So with the latest update for openssl (dev-libs/openssl-0.9.8f), I’ve been seeing the following in my error_log with SSL sites: [Tue Oct 23 10:45:46 2007] [error] unusably short session_id provided (0 bytes) [Tue Oct 23 10:45:52 2007] [error] unusably short session_id provided (0 bytes) [Tue Oct 23 11:04:13 2007] [error] unusably short session_id provided (0 bytes)… Continue reading Unusable short session_id provided – Apache and openssl
So as most of you already know, PHP4 is now masked in portage. It’ will reach end of life upstream at the end of the year. You can read more about the “PHP 4 end of life announcement“. Most of you know me as a server administrator, but I’m also heavily involved with developing PHP… Continue reading PHP4 is now masked – PHP migration how to
When I moved from 1.8.7 to 2.1.1 I ran into a weird issue where sub requests were not being processed and blocks were not being performed if you were using mod_limitipconn. You can read about it here. During those days, I was running into intermittent segmentation faults with one vhost. I discovered that if I… Continue reading mod_security-2.1.2 and sub requests and segmentation faults
So tonight, had to add a local user account on one of my development servers… and here is what happened: comp ~ # passwd newuser passwd: Critical error – immediate abort hmm. I’ve never seen this before. Of course immediate reflex action is to zip to the Gentoo forums. Found out there apparently is a… Continue reading passwd is messed up?!?!
When I put this together, I thought it was going to be all about Gentoo Linux, but ran into another Windows issue today.. thought I’d share. Out of the blue today, when opening Windows Explorer, it would hang. Checking the Event Viewer I would get the following: Event Type: Error Event Source: Application Hang Event… Continue reading Another Windows Issue – howto disconnect mapped drives via command
o I finally got out of the dark age and bought some flatscreen LCD monitors and got rid of my old CRTs. I figured it was time since I grew a third nipple and I glow in the dark now. I found a great deal at Buy.com for ViewSonic VA2026w 20″ Widescreen monitors with $30… Continue reading New Monitors!
So, I updated one of my servers to Apache-2.2 and Mod_security-2.1.2, and now I’m getting intermittent segfaults, which I think might be related to uploads and mod_security. I’ve been posting a few symptoms to the mod_sec mailing list, which has to be one of the best mailing lists on the planet. And now, I’m corresponding… Continue reading Apache Segfault.. Ugh
Okay, this has been bugging me a for a bit, and need to rant. Every night on run the following in cron: /usr/bin/glsa-check -l –nocolor 'affected' Everynight, I get an email sent to me with the following: [A] means this GLSA was already applied, [U] means the system is not affected and [N] indicates that… Continue reading GLSA – What’s up with PHP?
On one of my sites, I post various PHP code snippets and examples, and mod_security’s 50_outbound.conf would always warn about PHP source code leakage. The rule was correct, and it was in fact catching PHP code being sent in the response, but I wanted to allow this for this site. I did not want to… Continue reading Howto remove a single mod_security rule from a specific vhost
So after my successful upgrade to Apache-2.2, I’m seeing these two zero length files in /tmp -rw-r—– 1 apache apache 0 Sep 23 03:52 resource.dir -rw-r—– 1 apache apache 0 Sep 23 03:52 resource.pag Not sure what these are about, and they appear nightly if I delete them. So definitely not related to Apache service… Continue reading What’s up with resource.dir and resource.pag in /tmp? – Apache-2.2 related.