Apache ssl-enabled vhost returns random 400 bad request

ssl https apache2 vhosts mod-ssl
10,302

I was having this problem with apache 2.2.9 and upgrading to apache 2.2.22 solved the problem for me.

I would get random 400 response codes on some of the page requests. Sometimes images, sometimes AJAX requests. Occasionally it would be the page itself that would return a 400 along with this message.

Bad Request Your browser sent a request that this server could not understand. Request header field is missing ':' separator. live

I found the following rug report for that seemed related. The bug was fixed in apache 2.2.15 : https://bugzilla.redhat.com/show_bug.cgi?id=652335

I think this bug is the cause for lots of random errors when using https: Your browser sent a request that this server could not understand Request header field is missing ':' separator.

So thought I'd try updating to the latest apache with the latest mod_ssl - and that seemed to work.

Share:
10,302
Kai
Author by

Kai

Updated on June 14, 2022

Comments

  • Kai
    Kai almost 2 years

    I've setup two local vhosts (http and self-signed https) for billing.example.com and trying them in firefox with firebug. Http vhost only purpose is redirecting all requests to https.

    Almost each time I request page from https, one or two files with associated resources (images, js, css, etc...) and sometimes php page itself return 400 bad request in firebug window, sometimes one or two files displayed as loaded for a long time. When I click on problem link in firebug, file loads as it should. Also, bad request or not loaded files changes almost each time I'm loading page.

    Any ideas?

    Server: Ubuntu 10.04, Apache/2.2.14 with mod_ssl

    Vhosts:

    Listen 80
<VirtualHost *:80>
    ServerName billing.example.com
    UseCanonicalName On
    DocumentRoot /code/site/billing
    ...
    RewriteEngine On
    RewriteRule ^/(.*)$ https://billing.example.com/$1
</VirtualHost>

Listen 443
<VirtualHost *:443>
    ServerName billing.example.com
    UseCanonicalName On
    DocumentRoot /code/site/billing
    ...
    SSLEngine On 
    SSLCertificateFile /code/site/ssl/example.crt
    SSLCertificateKeyFile /code/site/ssl/example.key
</VirtualHost>

    Rest are default settings from ubuntu apache2.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Are the ssl-cert-snakeoil.pem and ssl-cert-snakeoil.key unique per installation?
Trouble configuring apache server to proxy an SSL connection
Change ssl port of apache2 server. (ERR_SSL_PROTOCOL_ERROR)
Apache loads mod_ssl but <IfModule mod_ssl.c> ignored in my vhosts
How force that all connections to my Apache use TLSv1.1 or TLSv1.2?
Disable SSLv3 in Apache2 on a clean install of ubuntu 14.04.1 Server
How to disable TLS 1.0, TLS 1.1 on Apache
How to run a virtualhost 443 without an SSL cert?
Trying to get 100% in ssllabs.com key exchange
How to disable port 80 and enable port 443 for https in apache2 on Debian?