Manualshelf

iTP Secure WebServer System Administrators Guide (Version 7.5+)

ManualsBrandsHP ManualsServerHP Integrity NonStop H-Series
21222324252627282930
Enhanced logging facilities
The iTP Secure WebServer provides an extended log format (ELF) that includes the access,
error, and security information of each request. ELF also provides fields for logging the Web
client type, the referring URL, and the request begin and end times. The fields are all labeled,
making the fields easy to parse and new fields easy to add. The server also supports the
Common Log Format (CLF) widely used by other Web servers.
The iTP Secure WebServer does not support the PTrace utility.
Enhanced event reporting
The iTP Secure WebServer and many related components report events to the Event
Management Service (EMS). Messages identify the iTP Secure WebServer subsystem, PATHMON
name, and the type of event that occurred.
Resource Locator Service (RLS)
This service enables you to define multiple Web servers to be used interchangeably for access
to the same URLs. The requester need not know which server handled a request.
Online-Upgrade
iTP Secure Webserver can be upgraded to a newer version with zero downtime. The
online-upgrade utility enables you to upgrade the iTP Secure WebServer without bringing the
Web server down. This is achieved by bringing one Pathmon down and upgrading webserver
objects with those of the newer version, while the other Pathmon serves the requests with older
Web server objects. This process is repeated to upgrade the other PATHMON.
Features and Standards Supported by iTP Secure WebServer
Standards compliance
The iTP Secure WebServer complies fully with:
Common Gateway Interface (CGI/1.1)
Java Servlets 2.5 and JavaServer Pages 2.1 APIs
Hypertext Transfer Protocol (HTTP/1.0 and required features of HTTP/1.1)
The Secure Hypertext Transfer Protocol (Secure HTTP)
Transport Layer Security (TLS 1.0, TLS 1.1, and TLS 1.2)
Secure Sockets Layer (SSL 3.0)
NOTE: Support for the TLS/SSL Secure Transport Protocols include support for user-specified
combinations of encryption. Webmasters can specify the security algorithms (ciphers) that they
want the iTP Secure WebServer to use.
The set of protocols that can be supported by a single instance of the iTP Secure WebServer now
consists of HTTP, TLS, and SSL.
Caching of session keys, encompassing all the secure transport protocols, including SSL 3.0,
TLS 1.0, TLS 1.1, and TLS 1.2.
Global session key caching provides increased overall SSL performance by allowing a cache
of TLS/SSL session keys to be shared amongst all instances of the httpd serverclass, thereby
maximizing the cache hits and minimizing the processor and network resources required for
establishing TLS/SSL connections to the NonStop platform.
X509 version 3.0 certificates
Features and Standards Supported by iTP Secure WebServer 27