urn:uuid:298c3bf4-98d1-5095-962f-e01f46ca992a Topic: Apache HTTPD – Ctrl blog Daniel Aleksandersen https://www.daniel.priv.no/ Copyright © 2020 Daniel Aleksandersen. https://www.ctrl.blog/assets/logo/logo-square.svg 2020-06-16T10:35:00Z weekly 10 urn:uuid:4eb60db9-d143-4556-8c55-39aa4d6df44d 2020-06-11T01:18:00Z 2020-06-16T10:35:00Z Fun with Apache HTTPD and subrequest variable inconsistencies Why does the REQUEST_URI variable return /index.html and not / when requesting a directory? Blame it on the subrequest for the DirectoryIndex file. <p>The Apache HTTP Server (HTTPD) is extremely configurable and powerful. However, its modules are a collection of disparate and inconsistent tools. In this article, I’d walk you through a recent problem I encountered when I wanted to combine two modules.</p> <p><a href="https://www.ctrl.blog/entry/httpd-subrequest-variable-inconsistencies.html">Read more …</a></p> urn:uuid:1d0c301d-3ee3-4aab-b882-a9ac8d6b0ce2 2019-09-02T13:08:00Z 2019-09-02T13:08:00Z Make changes to static content with response body substitutions Tweak the HTTP response body with regex substitutions. Apache HTTPD configuration example shows changing the URL tracking parameters in a syndication feed file. <p>Ctrl blog’s syndication news feed is called upon to handle a lot of different tasks and service integrations. It’s used to share new articles on Twitter, create the weekly newsletter, as well as handling integrations with syndication services like Apple News and Flipboard. It’s also used in a myriad of different feed readers by individual readers.</p> <p><a href="https://www.ctrl.blog/entry/mod_substitute.html">Read more …</a></p> urn:uuid:efe87cab-949c-4612-8080-8564f2a7f08d 2019-03-08T06:48:00Z 2019-03-08T06:48:00Z Don’t rely on mod_negotiation to serve pre-compressed resources Don’t rely on <code translate="no">mod_negotiation</code> to serve pre-compressed resources Apache’s module for server-driven HTTP content negotiation isn’t suited to make decisions about which pre-compressed resource to serve. <p>The Apache HTTP Server (<code>httpd</code>) can handle server-driven negotiation for a request for static files and make an informed selection from several different file variants using special file extension patterns (such as <code>.gz</code>) using <code>mod_negotiation</code>. However, this module is unsuited to handle content negotiation for pre-compressed resources.</p> <p><a href="https://www.ctrl.blog/entry/mod_negotiation.html">Read more …</a></p> urn:uuid:89963540-c87b-4e0a-8cd6-0cdc5ee67862 2018-06-11T15:48:00Z 2018-06-11T15:48:00Z Problems to expect when using the Apache mod_cache module Problems to expect when using the Apache <code translate="no">mod_cache</code> module Five implementation problems and gotchas when using Apache’s HTTP caching module. Learn how to keep your HTTPD caching proxy server from messing up. <p>The <code>mod_cache</code> module in the Apache HTTP Server (httpd) is a standard HTTP web cache that you can use to accelerate your website by caching dynamically generated pages (or pages passed through a proxy.) This can bypassing large parts of the processing chain and fulfill each request much faster than if your server had to regenerate the request each time.</p> <p><a href="https://www.ctrl.blog/entry/mod_cache.html">Read more …</a></p> urn:uuid:cc501301-6669-4bf7-b882-a37438c1aea4 2018-01-05T09:16:00Z 2018-01-05T09:16:00Z Allow OCSP stapling in Apache Web Server with SELinux policies Adjust the default SELinux policies in CentOS and Fedora to not block the Apache HTTPD Server from OCSP stapling TLS certificates. <p>Most Linux distributions with enforced Security-Enhanced Linux (SELinux) policies won’t allow the Apache Web Server to connect to an OCSP responder server by default. Here is how you adjust your SELinux policies to allow Apache to perform OCSP stapling, and what it means for your server security.</p> <p><a href="https://www.ctrl.blog/entry/ocsp-httpd-selinux.html">Read more …</a></p>