General Apache Configuration Notes

On this page:

Prefer Apache mod_deflate to Confluence's built-in gzip implementation

  1. Disable gzip in confluence. See Compressing an HTTP Response within Confluence.
  2. Enable gzip compression in Apache. For RedHat distributions this can be achieved by adding the following lines:

Ensure keepalive is enabled

Enable keepalive for recent MSIE user agents

The standard Apache SSL configuration is very conservative when it comes to MSIE and SSL. By default all keepalives are disabled when using HTTPS with MSIE. While MSIE will always be special, the issues with SSL and MSIE have been solved since Service Pack 2 for Windows XP, released over 4 years go. For anyone using an XP machine SP2 or above, it is safe to allow keepalive for MSIE 6 and above.

Remove the following lines:

Add these in their place:

RELATED TOPICS

Running Confluence behind Apache
Configuring Tomcat's URI encoding
Running Confluence Over SSL or HTTPS

Was this helpful?

Thanks for your feedback!

5 Archived comments

  1. User avatar

    Simon Lieschke

    For anyone using an XP machine below SP2, it is safe to allow keepalive for MSIE 6 and above.

    Shouldn't that be safe for anyone using an XP machine from SP2 onwards?

    Also note the BrowserMatch directives documented allow keepalive for MSIE 5 and above. Shouldn't this be for MSIE 6 and above!?

    20 Aug 2009
  2. User avatar

    Anonymous

    I think the section Enable keepalive for recent MSIE user agents has a couple of errors:

    The sentence For anyone using an XP machine below SP2, it is safe to allow keepalive for MSIE 6 and above. should read:
    For anyone using an XP machine with SP2 or above, it is safe to allow keepalive for MSIE 6 and above.

    The BrowserMatch directives should read:

    20 Aug 2009
    1. User avatar

      Roy Hartono

      changed

      15 Mar 2010
  3. User avatar

    Michael Rieger

    It seems that IE6 clients are out of the compression game anyway: Content is simply not compressed as specified when loaded by IE6. This seems to be due to some IE6 behaviour. Most examples restrict IE6 compression to text/html, e.g:

    http://minimul.com/proper-mod_deflate-configuration-with-ie-6.html

    28 Oct 2010
  4. User avatar

    Anonymous

    According to the Eric Laws blog (http://blogs.msdn.com/b/ieinternals/archive/2011/03/26/https-and-connection-close-is-your-apache-modssl-server-configuration-set-to-slow.aspx), you configuration advice has mayor impact on IE 10, IE 20 ...

    The better (more specific) match for the IE releases you want to handle separately would be this one:

    BrowserMatch ".*MSIE [2-5]\..*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0

    I'm not sure, if IE 6+ still does require special configuration. But if you want to have it, the following line will be a better match:

    BrowserMatch ".*MSIE [6-9]\..*" ssl-unclean-shutdown

    12 May 2013
Powered by Confluence and Scroll Viewport