Skip Headers
Oracle® Fusion Middleware Administrator's Guide for Oracle HTTP Server
11g Release 1 (11.1.1)
  Go To Documentation Library
Go To Product List
Go To Table Of Contents
Go To Index


B Frequently Asked Questions

This appendix provides answers to frequently asked questions about Oracle HTTP Server.

Documentation from the Apache Software Foundation is referenced when applicable.


Readers using this guide in PDF or hard copy formats will be unable to access third-party documentation, which Oracle provides in HTML format only. To access the third-party documentation referenced in this guide, use the HTML version of this guide and click the hyperlinks.

B.1 How Do I Create Application-Specific Error Pages?

Oracle HTTP Server has a default content handler for dealing with errors. You can use the ErrorDocument directive to override the defaults.

See Also:

ErrorDocument directive in the Apache Server documentation

B.2 What Type of Virtual Hosts Are Supported for HTTP and HTTPS?

For HTTP, Oracle HTTP Server supports both name-based and IP-based virtual hosts. Name-based virtual hosts are virtual hosts that share a common listening address (IP plus port combination), but route requests based on a match between the Host header sent by the client and the ServerName directive set within the VirtualHost. IP-based virtual hosts are virtual hosts that have distinct listening addresses. IP-based virtual hosts route requests based on the address they were received on.

For HTTPS, only IP-based virtual hosts are possible with Oracle HTTP Server. This is because for name-based virtual hosts, the request must be read and inspected to determine which virtual host is used to process the request. If HTTPS is used, an SSL handshake must be performed before the request can be read. In order to perform the SSL handshake, a server certificate must be provided. In order to have a meaningful server certificate, the hostname in the certificate must match the hostname the client requested, which implies a unique server certificate per virtual host. However, because the server cannot know which virtual host to route the request to until it has read the request, and it can't properly read the request unless it knows which server certificate to provide, there is no way to make name-based virtual hosting work with HTTPS.


This is not a restriction of Oracle HTTP Server; instead, it is a restriction of the HTTPS protocol itself.

B.3 Can I Use Oracle HTTP Server As Cache?

You can use Oracle HTTP Server as a cache by using the ProxyRequests and CacheRoot directives. In general, however, Oracle recommends using Oracle Web Cache instead. Oracle Web Cache is a content-aware server accelerator and secure reverse proxy server that improves the performance, scalability, and availability of Web sites. For more details, refer to the Oracle Fusion Middleware Administrator's Guide for Oracle Web Cache.

See Also:

ProxyRequests and CacheRoot directives in the Apache Server documentation

B.4 Can I Use Different Language and Character Set Versions of Document?

Yes, you can use multiviews, a general name given to the Apache server's ability to provide language and character-specific document variants in response to a request.

See Also:

Multiviews in the Apache Server documentation

B.5 How do I Send Proxy Sensitive Requests to Oracle HTTP Server Behind a Firewall?

Use the proxy directives, and not the cache directives, to send proxy sensitive requests through firewalls.

B.6 Can I Apply Apache Security Patches to Oracle HTTP Server?

No, you cannot apply the Apache security patches to Oracle HTTP Server for the following reasons:

The latest security related fixes to Oracle HTTP Server are performed through the Oracle Critical Patch Update (CPU). For more details, refer to Oracle's Critical Patch Updates and Security Alerts Web page.


After applying a CPU, the Apache-based version may stay the same, but the vulnerability will be fixed. There are third-party security detection tools that can check the version, but do not check the vulnerability itself.

B.7 Can I Upgrade the Apache Version of Oracle HTTP Server?

No, you cannot upgrade only the Apache version inside Oracle HTTP Server. Oracle provides a newer version of Apache that Oracle HTTP Server is based on, which is part of either a patch update or the next major or minor release of Oracle Fusion Middleware.

B.8 Can I Compress Output From Oracle HTTP Server?

In general, Oracle recommends using Oracle Web Cache for this purpose. There are other freeware modules (for example, mod_gzip) that can be plugged in for this purpose, but their use is not supported. Oracle Web Cache provides efficient delivery of contents by using on-the-fly compression, dynamically learning which MIME types are compressible, and throttling responses to slower network clients. For more details, refer to the Oracle Fusion Middleware Administrator's Guide for Oracle Web Cache.

B.9 How Do I Create a Namespace That Works Through Firewalls and Clusters?

The general idea is that all servers in a distributed Web site should use a single URL namespace. Every server serves some part of that namespace, and is able to redirect or proxy requests for URLs that it does not serve to a server that is closer to that URL. For example, your namespaces could be the following:


You could initially map these name spaces to two Web servers by putting app1 on server1 and app2 on server2. The configuration for server1 might look like the following:

Redirect permanent /app2 http://server2/app2
Alias /app1 /myApps/application1
<Directory /myApps/application1>

The configuration for Server2 is complementary.

If you decide to partition the namespace by content type (HTML on server1, and JSP on server2), then you can change server configuration and move files around, but you do not have to make changes to the application itself. The resulting configuration of server1 might look like the following:

RedirectMatch permanent (.*) \.jsp$ http://server2/$1.jsp
AliasMatch ^/app(.*) \.html$ /myPages/application$1.html
<DirectoryMatch "^/myPages/application\d">

The amount of actual redirection can be minimized by configuring a hardware load balancer like F5 system BIG-IP to send requests to server1 or server2 based on the URL.

B.10 How do I Protect the Web Site from Hackers?

There are many attacks by hackers, and new attacks are invented everyday. The following are some general guidelines for securing your site. You can never be completely secure, but you can avoid being an easy target.

B.11 Do I Need to Re-register Partner Applications with the SSO Server If I Disable or Enable SSL?

Yes, if you enable or disable SSL, you have to re-register partner applications with the SSO server. When you make any changes that affect the URL (for example, changing the hostname or port, or enabling or disabling SSL), you have re-register partner applications with the SSO server because the old URL registered with the SSO server is no longer valid. You have to re-register the partner applications with the new URL.