spdy on cpanel with apache 2.4.*

badwolfff
badwolfff used Ask the Experts™
on
Does anyone have any advice for using SPDY with CPanel on an Apache 2.4.*?

thanks
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Dave BaldwinFixer of Problems
Most Valuable Expert 2014

Commented:
We might if we knew what the problem was.

Author

Commented:
Ah sorry... How to install it
Dave BaldwinFixer of Problems
Most Valuable Expert 2014

Commented:
Here's some info: https://developers.google.com/speed/spdy/mod_spdy/  Note that there are comments that Google Chrome will only support the most recent version.  I'm not sure why but I have a SPDY failure at least once a day with Chrome connecting to Facebook.
Ensure you’re charging the right price for your IT

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Author

Commented:
Hi,
actually I had found it myself on google before I opened this thread. The thing I don't understand is, is it compatible with Apache 2.4.6 and above?
thanks
Dave BaldwinFixer of Problems
Most Valuable Expert 2014

Commented:
Here's the news you didn't want... https://mwent.info/blog/apache-2-4-spdy-3-1/   If Google is fazing out SPDY in favor of HTTP/2, you might not want to spend much time trying to install it.

Author

Commented:
Would you or someone else to  be so kind as to convert the following code into Centos 7 compatible? It js a workaround I found from a link on the site you mentioned but it is for Ubuntu

https://plainsightro.wordpress.com/2014/09/28/mod_spdy-with-ubuntu-14-04-x64-and-apache-2-4/


$ cd /tmp
$ sudo apt-get -y install git g++ libapr1-dev libaprutil1-dev curl patch binutils make devscripts
$ git clone https://github.com/eousphoros/mod-spdy.git
$ cd mod-spdy/src
$ ./build_modssl_with_npn.sh
$ chmod +x ./build/gyp_chromium
$ make BUILDTYPE=Release
$ service apache2 stop
$ cd /usr/lib/apache2/modules
$ mv mod_ssl.so mod_ssl.so.bak
$ cd /tmp/mod-spdy/src
$ sudo cp mod_ssl.so /usr/lib/apache2/modules
$ service apache2 start
$ sudo a2enmod ssl
$ service apache2 restart
$ sudo cp out/Release/libmod_spdy.so /usr/lib/apache2/modules/mod_spdy.so
$ echo "LoadModule spdy_module /usr/lib/apache2/modules/mod_spdy.so" | sudo tee /etc/apache2/mods-available/spdy.load
$ echo "SpdyEnabled on" | sudo tee /etc/apache2/mods-available/spdy.conf
$ sudo a2enmod spdy
$ service apache2 restart



Thanks
Dave BaldwinFixer of Problems
Most Valuable Expert 2014

Commented:
There is a link to a CentOS rpm in the first link I gave you.

Author

Commented:
Hi,

the first link you gave me is for Centos RPM but it does not say it if will work for Apache 2.4+
I have apache 2.4.16  and there it says

System Requirements

    Apache 2.2 (≥2.2.4)
    mod_ssl enabled
I asked you earlier if this also meant 2.4+ or this is an old tutorial from when the old Apache was around and not modified since.

The second link you gave me is what I am trying to follow in the meantime: https://mwent.info/blog/apache-2-4-spdy-3-1/. I'm just doing a dry run, convertnig the apt-get commands to yum and seeing if it works (should I not try this for some reason? - remember I use cPanel). On of the first steps on page 2 of the article asks to check the openssl version, which in my case is:
OpenSSL 1.0.1e-fips

Now the problem number 1 is I can't find the tarball for this specific version anywhere. Do you know where I might find it?

Number 2: More worrying still is that I constantly find articles on the internet that say that this version still has the heartbleed vulnerability. I am worried becuase I have auto-updates on in cPanel and this is the latest version they have bundled and if indeed it is insecure then there is a serious problem out there.

Number 3: Should I use the google tutorial in your first link even on apache 2.4.16 or should I go with the second link converting the commands to centos and finding a tarball for this openssl version?

Number 4. Should I try to update the openssl version on my cpanel by force? Will it/could it cause any problems?

thanks
Dave BaldwinFixer of Problems
Most Valuable Expert 2014

Commented:
I personally think that you should wait at least 6 months or a year and try this again then when things have settled down.  One of the articles I read said that Apache does not officially support SPDY at this time.

Do you already have an SSL/TLS certificate installed on your site?  SPDY and probably HTTP/2 only work over secure 'https' connections.

Author

Commented:
All my sites have ssl certificates. Google is giving SEO priority to this with above those without even with the same keywords.
Dave BaldwinFixer of Problems
Most Valuable Expert 2014

Commented:
You have exhausted my limited knowledge.  Click on "Request Attention" to get other to look at your question.

Author

Commented:
ok thanks

Author

Commented:
Is it true that Apache 2.4.17 is out with HTTP/2 - was this what you were talking about when you said it would be out in the near future?
https://www.apachelounge.com/viewtopic.php?p=31838
Is this true?
Is this a stable version?
I have been trying to install SPDY on my Centos 7 server during the last week with lots of problems.
This would mean I could leave SPDY alone and go for HTTP/2

Please confirm and advise
Dave BaldwinFixer of Problems
Most Valuable Expert 2014

Commented:
That's one of the results.  Note that those versions on ApacheLounge are all for Windows.  See if there are any announcements on the CentOS site about it.  It would be much better if you can get a supported CentOS version with HTTP/2.
Commented:
Since this is a Cpanel install, I suggest you wait until the new version of Apache is pushed and you can install it from WHM.
It's the safest option, albeit not instant.

HTH,
Dan

Author

Commented:
Hallelujah! It is out for WHM!
Installation in progress :)
Dave BaldwinFixer of Problems
Most Valuable Expert 2014

Commented:
Good!  Let us know how it goes.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial