{"id":361,"date":"2009-08-29T15:06:36","date_gmt":"2009-08-29T14:06:36","guid":{"rendered":"https:\/\/mschuette.name\/wp\/?p=361"},"modified":"2009-08-29T15:06:36","modified_gmt":"2009-08-29T14:06:36","slug":"apache-2-2-13","status":"publish","type":"post","link":"https:\/\/mschuette.name\/wp\/2009\/08\/apache-2-2-13\/","title":{"rendered":"Apache 2.2.13"},"content":{"rendered":"

\"ApacheI already love the new Apache httpd version 2.2.13<\/a> because its mod_ssl finally supports the TLS extension<\/a> for Server Name Indication<\/a>. In other words: it allows for every name based VirtualHost to use its own HTTPS certificate.<\/p>\n

<\/p>\n

As a demonstration you can now access this site with https<\/a>. The only drawback: Internet Explorer on WindowsXP and KDE’s Konqueror do not support the TLS extension but show a certificate error.<\/p>\n

Another small but nice feature is the new piped log syntax to launch a process without invoking the shell. On a shared server with about twenty VHosts and all of them logging slightly differently to pipes and syslog this saves a few unnecessary processes.
\nUpdate<\/strong> to give an example: My httpd.conf now contains these lines for logging<\/p>\n

\nCustomLog \"||\/usr\/bin\/logger -p local2.info -t apache\" complete\nErrorLog \"||\/usr\/bin\/logger -p local3.info -t apache\"\n<\/pre>\n
Just one note about updating: OpenSSL (and its FreeBSD port) does not use the TLS extension by default. — One has to configure it with option enable-tlsext<\/code> (for the port: change the Makefile so it contains the line \u201cEXTRACONFIGURE+= enable-camellia enable-tlsext<\/code>\u201d).<\/p>\n","protected":false},"excerpt":{"rendered":"
I already love the new Apache httpd version 2.2.13 because its mod_ssl finally supports the TLS extension for Server Name Indication. In other words: it allows for every name based VirtualHost to use its own HTTPS certificate.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3,4,7,18],"tags":[29,56,112,226,233,262,272,284],"class_list":["post-361","post","type-post","status-publish","format-standard","hentry","category-admin","category-bsd","category-english","category-web","tag-apache","tag-certificate","tag-httpd","tag-server-name-indication","tag-sni","tag-tls","tag-vhost","tag-x-509"],"_links":{"self":[{"href":"https:\/\/mschuette.name\/wp\/wp-json\/wp\/v2\/posts\/361","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mschuette.name\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mschuette.name\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mschuette.name\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mschuette.name\/wp\/wp-json\/wp\/v2\/comments?post=361"}],"version-history":[{"count":0,"href":"https:\/\/mschuette.name\/wp\/wp-json\/wp\/v2\/posts\/361\/revisions"}],"wp:attachment":[{"href":"https:\/\/mschuette.name\/wp\/wp-json\/wp\/v2\/media?parent=361"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mschuette.name\/wp\/wp-json\/wp\/v2\/categories?post=361"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mschuette.name\/wp\/wp-json\/wp\/v2\/tags?post=361"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}