Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
It's funny.  Laugh. Software Apache

Why I Hate the Apache Web Server 558

schon writes "Today's the last day of ApacheCon Europe; There was a hilarious presentation entitled 'Why I Hate the Apache Web Server' for anyone who has expressed frustration with the various inconsistencies and nuances of the Internet's favourite config file. And yes, it includes a comparison to Sendmail."
This discussion has been archived. No new comments can be posted.

Why I Hate the Apache Web Server

Comments Filter:
  • Whoops (Score:4, Insightful)

    by bigwavejas ( 678602 ) * on Friday July 22, 2005 @07:48PM (#13141090) Journal
    I think the subject was supposed to read, "Why I hate PDF files."
  • by Anonymous Coward on Friday July 22, 2005 @07:48PM (#13141093)
    OK, so this is a PDF file that looks like a Powerpoint presentation and it is about how much he hates Apache. *head explodes*

    Here is a html version, [samurajdata.se] I doubt it will stay cached for very long though.
  • by Soulfarmer ( 607565 ) * on Friday July 22, 2005 @07:48PM (#13141097) Homepage Journal
    Could the on-duty-editor-at-the-moment PLEASE add small note after the links IF TFA is in fact A PDF file. Please? That is NOT too much to ask, I hope. Sorely hope.

    And no, I didn't RTFA, which was in fact TFPDF.
    • by Virak ( 897071 ) on Friday July 22, 2005 @08:20PM (#13141266) Homepage
      Well, until they feel like adding a PDF warning, you should get the PDF Download [mozilla.org] extension for firefox. It's small, simple, and prevents PDF ambushes from raping your system's resources.
    • Put this in your userContent.css:

      a[href$=".pdf"]:after {
      font-size: smaller;
      content: " [pdf]";
      }

      I also find the following useful:

      :link[target="_blank"]:after, :visited[target="_blank"]:after,
      :link[target="_new"]:after, :visited[target="_new"]:after
      {
      font-size: smaller;
      content: " [new]";
      }

      a[href^="javascript:"]:after
      {
      font-size: smaller;
      content: " [shite]";
      }
    • by Penguin ( 4919 ) on Friday July 22, 2005 @08:47PM (#13141419) Homepage
      But... Why would you have your browser opening the file directly without asking you, if you don't like that behaviour?

      It's not like it's a HTML page with a lot of process consuming javascript, java-that-requires-a-lot-of-loading-of-the-java-en gine or the like. It's a totally different content type. You have every way of choosing what to do with it.

      Instead you choose to be annoyed. I don't get it.
    • by Wolf nipple chips ( 223046 ) on Friday July 22, 2005 @09:26PM (#13141575)
      For anybody willing to make comments on the content instead of the form, here it is :

      Why I Hate The Apache Web Server
      Lessons learned from IRC - Rich Bowen
      Note: Opinions expressed are those of our users, as expressed on IRC. The goal of this talk is to make people aware of things which those "outside" see as problems, but which we tend to be so used to that we don't see at all. If I get carried away, feel free to throw fruit.

      Why do I hate thee? Let me count the reasons.
      - Fragile
      - Confusing
      - Missing stuff that EVERYONE asks for

      Fragile
      - Breaks easily. Small changes have big results

      Options +Indexes Includes MultiViews
      Options Indexes Includes Multiviews

      The first of these forbids Indexes. The second one permits them. Huh?

      Disclaimer
      "But that's not supported syntax!"
      Then it should throw an error and break, not do something utterly unexpected. Unfortunately, several major Linux distros ship with this broken-but-almost-looks-right configuration, or variants thereof

      Example 2
      Vhosts ... wow, don't get me started

      # My IP address is 192.168.1.200
      NameVirtualHost *:80
      <VirtualHost 192.168.1.200:80>
      ...
      </VirtualHost>

      That vhost is silently ignored. Yeah. That's intuitive.

      Discussion
      "But the docs say not to do that!" Yes, I know. I wrote that line in the docs. It's still really irritating.

      Another ...

      Require Valid-user

      Unlike every other Apache config setting, "Require" is case sensitive, so that's not valid valid_user would be nice too. Oh, and "Require User" and "Require Group" don't work either.

      Missing (asked daily on IRC)
      - Can I set a variable and use it later?
      - Can I have an if/else syntax?
      - Can I please reload my configuration file without restarting my server?
      - How do I make ServerTokens return "Bob's Handy Dandy HTTP Server"? (Yes, this is silly, but it would sure shut a lot of people up finally.)

      What else? mod_imap: how many of you have actually used that module? How many of you who are not committers know what it does? Why is it on by default? Come on folks. Netscape added client-side image maps in 1995!

      And while we're on the topic mod_cern_meta: Who even knows what this module does? For the record, yes, I do. But I doubt any of you have ever used it.

      CONFUSING
      NumServers ServerLimit ThreadLimit ThreadsPerChild StartThreads StartServers MaxSpareThreads MinSpareServers MaxSpareServers MinSpareThreads MaxClients MaxThreadsPerChild MaxRequestsPerChild MaxRequestsPerThread ThreadStackSize
      Oh sweet God make it stop

      What's that directive called?
      RLimitMem, RLimitCPU, RLimitNProc? I have to look these up every time. Of course, since they don't seem to do what the docs say, maybe that's not a bad thing.

      Am I running out of time yet?
      - Why do I have to set up two separate vhosts for http://example.com/ [example.com] and https://example.com/ [example.com] when they're the same website?
      - Why are dynamic vhosts so darned hard?
      - Why doesn't the default configuration file match the "security tips" document?

      mod_rewrite
      I probably don't need to say anything more than just "mod_rewrite". But I will: "Voodoo" and "... flexibility of sendmail". The docs practically scream "GO AWAY!"

      RewriteMap
      Nice, but have you ever found an actual useful example? Oh, and the example script for generating db map files doesn't actually work. (Note: Paul fixed this 2 weeks ago. See httxt2dbd)

      How about this?
      If I want these two aliases to work, I have to:

      Alias /foo/bar

      • Some more (Score:4, Interesting)

        by plj ( 673710 ) on Saturday July 23, 2005 @03:57AM (#13142991)
        OK, let's see it:

        First, we have this [apache.org].

        And a quote from the default config file:
        # Specify a default charset for all pages sent out. This is
        # always a good idea and opens the door for future internationalisation
        # of your web site, should you ever want it. Specifying it as
        # a default does little harm; as the standard dictates that a page
        # is in iso-8859-1 (latin1) unless specified otherwise i.e. you
        # are merely stating the obvious. There are also some security
        # reasons in browsers, related to javascript and URL parsing
        # which encourage you to always set a default char set.
        OK. So I'll define as follows:
        AddDefaultCharset UTF-8
        Then, we have this [w3.org].

        OK, so I have some legacy documents, so I'll just define as follows in <HEAD>:
        <META http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
        And let's try it out... WTF?? It does not work! My browser thinks it is UTF-8.

        Oh wait, it actually works, if I'll define this instead of that above:
        <META http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
        Brilliant! So if the AddDefaultCharset is defined in httpd.conf, the Content-Type encoding of the actual document must be defined in lowercase, or it'll be ingnored! Now, where the f*** this is documented??! Examples at w3.org specifically uses uppercase. Apache permits uppercase in httpd.conf.

        Apache messed it up again.
        • Re:Some more (Score:3, Informative)

          by say ( 191220 )
          Uhm, that's not Apache's fault. It's your browser's.
        • From the spec you linked, we read that the HTTP charset should take prescedence over any other charset:

          To sum up, conforming user agents must observe the following priorities when determining a document's character encoding (from highest priority to lowest):

          1. An HTTP "charset" parameter in a "Content-Type" field.
          2. A META declaration with "http-equiv" set to "Content-Type" and a value set for "charset".
          3. The charset attribute set on an element that designates an external resource.

          As it

  • by Virak ( 897071 ) on Friday July 22, 2005 @07:50PM (#13141105) Homepage
    Coincidence? I think not!
  • by chrispyman ( 710460 ) on Friday July 22, 2005 @07:50PM (#13141106)
    atleast a decent Apache install can keep on chugging along even when faced with a slashdotting.
    • by jadavis ( 473492 ) on Friday July 22, 2005 @08:51PM (#13141434)
      My main complaint about Apache is that it makes it difficult to divide up users' dynamic content.

      If one user wants mod_perl, one wants php, and one wants mod_ruby, you pretty much have to have different webservers running, which means an administrative hassle and separate IPs.

      There are a couple solutions I can think of:
      (1) Change unix user permissions after it's selected a vhost, but before running any code or accessing files. Not just for CGIs, either, but modules.
      (2) Make it easier to run seperate webservers as if they are one. Basically take the administrative hassle out of running multiple webservers.

      Right now ISPs basically just offer PHP and use safe mode. But that doesn't help other languages, and it's basically a php hack.

      It would also be nice if problems with one vhost didn't prevent the entire server from reloading the config. It should give a nasty error maybe, but the webserver shouldn't shut down the working vhosts, at worst it should leave it as it was before the reload.

    • Maybe, maybe not (Score:4, Informative)

      by Sycraft-fu ( 314770 ) on Saturday July 23, 2005 @01:18AM (#13142550)
      I've seen IIS sites handle a /.ing fine, I've seen Apache dragged to the dirt. Why? Well /.ing kills sites one of two ways:

      1) Bandwidth. Whatever if being offered is large enough that the line it's on becomes highly over saturated and thus requests are processed very slowly, if at all.

      2) CPU load due to dynamic content. Sites that use databases, or scripts to create their pages or something get overwhelemed because they don't have enough CPU to support all the requests.

      The webserver itself isn't the problem. Either Apache or IIS can easily saturate a 100mb link with static content, even on a fairly old server.

      When I worked for the school paper and we were linked, it was no problem at all. The line was 10mb, and the content was fairly small (say 300-500k total) and all static. Despite being a P2 300 the server didn't even break a sweat, load average was below 1. When the department I now work at was receantly linked for a comet simulator, it killed out webserver, despite the content being about 2k and it being a fiarly fast SPARC machine. The reason was each request required computation, so our load average was about 100.

      Apache being able to survive a /.ing isn't at all impressive, it's expected. Any webserver worth it's shit should be able to had out massive amounts of data with little resource usage. It's other processing like PERL scripts, DB requests, SSL, etc that kill it, or simply overtaxing the available bandwidth.

      Bandwidth is actually fairly common, many servers are run on small lines. I have a couple servers in my closet on my 768k up line. That is plenty for normal usage, people find the sites quite zippy. However Slashdot would easily overwhelm that bandwidth.
  • - It runs acroread slowly, instead of loading in my already opened browser quickly

    - Uses huge ugly fonts

    - Has silly graphics that bring nothing to the point

    - Acroread requires two clicks to close (one for the document, one for acroread)

    - Yes, I want a pony
    • Re: (Score:2, Insightful)

      Comment removed based on user account deletion
    • Sounds like you hate acroread more than PDFs.
    • I'd assume the presentation was originally a talk given with slides. The PDF file is obviously just each individual slide in PDF format.

      Really your complaint is the presentation hasn't been translated to a text based format, not about PDF files themself. The Slide show is merely meant to complement the actual talk, and wasn't meant as the main source of information.
    • by Anonymous Coward on Friday July 22, 2005 @08:33PM (#13141350)
      NOT A FONT. ok? Repeat after me, Comic Sans Is Not a Font! In 1995 Microsoft released the font Comic Sans originally designed for comic book style talk bubbles containing informational help text. Since that time the typeface has been used in countless contexts from restaurant signage to college exams to medical information. These widespread abuses of printed type threaten to erode the very foundations upon which centuries of typographic history are built. While we recognize the font may be appropriate in a few specific instances, our position is that the only effective means of ending this epidemic of abuse is to completely ban Comic Sans. http://bancomicsans.com/home.html [bancomicsans.com]
      • What's worse is that some people actually use Comic Sans to letter comic books. Comics - yes, even self-published superhero comics - deserve more respect than that.
      • What a great site!

        There was a person who once worked on my team who used Comic Sans for *everything*, including technical documentation. Drove me nuts. Of course, this same person's favorite character in SW Episode I was - you guessed it - Jar Jar Binks. "He's so funny!" Ugh.
    • This was never meant to be an article, text-based or otherwise. It's a presentation -- the stuff that appears on a big screen behind somebody's head while they're talking. People put these on the web because they're all that's left of the talk. Unless somebody thought to record the talk and put that on that web. Speaking of really big files...
    • > It runs acroread slowly, instead of loading in my already opened browser quickly

      Reader 7.0 runs okay here. It's no speed monster, but it's noticeably faster than earlier versions of the program.

      > Uses huge ugly fonts

      Christ. This is not the format's fault! Blame the content creator for being a lousy designer. If you use nice typefaces, PDF will display them just fine. You could go for a nice looking type like Adobe Garamond Pro.

      > Has silly graphics that bring nothing to the point

      Again a
  • by sockonafish ( 228678 ) on Friday July 22, 2005 @07:54PM (#13141127)
    It's not the PDF format that sucks, it's Acrobat Reader. Use Preview or XPDF [foolabs.com].

    Complaining about PDFs is like complaining about HTTP cause you don't like IIS.
  • Pony (Score:3, Funny)

    by dg41 ( 743918 ) on Friday July 22, 2005 @07:54PM (#13141128)
    Nice touch with the pony bit.

    "Not yours."

  • Hilarious? (Score:3, Insightful)

    by Exitar ( 809068 ) on Friday July 22, 2005 @07:57PM (#13141145)
    If the presentation was Hilarious, I assume that in future Apache configuration will be easier.
    Otherwise I'd define it "sadly realistic"...
  • Comic Sans (Score:2, Funny)

    by Anonymous Coward
    aaargh
  • by joelparker ( 586428 ) <joel@school.net> on Friday July 22, 2005 @08:01PM (#13141175) Homepage
    I worked at Sun and tried to fund Apache improvements to make it smoother for my team's webmasters. No luck.

    Apache is great but it could be *significantly* easier for beginning webmasters. And for companies to fund changes.

  • by NeoThermic ( 732100 ) on Friday July 22, 2005 @08:02PM (#13141182) Homepage Journal
    Sitting in #apache on freenode is actually fun sometimes. You'll actually see these common things bought up by many people every day. The PDF actually touches on only a few of the "problems" that the conf file has.

    However, its the 2G file limit that makes me laugh. Sure, there's LFS (Configure 1.3 with CFLAGS="-D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64", enabled by default in 2.0.53 (and higher) and in 2.1), but to be really honest, there are far better ways to send large files. HTTP isn't one of them. There's FTP and there's also torrents; Both of which have the advantage of being designed for files rather than 'hypertext', which by nature is normally text...

    NeoThermic
    • by Burdell ( 228580 ) on Friday July 22, 2005 @08:17PM (#13141255)
      HTTP doesn't really have much to do with hypertext. A small percentage of the bits transferred via HTTP are text/html (think images, flash and java, and of course PDFs). In many ways, HTTP is a better file download protocol than FTP:
      • doesn't need a second port for transfers (so no firewall "fun")
      • byte ranges allow a client to only request part of the file (great for file completions)
      • easier to do per site, per directory, or per file authentication (since authentication is per request, not per "session")
      • 1) PASSV "passive" mode fixes that.
        2) Modern FTP servers support resume, not sure how.
        3) Valid point.
        • by HrothgarReborn ( 740385 ) on Friday July 22, 2005 @09:00PM (#13141480)
          PASSV does NOT fix this. Passive still uses second ports it just changes the direction of the connection. On all firewalls you have to load extra stuff to properly allow the connection to work or fully open all outbound traffic. On IP Tables there is an ftp_contrack module to load, on PIX there is a fixup protocol to load. The fact is FTP is the most broken protocol there is. There is no reason that everything cannot be handled over a single port and the security issues involving race conditions, bounce scans, clear text sign on and transfer, are unacceptable. The ONLY thing going for it is tradition.
      • Amen. I only wish HTTP had an INDEX method, where you could get a real file/directory index listing in a standard XML format suitable for use in a file manager (where permitted only of course). That, and proper support for the PUT method. It would then truly blow all other file transfer protocols out of the water. Why use FTP, NFS, WebDAV, or SMB with all their bloat, complexity, and security problems when you could just be using good old HTTP which you already know and love? If only the creators of HT
    • Come on, that "designed for files" is a too easy shot. For retrieving a specific, known resource, HTTP is pretty great, compared to FTP:

      - No login- og directory-walking-overhead, just a simple request and a simple reply
      - Just a simple tcp connection (no extra data connection and firewall hell)
      - Simple conditional requests (If-Modified-Since) and Range-requests (Range, If-Range)

      There really is nothing in the HTTP protocol that argues against HTTP as retrieving a single large resource, and where FTP would b
  • by legLess ( 127550 ) on Friday July 22, 2005 @08:08PM (#13141208) Journal
    I love Apache, but in the same way I love my wife: with some trepidation. Fast and stable, flexible and reliable, but make one little syntax error and you can lose your ass.
  • Wow... that was cool to see the Asbury College logo on the PDF slide show.

    Completely unexpected.

    My father used to chair the CS dept there...
    and I can still remember an incedent where I booted up an apple IIe in the lab and the second drive started to smoke. I left it running while I ran up three flights of stairs to tell my father.

    His first question was if I had turned it off.

    Turns out things were plugged in incorrectly.

    -Tim
  • Couple of comments (Score:3, Informative)

    by Linus Torvaalds ( 876626 ) on Friday July 22, 2005 @08:33PM (#13141349)

    The basic auth logout: yes, people have been asking for it for years, but it's HTTP itself that doesn't provide a mechanism for logging out users, it's not Apache's fault.

    The lax syntax: hell no. That sort of thing leads to security holes. If I make a typo, I'm perfectly capable of going back and fixing it, should Apache notify me immediately. But if it misinterprets a typo as meaning something I didn't want, I won't know about it until it bites me in the ass. There is nothing wrong with strict syntax for config files.

    The rest are relatively sane complaints and ones I've said myself in the past. Even if they are contained in a godawful PDF.

    • by DennyK ( 308810 ) on Friday July 22, 2005 @09:03PM (#13141496)
      The basic auth logout: yes, people have been asking for it for years, but it's HTTP itself that doesn't provide a mechanism for logging out users, it's not Apache's fault.

      This one baffled me as well. How could you have a "logout" function in a stateless protocol? Logins don't persist beyond the fulfillment of a single request. The storing of a username and password for HTTP authentication is implemented on the client side, it has nothing to do with the web server or even the protocol. Complain to Microsoft/Mozilla/Opera Software or whoever makes your browser if you don't like it.
  • by j1m+5n0w ( 749199 ) on Friday July 22, 2005 @08:49PM (#13141427) Homepage Journal
    More people who complain loudly when something doesn't work the way it should. I applaud Rich Bowen for this honest critique of Apache configuration, and I hope more people do the same for their favorite open source projects. Sometimes, that's the only way things get fixed.

    I'm also a big fan of the "Grumpy Editor's Guide" series of articles at Linux Weekly News.

  • by dfn5 ( 524972 ) on Friday July 22, 2005 @09:05PM (#13141500) Journal
    The reason I hate the Apache Web Server is that it lacks a right click properties and I can't start it with the press of a "play" button.

    • by Mattintosh ( 758112 ) on Friday July 22, 2005 @10:20PM (#13141856)
      Umm... Were you born that wrong, or did you learn your ways over time?

      Install Apache (1.3 or 2.0) on Windows sometime. If you open up Computer Management (quite possibly the best and maybe even the only good feature of Windows) and go to the Services section, you'll find Apache in the list. Select it. Now, at the top of the window, there's a button with a "play" arrow. Click it. Wow! Apache started! Next to that, there's a "stop" square. Next is a "pause" double bar. Last in line is a "restart" square/arrow combo. All of these work with Apache.

      Another poster mentioned the Apache Service Monitor tool. It's handy if you have more than one server around, since it lets you control them remotely without hassle. It too has the start/stop/restart buttons.

      And again, on Windows... Look in your Start menu. Apache creates a program group during installation that contains a Control Apache Server folder, in which you'll find some batch files... One for Stop Apache Server, one for Start Apache Server, and one for Restart Apache Server.

      There are plenty of "stupid" ways of running apachectl -whatever in Windows. But only the first one above allows you to right click and go to properties. And guess what you find in that properties window... Yeah. [Start] [Stop] [Pause] [Resume] - More buttons. But only stupid newbies would use those, right?

      (Before you reply to this assuming that I'm serious, I'd like to present you with a gift: A nice, shiny, new electric sarcasm carving knife.)
  • by Kalak ( 260968 ) on Friday July 22, 2005 @09:10PM (#13141521) Homepage Journal
    He has some great points, and if some non-fan boys would catch things, he's an apache developer. He has the right to hate some things in apache.

    I'm glad to see that someone who works with the project has some of the same frustrations I do:

    mod_imap - why does anyone still need this?
    http and https needing seperate entries in vhost
    vhosting in general

    And to those whining about PDFs would you rather to have this posted in a PPT file? Comic Sans probably means Powerpoint is at the root of this. And I'm guessing he didn't need to put the out there, so he picked a format everyone can read without resorting to PowerPoints horrible html conversion. I hate PDFs, and really hate them viewed in the browser, but that's what "save as" is for. And I'll bet you didn't have to go get a viewer just to read this. There is no pleasing the Slashbots who would rather whine about a PDF than take the criticism in stride, and with the humor it was presented in. If you have to whine about the delivery, then you're too childish to pay attention to the message. He may not have OpenOffice installed at his work (there are places who don't allow that), and this may have been the best he could do under reasonable effort.

    I'd prefer his effort go into the server than in giving us an HTML page rendered just for us. He could use that time to fix some of the annoyances! Some have better things to do than to please everyone.

    And I say we give him a pony!
    • No supprise (Score:5, Insightful)

      by Sycraft-fu ( 314770 ) on Saturday July 23, 2005 @01:34AM (#13142604)
      A good number of OSS zealots (of which a good number are found here) have the need to believe that OSS is always better, in every case, and part of that is not admitting faults. You admit faults, you admit the possibility something else could be done better.

      I got in to that some time ago over audio apps in Linux. I mentioned that one of the reasons I run Windows is pro audio work, Linux just doens't have the tools. I was told ya it does, so I asked like what? I mean hey, maybe they know something I don't, I'm always looking for new tools. No, I get pointed to the same ones I've tried. So I talk about what is wrong with them, why I don't like them. In response basically every flaw is downloayed, denied, blamed on me, or declared to be "a better way of doing things".

      Zealots, of whatever type, want to believe their product/way of life/whatever is the best there is. Thus when presented with real criticism, they are likely to either ignore it, or try and change the argument to something else.
  • by totro2 ( 758083 ) on Friday July 22, 2005 @09:25PM (#13141571)
    Pardon the obvious comment I'm compelled to spew in Apache's defense:

    Due to the Open Source nature of apache, anyone who is ready to actually improve apache (in ways that the apache people potentially don't like and won't accept into the code) can fork apache and make their own even-easier-to-configure web browser.

    Also remember that functionality comes before user friendliness. It should be no suprise there are warts on the config syntax, just be glad the damn thing works at all! If you want a real taste of ugly, go use IIS or (shudder) Weblogic. You'll run back to apache so fast your legs will fly off.

    As apache matures even more, no doubt these warts will eventually get addressed. Maybe some kind of little task force will even form with this goal in mind.
    • by Sycraft-fu ( 314770 ) on Saturday July 23, 2005 @01:44AM (#13142640)
      The attitude that so many have of "If you don't like it, fix it yorself!" That's a very harmful attitude to take, it's very abrasive and turns many people off to OSS.

      I mean you have to remember, that most of the people in the world CAN'T, even if they want to, because they aren't coders. The majority of the population, well over 90%, does not know how to program. It's stupid to say they should learn how to. The whole point of specialization of labour is that peopel dont' ahve to do everything. Coders code, other peopel use what they make.

      Then, of the few that can code, most don't have the time. It's a serious undertaking to make major changes to make major changes to a codebase, and it's really har dwhen it's not yours. You have to spend a lot of time just in learning what the fuck is going on and hwo it all works, before you can start making changes. Well, most coders can't do that, espically for every product they happen to use. There a fixed amount of time, and most of us have most of it taken up by more important things (like a paying job, family time, housework, etc).

      Then, even if you do have the ability and time, it's not always easy. I'd not the guy that gave this presentation is an Apache developer, so he IS putting his money where his mouth is. It's just pretty clear that making tha fixes isn't some little 1 hour coding job, it's some major work that needs to happen.

      So really, people who want to push OSS shouldn't take this isntantly hostile "Well fix it yourself!" attitude. Problems should be listend to, and should be fixed when possible. When it's not, the reasons should be explained why, and the person should be helped to figure out how ot work with what they have as best as possible.

      Oh, and having configured both IIS and Apache, IIS wins hands down. Easy GUI config, options do what you think they do, plenty of context sensitive documentation. That's not to say it's a better web server, and sure as hell not more secure, but when it comes to configuration, that's just no contest.
  • by swmccracken ( 106576 ) on Friday July 22, 2005 @09:49PM (#13141679) Homepage
    LOOK, you lot have missed one critical point. The guy is a committer to the apache httpd project itself. He's on the INSIDE. He knows more about apache than YOU.

    He's just pointing out some of the sillyness to his own teammates that apache has that people that are involved with and use apache get used to. (And, even if it is documented, that doesn't mean it's not silly.)

    mod_imap? Why is that still on by default, for example.

    As for the PDF complaints, THIS IS A PRESENTATION AT A CONFERENCE. What would you have perferred? A PPS file? Those that complain about the fonts? Get over yourselves.
  • My Biggest Request (Score:4, Insightful)

    by DarkHelmet ( 120004 ) * <mark.seventhcycle@net> on Friday July 22, 2005 @09:52PM (#13141697) Homepage
    Okay...

    Why can't apache's configuration file be XML compliant? It would make life sooo much easier if it were.

    It would be sooo much easier to parse and validate the configuration file if it actually conformed to SOME kind of standard.

    For that matter, why not use some limited XSL syntax in order to handle conditions?

  • by mcrbids ( 148650 ) on Friday July 22, 2005 @10:23PM (#13141881) Journal
    'runs as user NOBODY'

    Perchild MPM, which lets apache run as the user owning NN vhost has been all-but dropped. [apache.org]

    A few other guys have (kind of) picked it back up again, [metux.de] and gotten it to (mostly) work, but it doesn't scale well, yet... (barfs at 256 hosts)

    Why can't somebody get this to work? (I would, but I'm not a c coder)
  • Evil PDF (Score:3, Funny)

    by clickster ( 669168 ) on Friday July 22, 2005 @11:29PM (#13142151)
    Anyone else notice that the PDF's file size is 666 KB?
  • His later points are pretty Apache-specific, but most of the early stuff (if-else, variables, case sensitivity, and so on) are all symptoms of trying to produce an ad hoc implementation of a general coding problem-- config file parsing-- instead of doing it just once in a library.

    This problem is *everywhere*. Why are we still putting up with differently-designed config files for your webserver, your ftp server, your mailserver, your nameserver and heaven knows what else, all supported by their own pieces of custom code which, like Apache's, each have the possibility of growing up to be subtly wrong?

    I know the Windows idea of a centralised registry sucks in too many ways (inscrutable binary is no match for human-readable text files), but there's one thing it's got right: all the apps which access their configuration use a consistent API to do so. Is it an impossible dream to hope that someone gets a bunch of large free software projects to agree on what needs to go into a libconfigparse, then implements it, and provides bindings for major languages? Then we might stand a chance of avoiding weird config file problems cropping up in Apache and everywhere else, slightly differently each time.

  • As a consultant (Score:3, Interesting)

    by phaze3000 ( 204500 ) on Saturday July 23, 2005 @02:03AM (#13142711) Homepage
    As a consultant, can I take this oportunity to thank the Apache foundation for this confusing syntax, etc? Without it, I fear my earnings would be far less.

    Seriously though, for a lot of tasks these days I use the more lightweight thttpd [acme.com] daemon. Uber-simple config files, very low overhead, supports per-URL throttling out of the box. It's superb for image servers, or pretty much any application where you don't need dynamic pages - and believe me, there are still plenty of places you don't need dynamic code.

  • General remarks (Score:3, Informative)

    by rbowen ( 112459 ) on Sunday July 24, 2005 @06:08AM (#13148756) Homepage
    For the record, the talk was created in Keynote, which will export to a variety of formats. PDF seemed like the least problematic of those formats. I don't use PowerPoint.

    Thanks for all the great feedback from folks about my complaints and examples. Yes, it was more than a little tongue-in-cheek, and several of these problems have in fact already been fixed - a couple of them right there are the conference.

    And, I'm not *just* complaining. I fixed the "Require User" case sensitivity thing, and I'm rewriting the mod_rewrite docs.

BASIC is to computer programming as QWERTY is to typing. -- Seymour Papert

Working...