问题[apache-http-server](computer)

我无法在 Apache 中创建可用的子域。在发帖之前，我搜索了互联网，阅读了堆栈网站上的大量类似问题，询问了 chatgpt，阅读了 Apache 文档并尝试了各种不同的配置。（当然，我httpd每次都重新启动 :)

但我陷入了困境。我可以说我在 Linux 方面经验丰富，但在 Apache 方面却是新手。此外，许多在线资源都是从 Debian 的角度编写的，这与 RedHat 有很大不同。

我的环境

我将其用作主机Manjaro操作系统。我已在 Virtual Box 中运行。这是全新安装，因此过去没有错误配置。Rocky9 minimalhttpd

我想要实现的目标

我想从我的主机访问两个不同的网页。

• idd.ph应该显示/var/www/html/index.html
• example.idd.ph应该显示/var/www/example/index.html

然而，我对两个子域名总是得到相同的结果index.html。

• idd.ph返回/var/www/example/index.html
• example.idd.ph还返回/var/www/example/index.html

如果我切换顺序VirtualHosts，我将获得/var/www/html/index.html两个子域。

我的设置

idd.ph是一个任意域，它设置/etc/hosts在我的Manjaro主机上：

192.168.0.109 idd.ph
192.168.0.109 example.idd.ph

在Rockynormal.conf上我创建了一个文件/etc/httpd/conf.d

<VirtualHost *:80>
    ServerName example.localhost
    DocumentRoot /var/www/example
</VirtualHost>

<VirtualHost *:80>
    ServerName localhost
    DocumentRoot /var/www/html
</VirtualHost>

/var/www以下是Rocky的结构：

.
├── cgi-bin
├── example
│   └── index.html
└── html
    └── index.html

我也/etc/hosts对Rocky进行了如下编辑：

127.0.0.1   localhost localhost.localdomain localhost4 localhost4.localdomain4
::1         localhost localhost.localdomain localhost6 localhost6.localdomain6
127.0.0.1   example.localhost

先感谢您。

我正在尝试将 PHPphp-fpm从 8.1 升级到 8.2。

不小心把里面的文件删除了/etc/php/8.2/fpm/conf.d

我尝试重新启动php8.2-fpmApache2 服务器，重新安装php-fpm，但这些不会再次生成。

我确实看到它们是来自 的符号链接/etc/php/8.2/mods-available/，所以我尝试手动重新创建它们。

显示phpinfo()已加载的 .ini 文件：

但是，我在服务器（Drupal 之一）上运行的站点遇到了问题。

如果我这样做drush cr，我会得到：

[预检] 类“DOMDocument”不存在

从这个问题看来，它php-xml实际上并未加载。

因此，我知道我做错了什么。

有什么建议么？

尝试端口转发，但 ISP 说它只能使用静态 IP

我试图从我的 arch Linux 设备端口转发我的 apache2 服务器，我将服务器托管在我的 ipv4：192.168.1.5 和默认端口 80 上。当我尝试端口转发我的服务器时，它不起作用，我输入了我的 ip 192.168.1.5 和“从端口到端口”我分别输入了80 80。但它不起作用，我打电话给我的ISP来解决问题，他告诉我需要购买静态IP才能使端口转发完美工作，我问他们我想用我的动态IP进行端口转发以进行测试但他告诉我，他们的网络是在 natting 上工作的，所以如果我有静态 IP，我只能进行端口转发。我只是想知道这是真的吗？我真的需要静态IP才能进行端口转发吗？据我所知，我们也可以在动态IP中做到这一点，如果我错了，请纠正我。

使用液滴，Ubuntu 18.04.6 LTS (GNU/Linux 4.15.0-209-generic x86_64)和apache2: Server version: Apache/2.4.29 (Ubuntu) Server built: 2023-03-08T17:34:33。

我有myservice.com工作，我该如何添加myservice.com/app？

我在var/www/html/主页上。我制作了目录/var/www/html/app并将文件放在那里但它没有打开，Not Found发生错误（端口 443）。

如何判断apache2有一个子页面在./app？

我已经将配置文件编辑为sites-available：

<VirtualHost xxx.xx.xxx.xxx:80>
    ServerAdmin root@localhost
    ServerName myservice.com
    ServerAlias www.myservice.com
    DocumentRoot /var/www/html/dist
    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined
    RewriteEngine on
    RewriteCond %{SERVER_NAME} =myservice.com [OR]
    RewriteCond %{SERVER_NAME} =www.myservice.com
    RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
</VirtualHost>

<VirtualHost xxx.xx.xxx.xxx:80>
    ServerName myservice.com/app
    DocumentRoot /var/www/html/app/dist
    RewriteEngine on
    RewriteCond %{SERVER_NAME} =myservice.com/app [OR]
    RewriteCond %{SERVER_NAME} =www.myservice.com/app
    RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
</VirtualHost>

我也跑过sudo chmod -R 755 /var/www/myservice.com/app。

这是apache2.conf目录部分：

<Directory />
        Options FollowSymLinks
        AllowOverride None
        Require all denied
</Directory>

<Directory /usr/share>
        AllowOverride None
        Require all granted
</Directory>

<Directory /var/www/>
        Options Indexes FollowSymLinks
        AllowOverride ALL
        Require all granted
</Directory>

从 2005 年开始，我在网上找到了解决此问题的解决方案，但多年后我发现了相同的解决方案，例如。从2017年开始，那将行不通...

请告诉我我可以提供哪些有助于解决问题的进一步信息。

我安装了这个版本的 Apache：

ApacheFriends XAMPP (Basispaket) 版本 1.6.8

• 阿帕奇 2.2.9
• MySQL 5.0.67（社区服务器）
• PHP 5.2.6 + PHP 4.4.9 + PEAR
• OpenSSL 0.9.8i

ssl 证书已启用，但如果我尝试访问 https://localhost ，我会在浏览器上收到此错误：

localhost uses an unsupported protocol.
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Unsupported protocol
The client and server don't support a common SSL protocol version or cipher suite.

Apache 错误日志：

[Fri Apr 07 13:58:23 2023] [warn] RSA server certificate CommonName (CN) **name_of_the site** does NOT match server name!?
[Fri Apr 07 13:58:24 2023] [warn] RSA server certificate CommonName (CN) **name_of_the site** does NOT match server name!?
[Fri Apr 07 13:58:24 2023] [notice] Child 9956: Child process is running
[Fri Apr 07 13:58:24 2023] [notice] Child 9956: Acquired the start mutex.
[Fri Apr 07 13:58:24 2023] [notice] Child 9956: Starting 250 worker threads.
[Fri Apr 07 13:58:24 2023] [notice] Child 9956: Starting thread to listen on port 80.
[Fri Apr 07 13:58:24 2023] [notice] Child 9956: Starting thread to listen on port 443.

这是 httpd-ssl.conf 文件：

#
# This is the Apache server configuration file providing SSL support.
# It contains the configuration directives to instruct the server how to
# serve pages over an https connection. For detailing information about these
# directives see <URL:http://httpd.apache.org/docs/2.2/mod/mod_ssl.html>
#
# Do NOT simply read the instructions in here without understanding
# what they do.  They're here only as hints or reminders.  If you are unsure
# consult the online docs. You have been warned.
#

#
# Pseudo Random Number Generator (PRNG):
# Configure one or more sources to seed the PRNG of the SSL library.
# The seed data should be of good random quality.
# WARNING! On some platforms /dev/random blocks if not enough entropy
# is available. This means you then cannot use the /dev/random device
# because it would lead to very long connection times (as long as
# it requires to make more entropy available). But usually those
# platforms additionally provide a /dev/urandom device which doesn't
# block. So, if available, use this one instead. Read the mod_ssl User
# Manual for more details.
#
#SSLRandomSeed startup file:/dev/random  512
#SSLRandomSeed startup file:/dev/urandom 512
#SSLRandomSeed connect file:/dev/random  512
#SSLRandomSeed connect file:/dev/urandom 512


#
# When we also provide SSL we have to listen to the
# standard HTTP port (see above) and to the HTTPS port
#
# Note: Configurations that use IPv6 but not IPv4-mapped addresses need two
#       Listen directives: "Listen [::]:443" and "Listen 0.0.0.0:443"
#
Listen 443

##
##  SSL Global Context
##
##  All SSL configuration in this context applies both to
##  the main server and all SSL-enabled virtual hosts.
##

#
#   Some MIME-types for downloading Certificates and CRLs
#
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl    .crl

#   Pass Phrase Dialog:
#   Configure the pass phrase gathering process.
#   The filtering dialog program (`builtin' is a internal
#   terminal dialog) has to provide the pass phrase on stdout.
SSLPassPhraseDialog  builtin

#   Inter-Process Session Cache:
#   Configure the SSL Session Cache: First the mechanism
#   to use and second the expiring timeout (in seconds).
#SSLSessionCache        shmcb:logs/ssl_scache(512000)
SSLSessionCache         dbm:logs/ssl.scache
SSLSessionCacheTimeout  300

#   Semaphore:
#   Configure the path to the mutual exclusion semaphore the
#   SSL engine uses internally for inter-process synchronization.
SSLMutex  default

##
## SSL Virtual Host Context
##

<VirtualHost _default_:443>
    #   General setup for the virtual host
    DocumentRoot "C:/xampp/htdocs/name_of_the_site"

    ServerName localhost:443
    ServerAdmin admin@localhost

    ErrorLog logs/error.log
    <IfModule log_config_module>
        CustomLog logs/access.log combined
    </IfModule>

    #   SSL Engine Switch:
    #   Enable/Disable SSL for this virtual host.
    SSLEngine on

    #   SSL Cipher Suite:
    #   List the ciphers that the client is permitted to negotiate.
    #   See the mod_ssl documentation for a complete list.
  
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
        #   Server Certificate:
    #   Point SSLCertificateFile at a PEM encoded certificate.  If
    #   the certificate is encrypted, then you will be prompted for a
    #   pass phrase.  Note that a kill -HUP will prompt again.  Keep
    #   in mind that if you have both an RSA and a DSA certificate you
    #   can configure both in parallel (to also allow the use of DSA
    #   ciphers, etc.)
    #SSLCertificateFile conf/ssl.crt/snakeoil-rsa.crt
    #SSLCertificateFile conf/ssl.crt/snakeoil-dsa.crt
    # @SSLCertificateFile conf/ssl.crt/server.crt
#Radu
SSLCertificateFile conf/ssl.crt/name_of_the_site.crt
    #   Server Private Key:
    #   If the key is not combined with the certificate, use this
    #   directive to point at the key file.  Keep in mind that if
    #   you've both a RSA and a DSA private key you can configure
    #   both in parallel (to also allow the use of DSA ciphers, etc.)
    #SSLCertificateKeyFile conf/ssl.key/snakeoil-rsa.key
    #SSLCertificateKeyFile conf/ssl.key/snakeoil-dsa.key
    # @SSLCertificateKeyFile conf/ssl.key/server.key
#Radu
SSLCertificateKeyFile conf/ssl/name_of_the_site.key

    #   Server Certificate Chain:
    #   Point SSLCertificateChainFile at a file containing the
    #   concatenation of PEM encoded CA certificates which form the
    #   certificate chain for the server certificate. Alternatively
    #   the referenced file can be the same as SSLCertificateFile
    #   when the CA certificates are directly appended to the server
    #   certificate for convinience.
    #SSLCertificateChainFile conf/ssl.crt/ca.crt
# Radu
SSLCertificateChainFile conf/ssl/name_of_the_site-chain.pem

    #   Certificate Authority (CA):
    #   Set the CA certificate verification path where to find CA
    #   certificates for client authentication or alternatively one
    #   huge file containing all of them (file must be PEM encoded)
    #   Note: Inside SSLCACertificatePath you need hash symlinks
    #         to point to the certificate files. Use the provided
    #         Makefile to update the hash symlinks after changes.
    #SSLCACertificatePath conf/ssl.crt
    #SSLCACertificateFile conf/ssl.crt/ca-bundle.crt

    #   Certificate Revocation Lists (CRL):
    #   Set the CA revocation path where to find CA CRLs for client
    #   authentication or alternatively one huge file containing all
    #   of them (file must be PEM encoded)
    #   Note: Inside SSLCARevocationPath you need hash symlinks
    #         to point to the certificate files. Use the provided
    #         Makefile to update the hash symlinks after changes.
    #SSLCARevocationPath conf/ssl.crl
    #SSLCARevocationFile conf/ssl.crl/ca-bundle.crl

    #   Client Authentication (Type):
    #   Client certificate verification type and depth.  Types are
    #   none, optional, require and optional_no_ca.  Depth is a
    #   number which specifies how deeply to verify the certificate
    #   issuer chain before deciding the certificate is not valid.
    #SSLVerifyClient require
    #SSLVerifyDepth  10

    #   Access Control:
    #   With SSLRequire you can do per-directory access control based
    #   on arbitrary complex boolean expressions containing server
    #   variable checks and other lookup directives.  The syntax is a
    #   mixture between C and Perl.  See the mod_ssl documentation
    #   for more details.
    <Location />
        #SSLRequire (    %{SSL_CIPHER} !~ m/^(EXP|NULL)/ \
        #            and %{SSL_CLIENT_S_DN_O} eq "Snake Oil, Ltd." \
        #            and %{SSL_CLIENT_S_DN_OU} in {"Staff", "CA", "Dev"} \
        #            and %{TIME_WDAY} >= 1 and %{TIME_WDAY} <= 5 \
        #            and %{TIME_HOUR} >= 8 and %{TIME_HOUR} <= 20       ) \
        #           or %{REMOTE_ADDR} =~ m/^192\.76\.162\.[0-9]+$/
    </Location>

    #   SSL Engine Options:
    #   Set various options for the SSL engine.
    #   o FakeBasicAuth:
    #     Translate the client X.509 into a Basic Authorisation.  This means that
    #     the standard Auth/DBMAuth methods can be used for access control.  The
    #     user name is the `one line' version of the client's X.509 certificate.
    #     Note that no password is obtained from the user. Every entry in the user
    #     file needs this password: `xxj31ZMTZzkVA'.
    #   o ExportCertData:
    #     This exports two additional environment variables: SSL_CLIENT_CERT and
    #     SSL_SERVER_CERT. These contain the PEM-encoded certificates of the
    #     server (always existing) and the client (only existing when client
    #     authentication is used). This can be used to import the certificates
    #     into CGI scripts.
    #   o StdEnvVars:
    #     This exports the standard SSL/TLS related `SSL_*' environment variables.
    #     Per default this exportation is switched off for performance reasons,
    #     because the extraction step is an expensive operation and is usually
    #     useless for serving static content. So one usually enables the
    #     exportation for CGI and SSI requests only.
    #   o StrictRequire:
    #     This denies access when "SSLRequireSSL" or "SSLRequire" applied even
    #     under a "Satisfy any" situation, i.e. when it applies access is denied
    #     and no other module can change it.
    #   o OptRenegotiate:
    #     This enables optimized SSL connection renegotiation handling when SSL
    #     directives are used in per-directory context.
    #SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
    <FilesMatch "\.(cgi|shtml|phtml|php|php5|php4|php3)$">
        SSLOptions +StdEnvVars
    </FilesMatch>
    <Directory "C:/xampp/apache/cgi-bin">
        SSLOptions +StdEnvVars
    </Directory>

    #   SSL Protocol Adjustments:
    #   The safe and default but still SSL/TLS standard compliant shutdown
    #   approach is that mod_ssl sends the close notify alert but doesn't wait for
    #   the close notify alert from client. When you need a different shutdown
    #   approach you can use one of the following variables:
    #   o ssl-unclean-shutdown:
    #     This forces an unclean shutdown when the connection is closed, i.e. no
    #     SSL close notify alert is send or allowed to received.  This violates
    #     the SSL/TLS standard but is needed for some brain-dead browsers. Use
    #     this when you receive I/O errors because of the standard approach where
    #     mod_ssl sends the close notify alert.
    #   o ssl-accurate-shutdown:
    #     This forces an accurate shutdown when the connection is closed, i.e. a
    #     SSL close notify alert is send and mod_ssl waits for the close notify
    #     alert of the client. This is 100% SSL/TLS standard compliant, but in
    #     practice often causes hanging connections with brain-dead browsers. Use
    #     this only for browsers where you know that their SSL implementation
    #     works correctly.
    #   Notice: Most problems of broken clients are also related to the HTTP
    #   keep-alive facility, so you usually additionally want to disable
    #   keep-alive for those clients, too. Use variable "nokeepalive" for this.
    #   Similarly, one has to force some clients to use HTTP/1.0 to workaround
    #   their broken HTTP/1.1 implementation. Use variables "downgrade-1.0" and
    #   "force-response-1.0" for this.
    <IfModule setenvif_module>
        BrowserMatch ".*MSIE.*" \
                 nokeepalive ssl-unclean-shutdown \
                 downgrade-1.0 force-response-1.0
    </IfModule>

    #   Per-Server Logging:
    #   The home of a custom SSL log file. Use this when you want a
    #   compact non-error SSL logfile on a virtual host basis.
    <IfModule log_config_module>
        CustomLog logs/ssl_request.log \
                  "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
    </IfModule>
</VirtualHost>

有没有办法将整个 apache 目录以及所有子文件夹和文件下载到我计算机上的本地目录中？

例如： http: //onj3.andrelouis.com/phonetones/

这是电话铃声的存档，但与其下载每个单独文件夹中的每个单独的 zip 文件，如果可以将整个目录下载到我计算机上的文件夹中，它会更容易。如果它可以保留文件上的原始时间戳，那也很好，但我什至不确定apache是​​否存储这种数据。

谢谢你。

我正在使用一种动态语言，它通过 FFI 包装 wldap32 dll。我正在使用 ApacheDS，我可以使用普通 LDAP 从我的客户端完美连接到它。但是，使用 LDAPS 时我无法连接到它。是的，选中该复选框以启动 LDAP（在端口 10636 上），一切似乎都很好。事实上，在 ApacheDS 中，我可以打开到 LDAPS 的连接并且它可以工作。问题出在我的客户身上。

我注意到在日志中，打印了以下内容：

[17:28:23] WARN [org.apache.directory.server.ldap.LdapProtocolHandler] - Unexpected exception forcing session to close: sending disconnect notice to client.
javax.net.ssl.SSLException: Improper close state: Status = OK HandshakeStatus = NEED_WRAP
bytesConsumed = 0 bytesProduced = 7 sequenceNumber = 1
at org.apache.mina.filter.ssl.SslHandler.closeOutbound(SslHandler.java:497)
at org.apache.mina.filter.ssl.SslFilter.initiateClosure(SslFilter.java:762)
at org.apache.mina.filter.ssl.SslFilter.filterClose(SslFilter.java:693)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callPreviousFilterClose(DefaultIoFilterChain.java:776)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1600(DefaultIoFilterChain.java:49)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.filterClose(DefaultIoFilterChain.java:1155)
at org.apache.mina.core.filterchain.IoFilterAdapter.filterClose(IoFilterAdapter.java:146)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callPreviousFilterClose(DefaultIoFilterChain.java:776)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1600(DefaultIoFilterChain.java:49)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.filterClose(DefaultIoFilterChain.java:1155)
at org.apache.mina.filter.executor.ExecutorFilter.filterClose(ExecutorFilter.java:608)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callPreviousFilterClose(DefaultIoFilterChain.java:776)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1600(DefaultIoFilterChain.java:49)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.filterClose(DefaultIoFilterChain.java:1155)
at org.apache.mina.core.filterchain.IoFilterAdapter.filterClose(IoFilterAdapter.java:146)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callPreviousFilterClose(DefaultIoFilterChain.java:776)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.fireFilterClose(DefaultIoFilterChain.java:769)
at org.apache.mina.core.session.AbstractIoSession.closeNow(AbstractIoSession.java:353)
at org.apache.mina.core.service.IoHandlerAdapter.inputClosed(IoHandlerAdapter.java:102)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$TailFilter.inputClosed(DefaultIoFilterChain.java:997)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callNextInputClosed(DefaultIoFilterChain.java:735)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1200(DefaultIoFilterChain.java:49)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.inputClosed(DefaultIoFilterChain.java:1119)
at org.apache.mina.core.filterchain.IoFilterAdapter.inputClosed(IoFilterAdapter.java:154)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callNextInputClosed(DefaultIoFilterChain.java:735)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1200(DefaultIoFilterChain.java:49)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.inputClosed(DefaultIoFilterChain.java:1119)
at org.apache.mina.core.filterchain.IoFilterAdapter.inputClosed(IoFilterAdapter.java:154)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callNextInputClosed(DefaultIoFilterChain.java:735)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1200(DefaultIoFilterChain.java:49)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.inputClosed(DefaultIoFilterChain.java:1119)
at org.apache.mina.core.filterchain.IoFilterAdapter.inputClosed(IoFilterAdapter.java:154)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callNextInputClosed(DefaultIoFilterChain.java:735)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.access$1200(DefaultIoFilterChain.java:49)
at org.apache.mina.core.filterchain.DefaultIoFilterChain$EntryImpl$1.inputClosed(DefaultIoFilterChain.java:1119)
at org.apache.mina.core.filterchain.IoFilterAdapter.inputClosed(IoFilterAdapter.java:154)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.callNextInputClosed(DefaultIoFilterChain.java:735)
at org.apache.mina.core.filterchain.DefaultIoFilterChain.fireInputClosed(DefaultIoFilterChain.java:728)
at org.apache.mina.core.polling.AbstractPollingIoProcessor.read(AbstractPollingIoProcessor.java:556)
at org.apache.mina.core.polling.AbstractPollingIoProcessor.access$1200(AbstractPollingIoProcessor.java:68)
at org.apache.mina.core.polling.AbstractPollingIoProcessor$Processor.process(AbstractPollingIoProcessor.java:1222)
at org.apache.mina.core.polling.AbstractPollingIoProcessor$Processor.process(AbstractPollingIoProcessor.java:1211)
at org.apache.mina.core.polling.AbstractPollingIoProcessor$Processor.run(AbstractPollingIoProcessor.java:683)
at org.apache.mina.util.NamePreservingRunnable.run(NamePreservingRunnable.java:64)
at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
at java.base/java.lang.Thread.run(Thread.java:829)

在我的 C 客户端上，调用函数 ldap_simple_bind_s() 时出现错误“LDAP_SERVER_DOWN (81)”

这有什么告诉任何人的吗？

提前致谢！

从apache网站，最新版本似乎是2.4.54。

我在我的 CentOS 7 上安装了 apache，当我检查版本时，它显示它安装了最新版本，但版本号是httpd-2.4.6-97.el7.centos.5.x86_64：

# yum changelog httpd
Failed to set locale, defaulting to C
Loaded plugins: changelog, fastestmirror
Loading mirror speeds from cached hostfile
 * base: centos.interhost.net.il
 * extras: centos.interhost.net.il
 * updates: centos.interhost.net.il

Listing all changelogs

==================== Installed Packages ====================
httpd-2.4.6-97.el7.centos.5.x86_64       installed
* Thu Mar 24 14:00:00 2022 CentOS Sources <[email protected]> - 2.4.6-97.el7.centos.5
- Remove index.html, add centos-noindex.tar.gz
- change vstring
- change symlink for poweredby.png
- update welcome.conf with proper aliases

* Tue Mar 22 14:00:00 2022 Lubo? Uhliarik <[email protected]> - 2.4.6-97.5
- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling
  vulnerability in Apache HTTP Server 2.4.52 and earlier

我收到报告说该站点存在安全漏洞，应该在以前版本的 Apache 中修复，所以我不明白如果我有最新版本为什么会有这个漏洞。

有人可以解释为什么会这样吗？

我正在为使用普通 Markdown 文件的 Windows 10 计算机尝试一些个人 Wiki 系统，并遇到了GRAV。这是一个使用提取和删除设置的开源 CMS，大多数具有 PHP 7 的 Web 服务器都可以运行。

因为我之前尝试过 DokuWiki，所以我已经获得了MicroApache，并且认为我只需要在那里提取 GRAV-zip。但它不会启动，也许我需要一个干净的 MicroApache 下载和配置？

C:.
+---grav
\---server
    +---conf
    +---logs
    +---modules
    \---php
        \---ext

我.\server\conf\httpd.conf编辑改用 GRAV 文件夹。

# absolute minimum configuration for DokuWiki on a Stick
# change the Listen directive if you want to use a different port

Listen 8800
ServerName microapache
ServerRoot .
DocumentRoot ./../grav
ServerAdmin [email protected]

但是我在启动 MicroApache 时得到的只是一个损坏的网页......

cd server
start "Apache server" /B mapache.exe
start http://localhost:8800/

Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete 
your request.

Please contact the server administrator at [email protected] to inform them of the 
time this error occurred, and the actions you performed just before this error.

More information about this error may be available in the server error log.

并且没有服务器可以停止

ApacheKill.exe

■ Killing all matching processes
■ Searching for processes matching "mapache.exe"
Error: A process with that name does not appear to be running

由于 GRAV 的大部分故障排除都是针对 Linux 的，因此我无法在我的 Windows 设置中遵循这些指南。

当我通过 HTTP 在我的 apache2 服务器上执行 cURL 请求时，我收到的唯一响应是Invalid Host header. 但是，当使用 HTTPS 时，一切似乎都按预期工作。我确实为每个站点启用了重写以重定向到 HTTPS。这发生在所有子域中。虽然我做了一些挖掘，但我能找到的都是 webpack 相关的问题。

我正在apache2 2.4.52运行ubuntu 22.04 LTS。

这是我主页的 conf 文件。

<VirtualHost *:80>
    # The ServerName directive sets the request scheme, hostname and port that
    # the server uses to identify itself. This is used when creating
    # redirection URLs. In the context of virtual hosts, the ServerName
    # specifies what hostname must appear in the request's Host: header to
    # match this virtual host. For the default virtual host (this file) this
    # value is not decisive as it is used as a last resort host regardless.
    # However, you must set it for any further virtual host explicitly.
    #ServerName www.example.com

    ServerAdmin webmaster@localhost
    DocumentRoot /var/www/example.com
    ServerName example.com
    ServerAlias a.example.com
    # Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
    # error, crit, alert, emerg.
    # It is also possible to configure the loglevel for particular
    # modules, e.g.
    #LogLevel info ssl:warn

    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined

    # For most configuration files from conf-available/, which are
    # enabled or disabled at a global level, it is possible to
    # include a line for only one particular virtual host. For example the
    # following line enables the CGI configuration for this host only
    # after it has been globally disabled with "a2disconf".
    #Include conf-available/serve-cgi-bin.conf
RewriteEngine on
RewriteCond %{SERVER_NAME} =example.com
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
</VirtualHost>

的输出cURL --head --verbose http://example.com

*   Trying <my-ip>:80...
* Connected to example.com (my-ip) port 80 (#0)
> HEAD / HTTP/1.1
> Host: example.com
> User-Agent: curl/7.84.0
> Accept: */*
>
* Mark bundle as not supporting multiuse
< HTTP/1.1 404 Not Found
HTTP/1.1 404 Not Found
< Connection: Keep-Alive
Connection: Keep-Alive
< Content-Length: 9
Content-Length: 9
< Content-Type: text/plain
Content-Type: text/plain
< Date: Sun, 24 Jul 2022 16:09:03 GMT
Date: Sun, 24 Jul 2022 16:09:03 GMT

<
* Connection #0 to host example.com left intact