Overview of vFabric Web Server

vFabric Web Server is the Web server and load-balancing component of VMware vFabric Cloud Application Platform (vFabric Platform). vFabric Web Server 5.0 is based on Apache HTTP Server version 2.2.

In addition to the standard features of Apache HTTP Server, vFabric Web Server provides the following mission-critical benefits:

Subtopics

Complete Packages and Modules in vFabric Web Server 5

Supported Platforms

Complete Packages and Modules in vFabric Web Server 5.0

This section lists the complete contents of vFabric Web Server 5.0.

Note

This document describes features and functionality for vFabric Web Sever 5.0. For general information about new features in Apache HTTP Server 2.2, see the Apache Web site.

  • Core Apache HTTP 2.2 Binaries

  • Apache mod_ftp 0.9.6

  • Apache mod_fcgid 2.3.6 (a FastCGI invoker)

  • OpenSSL 0.9.8r

  • OpenLDAP 2.3.43

  • mod_jk 1.2.31

  • mod_bmx (Hyperic plug-in for monitoring support)

  • libexpat 2.0.1

  • libapr 1.4.3

  • libaprutil 1.3.11

  • zlib 1.2.3

mod_fcgid Implementation of Connector to FastCGI

The mod_fcgid distributed with vFabric Web Server 5.0 is an implementation of the connector to FastCGI applications. This module allows the user to provision FastCGI providers such as PHP or Ruby on Rails from third parties, running out-of-process from the server itself.

Many applications can be built to support FastCGI; consult your language or application documentation for details. The application providing FastCGI services is launched by mod_fcgid on the initial request, and reused for subsequent requests to that application or language environment.

For details on configuring an application, including the number of persistent processes created, see Apache Module mod_fcgid.

Open SSL 0.9.8r Supports SSLFIPS and SSLInsecureRenegotiation Directives

The mod_ssl directive SSLInsecureRenegotiation supports per-directory/per-server client certificate renegotiation with legacy clients.

Note

Users are strongly cautioned to update all clients to use only the new TLS Renegotiation mechanism.

The OpenSSL 0.9.8r build is vendor-affirmed to comply with OpenSSL FIPS Security Policy document v1.2. In order to use the FIPS 140-2 validated mode of operation (which relies on NIST-approved, but slower algorithms) for mod_ssl cryptography, simply add the new 'SSLFIPS on' directive. A log entry indicates whether FIPS mode is enabled. A warning that 512-byte temporary key generation is skipped is logged at startup. This behavior is correct (512 byte keys are disallowed for FIPS use). See Apache Module mod_ssl .