From owner-freebsd-questions@FreeBSD.ORG  Mon Aug 18 11:23:00 2014
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id AE84924F
 for <freebsd-questions@freebsd.org>; Mon, 18 Aug 2014 11:23:00 +0000 (UTC)
Received: from www81.your-server.de (www81.your-server.de [213.133.104.81])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 6CA803AB0
 for <freebsd-questions@freebsd.org>; Mon, 18 Aug 2014 11:22:59 +0000 (UTC)
Received: from [188.96.38.167] (helo=michael-think)
 by www81.your-server.de with esmtpsa (TLSv1:DHE-RSA-AES256-SHA:256)
 (Exim 4.80.1) (envelope-from <gmx@ross.cx>)
 id 1XJL1c-0005uw-Nl; Mon, 18 Aug 2014 13:22:56 +0200
Content-Type: text/plain; charset=iso-8859-15; format=flowed; delsp=yes
To: "Dale Scott" <dalescott@shaw.ca>
Subject: Re: apache24 and accf_http Accept Filter
References: <d14a9401a9b25b31f8446b4588130276@paz.bz>
 <op.xkqzmnupg7njmm@michael-think>
 <C808DF3F-6146-455F-8583-45B5A7902E56@shaw.ca>
Date: Mon, 18 Aug 2014 13:22:51 +0200
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: "Michael Ross" <gmx@ross.cx>
Message-ID: <op.xksckdo3g7njmm@michael-think>
In-Reply-To: <C808DF3F-6146-455F-8583-45B5A7902E56@shaw.ca>
User-Agent: Opera Mail/1.0 (Win32)
X-Authenticated-Sender: gmx@ross.cx
X-Virus-Scanned: Clear (ClamAV 0.98.4/19290/Mon Aug 18 07:34:39 2014)
Cc: FreeBSD Questions <freebsd-questions@freebsd.org>
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Aug 2014 11:23:00 -0000

On Sun, 17 Aug 2014 22:57:32 +0200, Dale Scott <dalescott@shaw.ca> wrote:

>> On Aug 17, 2014, at 11:46 AM, "Michael Ross" <gmx@ross.cx> wrote:
>>
>>> On Sun, 17 Aug 2014 18:44:33 +0200, Jim Pazarena <fquest@paz.bz> wrote:
>>>
>>> My upgrade to apache24 from 22 met an error about the Accept Filter.
>>> I never had to deal with this before.
>>> So research shows that I should run "kldload accf_http".
>>> Which works, and apache24 now executes.
>>> My question is, where is the correct location to place the
>>> "kldload accf_http" directive?  I'm guessing "loader.conf", but that  
>>> doesn't look right.
>>>
>>> Thanks for advice.
>>
>> You should put
>>
>>    apache24_http_accept_enable="YES"
>>
>> into /etc/rc.conf
>>
>> The apache rc script takes care of the module loading.
>
> Why is apache24_http_accept_enable required? Instructions generally  
> indicate to set both, but I only have apache24_enable in rc.conf and all  
> seems to work ok (apache24 is used to serve phpldapadmin only). Can  
> anyone explain why?
>
> Dale

It is not required.

"
      This is a filter to be placed on a socket that will be using accept()  
to
      receive incoming HTTP connections.

      It prevents the application from receiving the connected descriptor  
via
      accept() until either a full HTTP/1.0 or HTTP/1.1 HEAD or GET request  
has
      been buffered by the kernel.
"

See the man pages for accf_http and accf_data.


Michael