What’s new in Apache HTTP Server 2.4?

Netsparker Web Application Security Scanner - the only solution that delivers automatic verification of vulnerabilities with Proof-Based Scanning™.

By Chandan Kumar on September 20, 2020

Posted in

New features in Apache HTTP Server 2.4.x

Apache 2.4.1 was released in Feb 2012 with much great enhancement and new features. The latest version as I write is 2.4.10 released in July 2014.

In this article, I will talk about some of the significant enhancement, new features included in Apache 2.4 version.

Enhancement

KeepAliveTimeout: It’s possible to specify KeepAliveTimeout in milliseconds with this version. To do so, just add KeepAliveTimeout directive in httpd.conf file.

Ex:

KeepAliveTimeout 5
#Obviously you have to change this value from 5 to something you wish.

Memory Usage: Apache 2.4 claims to use less memory than 2.2.x

Event MPM: Event MPM (Multi-Processing Module) is now fully supported. In an earlier version, it was experimental.

mod_ssl: support OCSP stapling, can share SSL session data between servers through Memcached.

mod_proxy: Location and LocationMatch block in ProxyPass directive offer the significant performance advantage.

New Modules

mod_heartmonitor, mod_lbmethod_heartbeat: This allows mod_proxy_balancer to check the number of active connections on the backend server and perform load balancing.

mod_auth_form: This will enable you to use HTML login form to restrict access. This module has a dependency on mod_session, and these make use of HTTP cookies.

mod_allowmethods: Now you can restrict HTTP methods in your Apache instance with the simple configuration.

<Location /> 
AllowMethods GET HEAD
</Location>

mod_ratelimit: if you are running a web server on low bandwidth or just want to limit the bandwidth, this module is for you. This can restrict client bandwidth to your configured location in httpd.conf file.

Ex: –

<Location /downloads> 
SetOutputFilter RATE_LIMIT 
SetEnv rate-limit 400
</Location>

Note – rate-limit is in KiB/s

mod_data: This module converts response body into an RFC2397 data URL. Data URL is useful when you want to reduce the number of connections while loading page/application. This can also be included in PHP languages.

I believe above are significant changes in Apache 2.4. You may also refer the official Apache 2.4 page for complete details.

Power Your Business

Netsparker

Netsparker uses the Proof-Based Scanning™ to automatically verify the identified vulnerabilities with proof of exploit, thus making it possible to scan thousands of web applications and generate actionable results within just hours.

Try Netsparker

Kinsta

Probably the best managed WordPress cloud platform to host small to enterprise sites. Kinsta leverages Google's low latency network infrastructure to deliver content faster. Free SSL, CDN, backup and a lot more with outstanding support. You'll love it.

Try Kinsta

Sucuri

A global CDN and cloud-based web application firewall for your website to supercharge the performance and secure from online threats. SUCURI WAF protects from OWASP top 10 vulnerabilities, brute force, DDoS, malware, and more.

Try Sucuri

What’s new in Apache HTTP Server 2.4?

Enhancement

New Modules

Thanks to our sponsors.

Power Your Business

Choosing the right product and service is essential to run an online business. Here are some of the tools and services to help your business grow.

Netsparker

Kinsta

Sucuri

What’s new in Apache HTTP Server 2.4?

Enhancement

New Modules

Thanks to our sponsors.

More Great Reading on Geekflare

How to Block .git in Apache, Nginx and Cloudflare?

How to Protect Page with Password in Apache, Nginx, WordPress, Hosting?

How to Implement ZeroSSL Certificate in Apache and Nginx?

How to Enable CORS in Apache and Nginx?

How to Implement CSP frame-ancestors in Apache, Nginx and WordPress?

How to Block Unwanted User-Agent & Referrers in Apache, Nginx and WordPress?

Power Your Business

Choosing the right product and service is essential to run an online business. Here are some of the tools and services to help your business grow.

Netsparker

Kinsta

Sucuri