You are viewing a plain text version of this content. The canonical link for it is here.
Posted to cvs@httpd.apache.org by wr...@apache.org on 2001/10/04 22:40:38 UTC
cvs commit: httpd-2.0/docs/conf ldap.conf proxy.conf ssl.conf httpd-std.conf httpd-win.conf
wrowe 01/10/04 13:40:38
Modified: docs/conf httpd-std.conf httpd-win.conf
Added: docs/conf ldap.conf proxy.conf ssl.conf
Log:
Split the significant modules into segregated module configs.
Probably should do the same with negotation/autoindex, since those
are _so_ huge, but not this afternoon on my schedule.
Revision Changes Path
1.55 +16 -59 httpd-2.0/docs/conf/httpd-std.conf
Index: httpd-std.conf
===================================================================
RCS file: /home/cvs/httpd-2.0/docs/conf/httpd-std.conf,v
retrieving revision 1.54
retrieving revision 1.55
diff -u -r1.54 -r1.55
--- httpd-std.conf 2001/10/04 20:28:34 1.54
+++ httpd-std.conf 2001/10/04 20:40:37 1.55
@@ -49,11 +49,12 @@
#
ServerRoot "@@ServerRoot@@"
-<IfModule !mpm_winnt.c>
#
# The accept serialization lock file MUST BE STORED ON A LOCAL DISK.
#
+<IfModule !mpm_winnt.c>
#LockFile logs/accept.lock
+</IfModule>
#
# ScoreBoardFile: File used to store internal server process information.
@@ -61,12 +62,13 @@
# this file will be created when you run Apache) then you *must* ensure that
# no two invocations of Apache share the same scoreboard file.
#
+<IfModule !mpm_winnt.c>
<IfModule !perchild.c>
ScoreBoardFile logs/apache_runtime_status
</IfModule>
-
</IfModule>
+
#
# PidFile: The file in which the server should record its process
# identification number when it starts.
@@ -202,6 +204,8 @@
#LoadModule file_cache_module modules/mod_file_cache.so
#LoadModule headers_module modules/mod_headers.so
#LoadModule info_module modules/mod_info.so
+#LoadModule ldap_module modules/mod_ldap.so
+#LoadModule auth_ldap_module modules/mod_auth_ldap.so
#LoadModule mime_magic_module modules/mod_mime_magic.so
#LoadModule proxy_module modules/mod_proxy.so
#LoadModule proxy_connect_module modules/proxy_connect.so
@@ -943,68 +947,21 @@
# Allow from .your_domain.com
#</Location>
-#
-# Enable the LDAP connection pool and shared memory cache. Enable the
-# LDAP cache status handler. Requires that mod_ldap be loaded. Change
-# the ".your_domain.com" to match your domain to enable.
-#
-#<IfModule util_ldap.c>
-#
-# LDAPSharedCacheSize 200000
-# LDAPCacheEntries 1024
-# LDAPCacheTTL 600
-# LDAPOpCacheEntries 1024
-# LDAPOpCacheTTL 600
-#
-# <Location /ldap-status>
-# SetHandler ldap-status
-# Order deny,allow
-# Deny from all
-# Allow from .your_domain.com
-# <IfModule mod_auth_ldap.c>
-# AuthLDAPEnabled on
-# AuthLDAPURL ldap://127.0.0.1/dc=example,dc=com?uid?one
-# AuthLDAPAuthoritative on
-# require valid-user
-# </IfModule>
-# </Location>
-#
-#</IfModule>
-
#
-# Proxy Server directives. Uncomment the following lines to
-# enable the proxy server:
+# Bring in additional module-specific configurations
#
-#<IfModule mod_proxy.c>
-#ProxyRequests On
-#
-#<Proxy *>
-# Order deny,allow
-# Deny from all
-# Allow from .your_domain.com
-#</Proxy>
+<IfModule mod_ssl.c>
+ Include ssl.conf
+</IfModule>
-#
-# Enable/disable the handling of HTTP/1.1 "Via:" headers.
-# ("Full" adds the server version; "Block" removes all outgoing Via: headers)
-# Set to one of: Off | On | Full | Block
-#
-#ProxyVia On
+<IfModule mod_proxy.c>
+ Include proxy.conf
+</IfModule>
-#
-# To enable the cache as well, edit and uncomment the following lines:
-# (no cacheing without CacheRoot)
-#
-#CacheRoot "@@ServerRoot@@/proxy"
-#CacheSize 5
-#CacheGcInterval 4
-#CacheMaxExpire 24
-#CacheLastModifiedFactor 0.1
-#CacheDefaultExpire 1
-#NoCache a_domain.com another_domain.edu joes.garage_sale.com
+<IfModule mod_ldap.c>
+ Include ldap.conf
+</IfModule>
-#</IfModule>
-# End of proxy directives.
### Section 3: Virtual Hosts
#
1.43 +7 -58 httpd-2.0/docs/conf/httpd-win.conf
Index: httpd-win.conf
===================================================================
RCS file: /home/cvs/httpd-2.0/docs/conf/httpd-win.conf,v
retrieving revision 1.42
retrieving revision 1.43
diff -u -r1.42 -r1.43
--- httpd-win.conf 2001/10/04 20:28:34 1.42
+++ httpd-win.conf 2001/10/04 20:40:37 1.43
@@ -848,67 +848,16 @@
#</Location>
#
-# Enable the LDAP connection pool and shared memory cache. Enable the
-# LDAP cache status handler. Requires that mod_ldap be loaded. Change
-# the ".your_domain.com" to match your domain to enable.
+# Bring in additional module-specific configurations
#
-#<IfModule util_ldap.c>
-#
-# LDAPSharedCacheSize 200000
-# LDAPCacheEntries 1024
-# LDAPCacheTTL 600
-# LDAPOpCacheEntries 1024
-# LDAPOpCacheTTL 600
-#
-# <Location /ldap-status>
-# SetHandler ldap-status
-# Order deny,allow
-# Deny from all
-# Allow from .your_domain.com
-# <IfModule mod_auth_ldap.c>
-# AuthLDAPEnabled on
-# AuthLDAPURL ldap://127.0.0.1/dc=example,dc=com?uid?one
-# AuthLDAPAuthoritative on
-# require valid-user
-# </IfModule>
-# </Location>
-#
-#</IfModule>
-
-#
-# Proxy Server directives. Uncomment the following lines to
-# enable the proxy server:
-#
-#<IfModule mod_proxy.c>
-#ProxyRequests On
-#
-#<Proxy *>
-# Order deny,allow
-# Deny from all
-# Allow from .your_domain.com
-#</Proxy>
-
-#
-# Enable/disable the handling of HTTP/1.1 "Via:" headers.
-# ("Full" adds the server version; "Block" removes all outgoing Via: headers)
-# Set to one of: Off | On | Full | Block
-#
-#ProxyVia On
+<IfModule mod_ssl.c>
+ Include ssl.conf
+</IfModule>
-#
-# To enable the cache as well, edit and uncomment the following lines:
-# (no cacheing without CacheRoot)
-#
-#CacheRoot "@@ServerRoot@@/proxy"
-#CacheSize 5
-#CacheGcInterval 4
-#CacheMaxExpire 24
-#CacheLastModifiedFactor 0.1
-#CacheDefaultExpire 1
-#NoCache a_domain.com another_domain.edu joes.garage_sale.com
+<IfModule mod_proxy.c>
+ Include proxy.conf
+</IfModule>
-#</IfModule>
-# End of proxy directives.
### Section 3: Virtual Hosts
#
1.1 httpd-2.0/docs/conf/ldap.conf
Index: ldap.conf
===================================================================
#
# Enable the LDAP connection pool and shared memory cache. Enable the
# LDAP cache status handler. Requires that mod_ldap be loaded. Change
# the ".your_domain.com" to match your domain to enable.
#
#<IfModule util_ldap.c>
#
# LDAPSharedCacheSize 200000
# LDAPCacheEntries 1024
# LDAPCacheTTL 600
# LDAPOpCacheEntries 1024
# LDAPOpCacheTTL 600
#
# <Location /ldap-status>
# SetHandler ldap-status
# Order deny,allow
# Deny from all
# Allow from .your_domain.com
# <IfModule mod_auth_ldap.c>
# AuthLDAPEnabled on
# AuthLDAPURL ldap://127.0.0.1/dc=example,dc=com?uid?one
# AuthLDAPAuthoritative on
# require valid-user
# </IfModule>
# </Location>
#
#</IfModule>
1.1 httpd-2.0/docs/conf/proxy.conf
Index: proxy.conf
===================================================================
#
# Proxy Server directives. Uncomment the following lines to
# enable the proxy server:
#
#<IfModule mod_proxy.c>
#ProxyRequests On
#
#<Proxy *>
# Order deny,allow
# Deny from all
# Allow from .your_domain.com
#</Proxy>
#
# Enable/disable the handling of HTTP/1.1 "Via:" headers.
# ("Full" adds the server version; "Block" removes all outgoing Via: headers)
# Set to one of: Off | On | Full | Block
#
#ProxyVia On
#
# To enable the cache as well, edit and uncomment the following lines:
# (no cacheing without CacheRoot)
#
#CacheRoot "@@ServerRoot@@/proxy"
#CacheSize 5
#CacheGcInterval 4
#CacheMaxExpire 24
#CacheLastModifiedFactor 0.1
#CacheDefaultExpire 1
#NoCache a_domain.com another_domain.edu joes.garage_sale.com
#</IfModule>
# End of proxy directives.
1.1 httpd-2.0/docs/conf/ssl.conf
<<Binary file>>
Re: cvs commit: httpd-2.0/docs/conf ldap.conf proxy.conf ssl.conf httpd-std.conf httpd-win.conf
Posted by Jeff Trawick <tr...@attglobal.net>.
Greg Stein <gs...@lyra.org> writes:
> On Thu, Oct 04, 2001 at 08:40:38PM -0000, wrowe@apache.org wrote:
> > wrowe 01/10/04 13:40:38
> >
> > Modified: docs/conf httpd-std.conf httpd-win.conf
> > Added: docs/conf ldap.conf proxy.conf ssl.conf
> > Log:
> > Split the significant modules into segregated module configs.
> >
> > Probably should do the same with negotation/autoindex, since those
> > are _so_ huge, but not this afternoon on my schedule.
>
> Woah. No way... we spent a lot of time and pain getting from three configs
> back to just one. And now we're just reversing that.
>
> The ldap.conf shouldn't even be present. That isn't part of httpd-2.0 so why
> is the config in there?
>
> proxy.conf is a "whole" 20 lines or so. Splitting that out is just a damned
> pain in the butt.
>
> Please explain... this just doesn't seem right at all. Multiple configs are
> nasty nasty nasty.
a secondary issue -- errors during "make install":
Installing configuration files
/bin/sh: ldap.conf: No such file or directory
/bin/sh: proxy.conf: No such file or directory
/bin/sh: ssl.conf: No such file or directory
chmod: /home/trawick/apacheinst/conf/ssl.conf: No such file or directory
--
Jeff Trawick | trawick@attglobal.net | PGP public key at web site:
http://www.geocities.com/SiliconValley/Park/9289/
Born in Roswell... married an alien...
Re: cvs commit: httpd-2.0/docs/conf ldap.conf proxy.conf ssl.conf httpd-std.conf httpd-win.conf
Posted by Justin Erenkrantz <je...@ebuilt.com>.
On Tue, Oct 16, 2001 at 10:55:07AM -0500, William A. Rowe, Jr. wrote:
> Hey list, wake up :-)
>
> Don't tell me that Greg and I are the only ones with opinions on this ... any
> one else have any feedback to offer? I don't want 2.0.26 to walk out without
> a final resolution. I'm happy to move whatever, wherever, based on the group's
> concensus.
>
> We don't want to play ping-pong with our testers :)
One file. =) Multiple files is silly, IMHO. -- justin
RE: cvs commit: httpd-2.0/docs/conf ldap.conf proxy.conf ssl.conf httpd-std.conf httpd-win.conf
Posted by Eric Hubert <er...@gmx.de>.
Hi folks,
I don't know whether a user's estimation is valuable, but I have to
totally agree with Joshua. I wouldn't like to look over a couple
of different configuration files.
It is also important to keep the httpd-std.conf as short as
possible. Otherwise it is only scaring new users.
Example configurations are also very useful but shouldn't mixed up
with the httpd-std.conf.
I'd appreciate it if the user could access sample configurations
from the corresponding modul's documentation pages, which show how
to use the module's directives in common contexts.
The user can quickly find the necessary information and simply
paste it in the appropriate section in httpd.conf.
>From my point of view (and that's definitly a user's view), the
user gets confused as more files are present in ./conf and only
tries to start quickly without having a look into the manual.
In the majority of cases this ends up in spending more time on
the whole task.
Just my thoughts of the thing.
Bye,
Eric
RE: cvs commit: httpd-2.0/docs/conf ldap.conf proxy.conf ssl.conf httpd-std.conf httpd-win.conf
Posted by Joshua Slive <jo...@slive.ca>.
> -----Original Message-----
> From: William A. Rowe, Jr. [mailto:wrowe@covalent.net]
>
> Hey list, wake up :-)
>
> Don't tell me that Greg and I are the only ones with opinions on
> this ... any
> one else have any feedback to offer? I don't want 2.0.26 to walk
> out without
> a final resolution. I'm happy to move whatever, wherever, based
> on the group's
> concensus.
>
Although I think multiple files would be much cleaner and easier for us, it
is probably better for the user to just have a single file.
BUT, this file must be kept managable. A new user shouldn't be overwhelmed
by a 2000 line config file with 300 different options and reams of text.
(The current config file is already almost 1000 lines.) If we really want
to give detailed and complete examples, we can add a httpd-example.conf and
keep httpd-std.conf short and sweet. Otherwise, more complicated modules
can just put a copy-pastable example in the docs.
Joshua.
Re: cvs commit: httpd-2.0/docs/conf ldap.conf proxy.conf ssl.conf
httpd-std.conf httpd-win.conf
Posted by Cliff Woolley <cl...@yahoo.com>.
On Tue, 16 Oct 2001, William A. Rowe, Jr. wrote:
> Hey list, wake up :-)
>
> Don't tell me that Greg and I are the only ones with opinions on this
> ... any one else have any feedback to offer? I don't want 2.0.26 to
> walk out without a final resolution. I'm happy to move whatever,
> wherever, based on the group's concensus.
>
> We don't want to play ping-pong with our testers :)
I tend to err on the side of the all-configs-in-one approach, personally.
--Cliff
--------------------------------------------------------------
Cliff Woolley
cliffwoolley@yahoo.com
Charlottesville, VA
Re: cvs commit: httpd-2.0/docs/conf ldap.conf proxy.conf ssl.conf httpd-std.conf httpd-win.conf
Posted by "William A. Rowe, Jr." <wr...@covalent.net>.
Hey list, wake up :-)
Don't tell me that Greg and I are the only ones with opinions on this ... any
one else have any feedback to offer? I don't want 2.0.26 to walk out without
a final resolution. I'm happy to move whatever, wherever, based on the group's
concensus.
We don't want to play ping-pong with our testers :)
Bill
From: "William A. Rowe, Jr." <wr...@covalent.net>
Sent: Friday, October 05, 2001 5:26 PM
> From: "Greg Stein" <gs...@lyra.org>
> Sent: Friday, October 05, 2001 3:27 AM
>
> > On Thu, Oct 04, 2001 at 08:40:38PM -0000, wrowe@apache.org wrote:
> > > wrowe 01/10/04 13:40:38
> > >
> > > Modified: docs/conf httpd-std.conf httpd-win.conf
> > > Added: docs/conf ldap.conf proxy.conf ssl.conf
> > > Log:
> > > Split the significant modules into segregated module configs.
> > >
> > > Probably should do the same with negotation/autoindex, since those
> > > are _so_ huge, but not this afternoon on my schedule.
> >
> > Woah. No way... we spent a lot of time and pain getting from three configs
> > back to just one. And now we're just reversing that.
> >
> > The ldap.conf shouldn't even be present. That isn't part of httpd-2.0 so why
> > is the config in there?
>
> It's there so the ldap guys can move it to httpd-ldap when that cvs repository
> is created. I would have done it myself if that repository we voted to create
> some time ago already existed.
>
> We agreed on list that ssl-std.conf would be the ssl directives, which are their
> own mess, and not everyone will build with ssl.
>
> > proxy.conf is a "whole" 20 lines or so. Splitting that out is just a damned
> > pain in the butt.
>
> I extrapolated that to proxy. Proxy is it's own beast (not a negative) that
> _does_ grow in size when configured by users. But its config doesn't usually
> interact with the rest of the -local- server. That's why I suggest splitting
> it, but would be happy pulling it back into httpd-std.conf, if that's what
> most of the list prefers. Again, the majority of sites never turn on proxy.
>
> > Please explain... this just doesn't seem right at all. Multiple configs are
> > nasty nasty nasty.
>
> This isn't srm/access all over again. The modules proposed here are either
> entirely different aspects of the server (proxy), subprojects (ldap) or
> crypto (ssl) that will not be distributed frequently.
s/distributed frequently/spread through the main server configuration/
e.g. These are good logical units that were already in one little 'knot' in the
conf file. Directives that get spread out between many vhosts, etc, would not
necessarily make good candidates.
> On that note, I can certainly live with leaving the autoindex and negotiation
> stuff in httpd.conf.
Other opinions?
Re: cvs commit: httpd-2.0/docs/conf ldap.conf proxy.conf ssl.conf httpd-std.conf httpd-win.conf
Posted by "William A. Rowe, Jr." <wr...@covalent.net>.
From: "Greg Stein" <gs...@lyra.org>
Sent: Friday, October 05, 2001 3:27 AM
> On Thu, Oct 04, 2001 at 08:40:38PM -0000, wrowe@apache.org wrote:
> > wrowe 01/10/04 13:40:38
> >
> > Modified: docs/conf httpd-std.conf httpd-win.conf
> > Added: docs/conf ldap.conf proxy.conf ssl.conf
> > Log:
> > Split the significant modules into segregated module configs.
> >
> > Probably should do the same with negotation/autoindex, since those
> > are _so_ huge, but not this afternoon on my schedule.
>
> Woah. No way... we spent a lot of time and pain getting from three configs
> back to just one. And now we're just reversing that.
>
> The ldap.conf shouldn't even be present. That isn't part of httpd-2.0 so why
> is the config in there?
It's there so the ldap guys can move it to httpd-ldap when that cvs repository
is created. I would have done it myself if that repository we voted to create
some time ago already existed.
We agreed on list that ssl-std.conf would be the ssl directives, which are their
own mess, and not everyone will build with ssl.
> proxy.conf is a "whole" 20 lines or so. Splitting that out is just a damned
> pain in the butt.
I extrapolated that to proxy. Proxy is it's own beast (not a negative) that
_does_ grow in size when configured by users. But its config doesn't usually
interact with the rest of the -local- server. That's why I suggest splitting
it, but would be happy pulling it back into httpd-std.conf, if that's what
most of the list prefers. Again, the majority of sites never turn on proxy.
> Please explain... this just doesn't seem right at all. Multiple configs are
> nasty nasty nasty.
This isn't srm/access all over again. The modules proposed here are either
entirely different aspects of the server (proxy), subprojects (ldap) or
crypto (ssl) that will not be distributed frequently.
On that note, I can certainly live with leaving the autoindex and negotiation
stuff in httpd.conf.
Bill
Re: cvs commit: httpd-2.0/docs/conf ldap.conf proxy.conf ssl.conf httpd-std.conf httpd-win.conf
Posted by Greg Stein <gs...@lyra.org>.
On Thu, Oct 04, 2001 at 08:40:38PM -0000, wrowe@apache.org wrote:
> wrowe 01/10/04 13:40:38
>
> Modified: docs/conf httpd-std.conf httpd-win.conf
> Added: docs/conf ldap.conf proxy.conf ssl.conf
> Log:
> Split the significant modules into segregated module configs.
>
> Probably should do the same with negotation/autoindex, since those
> are _so_ huge, but not this afternoon on my schedule.
Woah. No way... we spent a lot of time and pain getting from three configs
back to just one. And now we're just reversing that.
The ldap.conf shouldn't even be present. That isn't part of httpd-2.0 so why
is the config in there?
proxy.conf is a "whole" 20 lines or so. Splitting that out is just a damned
pain in the butt.
Please explain... this just doesn't seem right at all. Multiple configs are
nasty nasty nasty.
-g
--
Greg Stein, http://www.lyra.org/