Server :: Apache Logging Client Hostnames Instead Of IPs ?
Mar 12, 2011
Setup a new machine with Apache, identical setup to all the other machines I got, yet this one is logging hostnames instead of IPs.
"HostnameLookups" are "Off" and LogFormat settings are identical to all the other machines:
Code:
Added a new LogFormat directive:
Code:
And told the virtual hosts to use it:
Code:
This solved the problem, though I'm at a loss as to why I've got this behavior on just this one box and none of the others. OS is Debian Lenny, same version of Apache installed via Debian package.
My understanding from Apache doc [url] is that when "HostnameLookups" are "Off, "%h" will yield IP instead of hostname..
Code:
It features support for HTTPS, virtual hosting, CGI, SSI, IPv6, easy scripting and database integration, request/response filtering, many flexible authentication schemes, and more. Homepage: [url]
does anybody have a nice tutorial about creating and installing Apache client certificate (PKCS12) ? I`m looking for some tutorials to CentOS. This what I have found on the internet for some reasons doesnt work. Or maybe somebody could write here how to do it?
But when I try to check for syntax errors tells me SSLRequire not allowed here I do not want to add SSLRequire on the main httpd.conf because I only want it for one virtual host. The rest of the virtual hosts do not need it.
My server gets ddos attacks. I dig into access logs and I saw that attacker ips doesn't have valid requests headers, like their browser application info or requested url info.I want to close those connections immediately, and if it's possible block those ips for a time period.Can I do that with Apache and iptables?I searched on the internet but couldn't find useful results. Probably couldn't search for the right words.
I have changed some settings on my DNS / DHCP config under Debian Lenny, and now when i try to ping some box it only works with long names.
For example:
Ping borsti doesnt work (can not find host) but if i use ping borsti.borsti.iss it works. I have no idea why it doesnt work because i only modified the dnssec-key (created a new key) and nothing else in te config Here is the config i used for bind: (taken from named.conf.options and named.conf.local)
I am using DNSMASQ on a Debian 5.0.6. server. I configured DNSMASQ as DHCP server, and want it to answer local DNS requests. However, I am unable to use hostnames, and am forced to use IP addresses when pinging, opening a ssh shell on a remote server, opening a remote desktop to a windows system etcedtera.
Because I use DHCP, I can not hard code the ip addresses in the hosts file. How do I configure DNSMASQ so that i can use hostnames for computers who get their IP addresses from DHCP.
I have a situation where I have two DNS servers - a BIND one for our Unix hosts and a Windows Server DNS one for the Exchange and other Windows hosts. I set up the BIND server to slave from the Windows one, which it seems to do just fine.
Windows DNS has entries like "_gc._tcp.domain.local" in it, which are needed for domain logins, etc.
However, when I try to use nslookup on those entries, it fails when querying the BIND server. When I do a domain transfer with dig, I get all the answers I expect.
This failure means that the Windows boxes can't query the BIND server for the answers they need. By default, from DHCP, it is the BIND server they get, so that's a big problem. If I manually switch their DNS to the Windows server, it works perfectly.
I'm using Ubuntu 10.04 64 bit Server Edition here. I'm running Apache as a web server. I just found that Apache is not logging to access.log and error.log anymore.
But the service is running well. Log parameter at /etc/apache2/apache2.conf seems to be OK. Here's the line :
I configured openLdap in RHEL5 on virtual achines,everything is working fine, I created a user called ldapuser,in LDAP server and i created a home directory for ldapuser in my LDAP client, now i can able to login to the both Server and client with ldapuser account....
Now here what am expecting is i want to export my server's home directory to the client, i dont want to create home directories manually in the client machine, i googled about that, and it can be done through autofs.....
what need to be done on the client and server side.
I am trying to solve a problem where Apache stats aren't displaying correctly in Munin. I've ran through quite a bit of checks and tests regarding Munin setup, but I think my issue is related to Apache, but my skill set there is lacking.
first, system info: monitored server: CentOS 5.3 2.6.18-128.1.1.el5
I am running Montavista distribution. I have an Apache server running in my machine. Now I want to know how many clients are connected to the Apache server and what are the process ids for those sessions. What is the command to do that?
I am upgrading my server and I have a lot of sites. Since I cannot take my server down for a few days, maybe a week until I manage to migrate all the sites to the new machine, I figured I could migrate them one by one. After migrating one, I would somehow tunnel the requests of that name virtual host to my internal machine. When everything is migrated, I would then switch the machines, update ip's and stuff and everything will work just fine.
However I cannot seem to find a way to do this tunneling. is this at all possible? If not, what alternatives do I have?
I have a Nis server on Suse 11 which is configured using Yast and nis clients on Suse and CentOs .All clients which is on the Suse Os is working fine. But on CentOs , users couldn't login using nis username.I have mounted home directory using nfs in fstab . I can switch to nis users homedirectory only when i am root. But nis users could'nt login on reboot.' ypcat passwd username ' is showing the output . No selinux is enabled in the client .Is there is any problem with Suse server to Centos Client in nis ??
we need to log web access of a certain set of users for analysis. We decided to setup a proxy server which just logs all the requests but does not do anything else like caching/access control etc.All users will be using a fixed set of computers and hence we can redirect their requests to the proxy. I came across Squid, but found it to be too heavy for our requirements. Is there any other proxy-server software that is good enough for what we want or is Squid the only way?
I have an issue with users logging into a server. There are multiple (5 or so) database admins that have to log into a windows 2003 server and from there log into a red hat server. Once they are in the rhel box they execute an app (let's say xclock) that gives them an xwindows session on their desktop. Currently only one person can do this at a time, but they have asked me to configure it to allow multiple users to log into the red hat box from the windows server and run an xwindow.
I've searched the forums (250 thread limit) for a fix on this, but all the questions seem unanswered or unrelated. My situation is this: I'm running Ubuntu x64 10.10 'Maverick'. I have a cablemodem connection for my Internet access. I have home network running on DD-WRT with the dreadful Linksys WRT54G series router.
My DD-WRT router is 192.168.1.1, subnet 255.255.255.0. My Linux box is 192.168.1.61, subnet 255.255.255.0.
I have a VyprVPN connection set up successfully on Linux. Mostly everything works great, speed's fine, latency is what I expect it to be. Except... I also run an SSH server to remotely admin the box at port 22, an Apache server running over SSL at port 7001, and a Transmission web client at port 7002 (only secured by basic HTTP realms auth). All of these things worked before I got the VPN working, I'm of course using NAT at the DD-WRT router.
The endresult I am looking for, is to have the security and protection of the VPN (even if it's only perceived) for everything I do on this machine -- EXCEPT on Apache, the Transmission web panel, and the SSH server, which I want to access from the outside world. I have no firewalls running or configured, not even iptables, not even the SPI firewall on DD-WRT. All connections to the aforementioned services from the outside world timeout coming in to the Linux box. They all work from inside my home network (182.168.1.0/24). In case it's needed, he's my routing:
i am learning about the ability to utilize the rsyslog ability to be a server for the logging info from other machines. i have did it successfully, and i get logs from other machines through the network, but i don't know where i can set the server for my desire act on these logs that come from the network. i essence the question is: why the server put some logs at /var/log/messages, and others not ?
I have 2 servers running CentOS 5.4 Final, one is 32 bit and the other is x86_64.When I ssh to either server, the session will freeze after a while and I cannot type anything except I close the term. This has happened before, and I thougthat was caused by iptables' rulesBut now I turned off iptables and the problem remains.I tried tcpdump on my machine(client running OpenSUSE 11.2), and it shows that after the freezing, client will still sent ack message to the server.So I think this may be caused by the server.Note that I can ping the server smoothly.Does anybody meet this problem before
I am installing Big Brother on a CentOS 5.2 running the default Apache 2.2.3. When I try to access any web page I get the following error: Forbidden You don't have permission to access /bb/ on this server. Apache/2.2.3 (CentOS) Server at fmsubbnix Port 80 So far I have:
1) Set the Directory options to FollowSymLinks 2) Verified all directory and file permissions are at 755 3) Set permissions temporarily to 777 and received same error so I am assuming the issue is in a config file somewhere 4) in hhtpd.conf verified <Files ~ "^.ht"> is correct 5) verified the "default" directory is correct (/var/www/html)
I have read and tried several ideas in posts listed on the web but to no avail and am at a loss as to what to look for next..
i have fedora 7 server running just zimbra email server. but i forgot the password.
i used a livecd ubuntu then i went to /etc/shadow i used gedit and i remove the hash between the ": :" then saved file. i reboot but i still can not logging. and it does a weird thing. i wrote root then the i hit enter when ask for the password i hit enter. then the screen clean up by it self then it ask for logging again. It does nt say that the password is wrong or any other error.
also i went to single-user mode then once i m at # i wrote passwd root then new password then i reboot but i still have the same problem. i cant logging.
Whether I use ufw or firestarter to populate my iptables, my firewall logs get written to 3 different log files:/var/log/messages/var/log/kern.log/var/log/syslogI want to keep the logging turned on, but I'd rather it not log to syslog, as it's obscuring other events in syslog that I'd like to see. I'm using rsyslog on Ubuntu. I looked around online and found one person suggesting I add this to the top of rsyslog.conf:kern.* -/var/log/kern.logkern.* ~I did that and restarted rsyslog, but it's still logging to the same 3 files.
i already setup a skolelinux 5 main server & a skolelinux workstationboth can ping eachother and resolve each other's name since i already added the workstation in the main server using lwat but i cannot log in from the workstation with the user that i had added on the main server. What should i do to make this work?
When I try to log into the webgui I am getting a file to download labled "nagios". When double-clicking the file I get the error " The file /path/to/file cannot be found. Please check the location and try again".
I'm guessing its possible but I can't seem to find any documentation on how to do this.I've tried playing with entries at the top of my syslog.conf file like:
*.* @172.20.10.1 # 1 server, works file *.* @172.20.10.1,172.20.20.11 # doesn't work *.* @172.20.10.1 172.20.20.11 # nor this *.* @172.20.10.1,@172.20.20.11 # nor this *.* @172.20.10.1 @172.20.20.11 # nor this
I have RHEL4 server. my root is able to login from CUI mode but not able to login from GUI mode. normal user is able to login from GUI mode and we go to root through su command but directly root is not able to login from GUI
