguage allows you to specify the 
> language of 
> # a document. You can then use content negotiation to give a 
> browser a 
> # file in a language the user can understand.
> #
> # Specify a default language. This means that all data
> # going out without a specific language tag (see below) will 
> # be marked with this one. You probably do NOT want to set
> # this unless you are sure it is correct for all cases.
> #
> # * It is generally better to not mark a page as 
> # * being a certain language than marking it with the wrong
> # * language!
> #
> # DefaultLanguage nl
> #
> # Note 1: The suffix does not have to be the same as the language
> # keyword --- those with documents in Polish (whose net-standard
> # language code is pl) may wish to use "AddLanguage pl .po" to
> # avoid the ambiguity with the common suffix for perl scripts.
> #
> # Note 2: The example entries below illustrate that in some cases 
> # the two character 'Language' abbreviation is not identical to 
> # the two character 'Country' code for its country,
> # E.g. 'Danmark/dk' versus 'Danish/da'.
> #
> # Note 3: In the case of 'ltz' we violate the RFC by using a 
> three char
> # specifier. There is 'work in progress' to fix this and get
> # the reference data for rfc1766 cleaned up.
> #
> # Danish (da) - Dutch (nl) - English (en) - Estonian (et)
> # French (fr) - German (de) - Greek-Modern (el)
> # Italian (it) - Norwegian (no) - Norwegian Nynorsk (nn) - 
> Korean (ko) 
> # Portugese (pt) - Luxembourgeois* (ltz)
> # Spanish (es) - Swedish (sv) - Catalan (ca) - Czech(cz)
> # Polish (pl) - Brazilian Portuguese (pt-br) - Japanese (ja)
> # Russian (ru) - Croatian (hr)
> #
> AddLanguage da .dk
> AddLanguage nl .nl
> AddLanguage en .en
> AddLanguage et .et
> AddLanguage fr .fr
> AddLanguage de .de
> AddLanguage he .he
> AddLanguage el .el
> AddLanguage it .it
> AddLanguage ja .ja
> AddLanguage pl .po
> AddLanguage ko .ko
> AddLanguage pt .pt
> AddLanguage nn .nn
> AddLanguage no .no
> AddLanguage pt-br .pt-br
> AddLanguage ltz .ltz
> AddLanguage ca .ca
> AddLanguage es .es
> AddLanguage sv .se
> AddLanguage cz .cz
> AddLanguage ru .ru
> AddLanguage tw .tw
> AddLanguage zh-tw .tw
> AddLanguage hr .hr
> #
> # LanguagePriority allows you to give precedence to some languages
> # in case of a tie during content negotiation.
> #
> # Just list the languages in decreasing order of preference. We have
> # more or less alphabetized them here. You probably want to 
> change this.
> #
> LanguagePriority en da nl et fr de el it ja ko no pl pt pt-br 
> ltz ca es sv tw
> #
> # ForceLanguagePriority allows you to serve a result page rather than
> # MULTIPLE CHOICES (Prefer) [in case of a tie] or NOT 
> ACCEPTABLE (Fallback)
> # [in case no accepted languages matched the available variants]
> #
> ForceLanguagePriority Prefer Fallback
> #
> # Specify a default charset for all pages sent out. This is
> # always a good idea and opens the door for future 
> internationalisation
> # of your web site, should you ever want it. Specifying it as
> # a default does little harm; as the standard dictates that a page
> # is in iso-8859-1 (latin1) unless specified otherwise i.e. you
> # are merely stating the obvious. There are also some security
> # reasons in browsers, related to javascript and URL parsing
> # which encourage you to always set a default char set.
> #
> AddDefaultCharset ISO-8859-1
> #
> # Commonly used filename extensions to character sets. You probably
> # want to avoid clashes with the language extensions, unless you
> # are good at carefully testing your setup after each change.
> # See ftp://ftp.isi.edu/in-notes/iana/assignments/character-sets for
> # the official list of charset names and their respective RFCs
> #
> AddCharset ISO-8859-1  .iso8859-1  .latin1
> AddCharset ISO-8859-2  .iso8859-2  .latin2 .cen
> AddCharset ISO-8859-3  .iso8859-3  .latin3
> AddCharset ISO-8859-4  .iso8859-4  .latin4
> AddCharset ISO-8859-5  .iso8859-5  .latin5 .cyr .iso-ru
> AddCharset ISO-8859-6  .iso8859-6  .latin6 .arb
> AddCharset ISO-8859-7  .iso8859-7  .latin7 .grk
> AddCharset ISO-8859-8  .iso8859-8  .latin8 .heb
> AddCharset ISO-8859-9  .iso8859-9  .latin9 .trk
> AddCharset ISO-2022-JP .iso2022-jp .jis
> AddCharset ISO-2022-KR .iso2022-kr .kis
> AddCharset ISO-2022-CN .iso2022-cn .cis
> AddCharset Big5        .Big5       .big5
> # For russian, more than one charset is used (depends on 
> client, mostly):
> AddCharset WINDOWS-1251 .cp-1251   .win-1251
> AddCharset CP866       .cp866
> AddCharset KOI8-r      .koi8-r .koi8-ru
> AddCharset KOI8-ru     .koi8-uk .ua
> AddCharset ISO-10646-UCS-2 .ucs2
> AddCharset ISO-10646-UCS-4 .ucs4
> AddCharset UTF-8       .utf8
> # The set below does not map to a specific (iso) standard
> # but works on a fairly wide range of browsers. Note that
> # capitalization actually matters (it should not, but it
> # does for some browsers).
> #
> # See ftp://ftp.isi.edu/in-notes/iana/assignments/character-sets
> # for a list of sorts. But browsers support few.
> #
> AddCharset GB2312      .gb2312 .gb 
> AddCharset utf-7       .utf7
> AddCharset utf-8       .utf8
> AddCharset big5        .big5 .b5
> AddCharset EUC-TW      .euc-tw
> AddCharset EUC-JP      .euc-jp
> AddCharset EUC-KR      .euc-kr
> AddCharset shift_jis   .sjis
> #
> # AddType allows you to add to or override the MIME configuration
> # file mime.types for specific file types.
> #
> AddType application/x-tar .tgz
> AddType image/x-icon .ico
> #
> # AddHandler allows you to map certain file extensions to "handlers":
> # actions unrelated to filetype. These can be either built 
> into the server
> # or added with the Action directive (see below)
> #
> # To use CGI scripts outside of ScriptAliased directories:
> # (You will also need to add "ExecCGI" to the "Options" directive.)
> #
> #AddHandler cgi-script .cgi
> #
> # For files that include their own HTTP headers:
> #
> #AddHandler send-as-is asis
> #
> # For server-parsed imagemap files:
> #
> #AddHandler imap-file map
> #
> # For type maps (negotiated resources):
> # (This is enabled by default to allow the Apache "It Worked" page
> #  to be distributed in multiple languages.)
> #
> AddHandler type-map var
> #
> # Filters allow you to process content before it is sent to 
> the client.
> #
> # To parse .shtml files for server-side includes (SSI):
> # (You will also need to add "Includes" to the "Options" directive.)
> #
> #AddType text/html .shtml
> #AddOutputFilter INCLUDES .shtml
> #
> # Action lets you define media types that will execute a 
> script whenever
> # a matching file is called. This eliminates the need for repeated URL
> # pathnames for oft-used CGI file processors.
> # Format: Action media/type /cgi-script/location
> # Format: Action handler-name /cgi-script/location
> #
> #
> # Customizable error responses come in three flavors:
> # 1) plain text 2) local redirects 3) external redirects
> #
> # Some examples:
> #ErrorDocument 500 "The server made a boo boo."
> #ErrorDocument 404 /missing.html
> #ErrorDocument 404 "/cgi-bin/missing_handler.pl"
> #ErrorDocument 402 http://www.example.com/subscription_info.html
> #
> #
> # Putting this all together, we can internationalize error responses.
> #
> # We use Alias to redirect any /error/HTTP_<error>.html.var 
> response to
> # our collection of by-error message multi-language 
> collections.  We use 
> # includes to substitute the appropriate text.
> #
> # You can modify the messages' appearance without changing any of the
> # default HTTP_<error>.html.var files by adding the line:
> #
> #   Alias /error/include/ "/your/include/path/"
> #
> # which allows you to create your own set of files by 
> starting with the
> # /opt/app/apache/2.0.43/error/include/ files and copying 
> them to /your/include/path/, 
> # even on a per-VirtualHost basis.  The default include files 
> will display
> # your Apache version number and your ServerAdmin email 
> address regardless
> # of the setting of ServerSignature.
> #
> # The internationalized error documents require mod_alias, mod_include
> # and mod_negotiation.  To activate them, uncomment the 
> following 30 lines.
> #    Alias /error/ "/opt/app/apache/2.0.43/error/"
> #
> #    <Directory "/opt/app/apache/2.0.43/error">
> #        AllowOverride None
> #        Options IncludesNoExec
> #        AddOutputFilter Includes html
> #        AddHandler type-map var
> #        Order allow,deny
> #        Allow from all
> #        LanguagePriority en de es fr it nl sv
> #        ForceLanguagePriority Prefer Fallback
> #    </Directory>
> #
> #    ErrorDocument 400 /error/HTTP_BAD_REQUEST.html.var
> #    ErrorDocument 401 /error/HTTP_UNAUTHORIZED.html.var
> #    ErrorDocument 403 /error/HTTP_FORBIDDEN.html.var
> #    ErrorDocument 404 /error/HTTP_NOT_FOUND.html.var
> #    ErrorDocument 405 /error/HTTP_METHOD_NOT_ALLOWED.html.var
> #    ErrorDocument 408 /error/HTTP_REQUEST_TIME_OUT.html.var
> #    ErrorDocument 410 /error/HTTP_GONE.html.var
> #    ErrorDocument 411 /error/HTTP_LENGTH_REQUIRED.html.var
> #    ErrorDocument 412 /error/HTTP_PRECONDITION_FAILED.html.var
> #    ErrorDocument 413 /error/HTTP_REQUEST_ENTITY_TOO_LARGE.html.var
> #    ErrorDocument 414 /error/HTTP_REQUEST_URI_TOO_LARGE.html.var
> #    ErrorDocument 415 /error/HTTP_SERVICE_UNAVAILABLE.html.var
> #    ErrorDocument 500 /error/HTTP_INTERNAL_SERVER_ERROR.html.var
> #    ErrorDocument 501 /error/HTTP_NOT_IMPLEMENTED.html.var
> #    ErrorDocument 502 /error/HTTP_BAD_GATEWAY.html.var
> #    ErrorDocument 503 /error/HTTP_SERVICE_UNAVAILABLE.html.var
> #    ErrorDocument 506 /error/HTTP_VARIANT_ALSO_VARIES.html.var
> 
> #
> # The following directives modify normal HTTP response behavior to
> # handle known problems with browser implementations.
> #
> BrowserMatch "Mozilla/2" nokeepalive
> BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 
> force-response-1.0
> BrowserMatch "RealPlayer 4\.0" force-response-1.0
> BrowserMatch "Java/1\.0" force-response-1.0
> BrowserMatch "JDK/1\.0" force-response-1.0
> #
> # The following directive disables redirects on non-GET requests for
> # a directory that does not include the trailing slash.  This fixes a 
> # problem with Microsoft WebFolders which does not 
> appropriately handle 
> # redirects for folders with DAV methods.
> # Same deal with Apple's DAV filesystem.
> #
> BrowserMatch "Microsoft Data Access Internet Publishing 
> Provider" redirect-carefully
> BrowserMatch "^WebDrive" redirect-carefully
> BrowserMatch "^WebDAVFS/1.[012]" redirect-carefully
> #
> # Allow server status reports generated by mod_status,
> # with the URL of http://servername/server-status
> # Change the ".example.com" to match your domain to enable.
> #
> #<Location /server-status>
> #    SetHandler server-status
> #    Order deny,allow
> #    Deny from all
> #    Allow from .example.com
> #</Location>
> #
> # Allow remote server configuration reports, with the URL of
> #  http://servername/server-info (requires that mod_info.c be loaded).
> # Change the ".example.com" to match your domain to enable.
> #
> #<Location /server-info>
> #    SetHandler server-info
> #    Order deny,allow
> #    Deny from all
> #    Allow from .example.com
> #</Location>
> #
> # Proxy Server directives. Uncomment the following lines to
> # enable the proxy server:
> #
> #<IfModule mod_proxy.c>
> #ProxyRequests On
> #
> #<Proxy *>
> #    Order deny,allow
> #    Deny from all
> #    Allow from .example.com
> #</Proxy>
> #
> # Enable/disable the handling of HTTP/1.1 "Via:" headers.
> # ("Full" adds the server version; "Block" removes all 
> outgoing Via: headers)
> # Set to one of: Off | On | Full | Block
> #
> #ProxyVia On
> #
> # To enable the cache as well, edit and uncomment the following lines:
> # (no cacheing without CacheRoot)
> #
> #CacheRoot "/opt/app/apache/2.0.43/proxy"
> #CacheSize 5
> #CacheGcInterval 4
> #CacheMaxExpire 24
> #CacheLastModifiedFactor 0.1
> #CacheDefaultExpire 1
> #NoCache a-domain.com another-domain.edu joes.garage-sale.com
> #</IfModule>
> # End of proxy directives.
> #
> # Bring in additional module-specific configurations
> #
> <IfModule mod_ssl.c>
>     Include conf/ssl.conf
> </IfModule>
> <IfModule ssl_module>
>     Include conf/ssl.conf
> </IfModule>
> ### Section 3: Virtual Hosts
> #
> # VirtualHost: If you want to maintain multiple 
> domains/hostnames on your
> # machine you can setup VirtualHost containers for them. Most 
> configurations
> # use only name-based virtual hosts so the server doesn't 
> need to worry about
> # IP addresses. This is indicated by the asterisks in the 
> directives below.
> #
> # Please see the documentation at 
> # <URL:http://httpd.apache.org/docs-2.0/vhosts/ 
> <http://httpd.apache.org/docs-2.0/vhosts/> >
> # for further details before you try to setup virtual hosts.
> #
> # You may use the command line option '-S' to verify your virtual host
> # configuration.
> #
> # Use name-based virtual hosting.
> #
> NameVirtualHost 192.168.100.250
> #NameVirtualHost 192.168.101.250
> #
> # VirtualHost example:
> # Almost any Apache directive may go into a VirtualHost container.
> # The first VirtualHost section is used for requests without a known
> # server name.
> #
> <VirtualHost myhost.com>
>   ServerName  myhost.com
> </VirtualHost>
> <VirtualHost dev1.myhost.com>
>   ServerName  dev1.myhost.com
>   ProxyPass  /dnl  http://localhost:2086/downloads
>   ProxyPassReverse /dnl  http://localhost:2086/downloads
>   ProxyPass             /enjoy            http://localhost:9096/enjoy
>   ProxyPassReverse      /enjoy            http://localhost:9096/enjoy
> </VirtualHost>
> <VirtualHost dev2.myhost.com>
>   ServerName  dev2.myhost.com
>   ProxyPass  /dnl  http://localhost:2087/downloads
>   ProxyPassReverse /dnl  http://localhost:2087/downloads
>   ProxyPass             /enjoy            http://localhost:9097/enjoy
>   ProxyPassReverse      /enjoy            http://localhost:9097/enjoy
> </VirtualHost>
> #
> 
> Best Regards / Erik Andersson
> 
> ________________________________
> 
> Från: Boyle Owen [mailto:Owen.Boyle@swx.com]
> Skickat: ti 2004-03-30 15:26
> Till: users@httpd.apache.org
> Ämne: [SPAM: ] - RE: [users@httpd] Generating self-signed key 
> doesn't work? - Email found in subject
> 
> 
> 
> > -----Original Message-----
> > From: Erik Andersson [mailto:erik.andersson@cybercomgroup.com]
> >
> >
> > It was sent as an attachment, you must have missed it ;-)
> 
> Couple of things:
> 
> 1) I don't like:
> 
>         <VirtualHost _default_:443>
> 
> From the docs: "A _default_ vhost catches a request only if 
> there is no
> other vhost with a matching IP address and a matching port number for
> the request." So if there is, it won't work. Replace with:
> 
>         <VirtualHost *:443>
> 
> 2) also:
> 
>         ServerName myhost.come:443     
> 
> Not terribly important since an SSL VH can't be name-based, but still
> used for self-referential URLs. Drop the port number since the client
> already knows to use 443 because you typed "https" into the location
> bar. Replace with:
> 
>         ServerName real-fully-qualified-domain-name
> 
> I suspect that the real problem is that you have a plain HTTP VH
> configured which is also answering port 443. Look for all other
> occurrences of <VirtualHost *:443> or similar in the main config.
> 
> If you do post more config, please cut'n'paste it into the 
> mail. Adding
> attachments is easy for you but hard for me (I have to trust 
> you're not
> sending a virus, save them, open an editor to read them, then delete
> them later). Since I'm answering the questions, I'd prefer if you did
> the donkey-work, if you don't mind.
> 
> Rgds,
> Owen Boyle
> Disclaimer: Any disclaimer attached to this message may be ignored.
> 
> 
> >
> Diese E-mail ist eine private und persönliche Kommunikation. Sie hat
> keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Gruppe. This
> e-mail is of a private and personal nature. It is not related to the
> exchange or business activities of the SWX Group. Le présent 
> e-mail est
> un message privé et personnel, sans rapport avec l'activité 
> boursière du
> Groupe SWX.
> 
> This message is for the named person's use only. It may contain
> confidential, proprietary or legally privileged information. No
> confidentiality or privilege is waived or lost by any mistransmission.
> If you receive this message in error, please notify the 
> sender urgently
> and then immediately delete the message and any copies of it from your
> system. Please also immediately destroy any hardcopies of the message.
> You must not, directly or indirectly, use, disclose, 
> distribute, print,
> or copy any part of this message if you are not the intended 
> recipient.
> The sender's company reserves the right to monitor all e-mail
> communications through their networks. Any views expressed in this
> message are those of the individual sender, except where the message
> states otherwise and the sender is authorised to state them to be the
> views of the sender's company.
> 
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message