Apache Kerberos not Authenticating from Windows Client - apache

With a number of great websites for reference, I setup an Apache 2.4 environment on Solaris 11 using the auth_gss_module for Kerberos authentication. The problem I have is not being able to access an authorized page using IE, Chrome, or Firefox on Windows 7 or Windows Server 2008. I have been successful accessing the secured page with curl and python scripts and also Safari and Firefox browsers on OS X 10.10. I have listed output from both successful and failed attempts with Kerberos authentication. I am not sure if it might be a configuration setting within AD that needs to be changed or maybe a encryption difference. I am looking for suggestions on what to do next. Thank you..
A key tab was created for me by the AD admin and this is the contents of the key tab
cyoull#host0ad903.abc.def.net:/local_apps/apache4/conf/certs$ klist -k host0ad903_keytab
Keytab name: FILE:host0ad903_keytab
KVNO Principal
---- --------------------------------------------------------------------------
3 HTTP/host0ad903.abc.def.net#ABC.DEF.NET
On OS X, this is the list of kerberos tickets from the klist command.
Chriss-MacBook-Air:~ chris$ klist
Credentials cache: API:EF1241C7-A883-44A8-9729-969775673BCA
Principal: cyoull#ABC.DEF.NET
Issued Expires Principal
Sep 25 07:22:52 2015 Sep 25 17:22:40 2015 krbtgt/ABC.DEF.NET#ABC.DEF.NET
Chriss-MacBook-Air:~ chris$ klist
Credentials cache: API:EF1241C7-A883-44A8-9729-969775673BCA
Principal: cyoull#ABC.DEF.NET
Issued Expires Principal
Sep 25 07:22:52 2015 Sep 25 17:22:40 2015 krbtgt/ABC.DEF.NET#ABC.DEF.NET
Sep 25 07:23:06 2015 Sep 25 17:22:40 2015 HTTP/host0ad903.abc.def.net#ABC.DEF.NET
Valid starting Expires Service principal
18/09/2015 10:17 18/09/2015 20:17 krbtgt/ABC.DEF.NET#ABC.DEF.NET
renew until 25/09/2015 10:17, Etype(skey, tkt): ArcFour with HMAC/md5, AES-256 CTS mode with 96-bit SHA-1 HMAC
18/09/2015 10:17 18/09/2015 20:17 HTTP/host0ad903.abc.def.net#ABC.DEF.NET
renew until 25/09/2015 10:17, Etype(skey, tkt): ArcFour with HMAC/md5, ArcFour with HMAC/md5
This is the Apache log after successfully accessing the secured page with Kerberos authentication from Safari on OS X
[Fri Sep 25 07:23:06.348043 2015] [core:debug] [pid 24214:tid 18] mod_auth_gss.c(620): [client 10.93.68.187:56071] gss_authenticate: type = GSSAPI
[Fri Sep 25 07:23:06.348054 2015] [core:debug] [pid 24214:tid 18] mod_auth_gss.c(632): [client 10.93.68.187:56071] No authentication data found
[Fri Sep 25 07:23:06.348063 2015] [core:debug] [pid 24214:tid 18] mod_auth_gss.c(592): [client 10.93.68.187:56071] note_gss_auth_failure: auth_name = <undefined>
[Fri Sep 25 07:23:06.590334 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(620): [client 10.93.68.187:56073] gss_authenticate: type = GSSAPI
[Fri Sep 25 07:23:06.590347 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(334): [client 10.93.68.187:56073] authenticate_user_gss called
[Fri Sep 25 07:23:06.590362 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(373): [client 10.93.68.187:56073] Using keytab: KRB5_KTNAME=/local_apps/apache4/conf/certs/host0ad903_keytab
[Fri Sep 25 07:23:06.590508 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(411): [client 10.93.68.187:56073] Client wants GSS mech: spnego
[Fri Sep 25 07:23:06.590524 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(288): [client 10.93.68.187:56073] acquire_server_creds for HTTP#host0ad903.abc.def.net
[Fri Sep 25 07:23:06.621760 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(438): [client 10.93.68.187:56073] got server creds for: HTTP#host0ad903.abc.def.net
[Fri Sep 25 07:23:06.639432 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(549): [client 10.93.68.187:56073] Authenticated user (final result) : cyoull#ABC.DEF.NET
This is the Apache log file after a successful attempt with a Python script on Windows Server 2008
[Thu Sep 17 16:29:48.890889 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(620): [client 10.115.2.117:50526] gss_authenticate: type = GSSAPI
[Thu Sep 17 16:29:48.890900 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(632): [client 10.115.2.117:50526] No authentication data found
[Thu Sep 17 16:29:48.890909 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(592): [client 10.115.2.117:50526] note_gss_auth_failure: auth_name = <undefined>
[Thu Sep 17 16:29:48.908047 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(620): [client 10.115.2.117:50526] gss_authenticate: type = GSSAPI
[Thu Sep 17 16:29:48.908056 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(334): [client 10.115.2.117:50526] authenticate_user_gss called
[Thu Sep 17 16:29:48.908080 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(373): [client 10.115.2.117:50526] Using keytab: KRB5_KTNAME=/local_apps/apache4/conf/certs/host0ad903_keytab
[Thu Sep 17 16:29:48.908188 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(411): [client 10.115.2.117:50526] Client wants GSS mech: kerberos_v5
[Thu Sep 17 16:29:48.908203 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(288): [client 10.115.2.117:50526] acquire_server_creds for HTTP#host0ad903.abc.def.net
[Thu Sep 17 16:29:48.910360 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(438): [client 10.115.2.117:50526] got server creds for: HTTP/host0ad903.abc.def.net#ABC.DEF.NET
[Thu Sep 17 16:29:48.917847 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(524): [client 10.115.2.117:50526] Authenticated user before AuthGSSStripDomainAT: cyoull#ABC.DEF.NET
[Thu Sep 17 16:29:48.917863 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(533): [client 10.115.2.117:50526] Authenticated user before AuthGSSForceCase: coy
[Thu Sep 17 16:29:48.917873 2015] [core:debug] [pid 32125:tid 21] mod_auth_gss.c(549): [client 10.115.2.117:50526] Authenticated user (final result) : cyoull#ABC.DEF.NET
This is the Kerberos tickets on the Windows 7 client
U:\>klist
Current LogonId is 0:0xa84757
Cached Tickets: (2)
#0> Client: cyoull # ABC.DEF.NET
Server: krbtgt/ABC.DEF.NET # ABC.DEF.NET
KerbTicket Encryption Type: AES-256-CTS-HMAC-SHA1-96
Ticket Flags 0x40e00000 -> forwardable renewable initial pre_authent
Start Time: 9/25/2015 9:19:28 (local)
End Time: 9/25/2015 19:19:28 (local)
Renew Time: 10/2/2015 9:19:28 (local)
Session Key Type: AES-256-CTS-HMAC-SHA1-96
#1> Client: cyoull # ABC.DEF.NET
Server: HTTP/host0ad903.abc.def.net # ABC.DEF.NET
KerbTicket Encryption Type: RSADSI RC4-HMAC(NT)
Ticket Flags 0x40a00000 -> forwardable renewable pre_authent
Start Time: 9/25/2015 9:19:30 (local)
End Time: 9/25/2015 19:19:28 (local)
Renew Time: 10/2/2015 9:19:28 (local)
Session Key Type: RSADSI RC4-HMAC(NT)
Using the developer tools in Firefox I see three GET requests and in the apache log file it looks as if the kerberos negotiation tries more than once then fails with a 401 Unauthorized
[Fri Sep 25 08:54:28.205356 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(620): [client 10.211.8.122:52459] gss_authenticate: type = GSSAPI
[Fri Sep 25 08:54:28.205366 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(632): [client 10.211.8.122:52459] No authentication data found
[Fri Sep 25 08:54:28.205374 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(592): [client 10.211.8.122:52459] note_gss_auth_failure: auth_name = <undefined>
[Fri Sep 25 08:54:28.471160 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(620): [client 10.211.8.122:52459] gss_authenticate: type = GSSAPI
[Fri Sep 25 08:54:28.471170 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(334): [client 10.211.8.122:52459] authenticate_user_gss called
[Fri Sep 25 08:54:28.471187 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(373): [client 10.211.8.122:52459] Using keytab: KRB5_KTNAME=/local_apps/apache4/conf/certs/host0ad903_keytab
[Fri Sep 25 08:54:28.471290 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(411): [client 10.211.8.122:52459] Client wants GSS mech: spnego
[Fri Sep 25 08:54:28.471307 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(288): [client 10.211.8.122:52459] acquire_server_creds for HTTP#host0ad903.abc.def.net
[Fri Sep 25 08:54:28.474953 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(438): [client 10.211.8.122:52459] got server creds for: HTTP#host0ad903.abc.def.net
[Fri Sep 25 08:54:28.475143 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(650): [client 10.211.8.122:52459] Authentication failed.
[Fri Sep 25 08:54:28.475157 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(592): [client 10.211.8.122:52459] note_gss_auth_failure: auth_name = <undefined>
[Fri Sep 25 08:54:28.540288 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(620): [client 10.211.8.122:52459] gss_authenticate: type = GSSAPI
[Fri Sep 25 08:54:28.540296 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(334): [client 10.211.8.122:52459] authenticate_user_gss called
[Fri Sep 25 08:54:28.540310 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(373): [client 10.211.8.122:52459] Using keytab: KRB5_KTNAME=/local_apps/apache4/conf/certs/host0ad903_keytab
[Fri Sep 25 08:54:28.540344 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(411): [client 10.211.8.122:52459] Client wants GSS mech: <unknown>
[Fri Sep 25 08:54:28.540353 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(288): [client 10.211.8.122:52459] acquire_server_creds for HTTP#host0ad903.abc.def.net
[Fri Sep 25 08:54:28.543031 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(438): [client 10.211.8.122:52459] got server creds for: HTTP/host0ad903.abc.def.net#abc.def.net
[Fri Sep 25 08:54:28.543188 2015] [core:error] [pid 24150:tid 24] [client 10.211.8.122:52459] gss_accept_sec_context() failed: Invalid token was supplied (Unknown error)
[Fri Sep 25 08:54:28.543336 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(650): [client 10.211.8.122:52459] Authentication failed.
[Fri Sep 25 08:54:28.543349 2015] [core:debug] [pid 24150:tid 24] mod_auth_gss.c(592): [client 10.211.8.122:52459] note_gss_auth_failure: auth_name = <undefined>


Have you configured the web browsers on Windows to actually do HTTP Negotiate with this server? For example, in Firefox you need to set:
network.negotiate-auth.trusted-uris = abc.def.net
or another pattern that would match the URL. Chrome similarly has to be told to be willing to authenticate to the particular server, e.g. with:
--auth-server-whitelist="*.foo.com"
or via group policy.
If that’s not the problem, then please do this:
ipconfig /flushdns
klist purge
Run Wireshark and capture the HTTP, DNS, and Kerberos traffic during a failure (ports 80, 53, and 88).
Post the resulting pcap file.

Related

Apache mod_ssl log client certificate

In my apache web-server there is a path where clients must authenticate with a valid certificate.
Sometimes there is a client (a soap - webservice) that can't connect, my apache return 403 "sslv3 alert bad certificate (SSL alert number 42) -- Subject CN in certificate not server name or identical to CA!?" and I need to check why and which certificate it is using.
I setup trace3 loglevel for mod_ssl and a customlog like this:
CustomLog /var/log/httpd-ssl.log "%t %h \"%{User-agent}i\" %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %>s \"%{SSL_CLIENT_S_DN_CN}x\" <<<%{SSL_CLIENT_CERT}x>>>"
<IfModule mod_ssl.c>
ErrorLog /var/log/apache2/ssl_engine.log
LogLevel trace3
</IfModule>
In the first file log I can see all the informations of client that can connect but when the client fail there aren't the useful information:
[16/Feb/2019:11:01:43 +0100] XXX.XXX.XXX.XXX "IBM WebServices/1.0" - - "POST MYSECRETPATH HTTP/1.1" 403 "-" <<<->>>
In the second one I can see some information like:
[Thu Feb 21 13:57:55.288418 2019] [ssl:debug] [pid 99609] ssl_engine_kernel.c(359): [client xxx.xxx.xxx.xxx:56892] AH02034: Initial (No.1) HTTPS request received for child 5 (server XXX.XXX.XXX:443)
[Thu Feb 21 13:57:55.288591 2019] [ssl:debug] [pid 99609] ssl_engine_kernel.c(743): [client xxx.xxx.xxx.xxx:56892] AH02255: Changed client verification type will force renegotiation
[Thu Feb 21 13:57:55.557866 2019] [ssl:info] [pid 99609] [client xxx.xxx.xxx.xxx:56892] AH02221: Requesting connection re-negotiation
[Thu Feb 21 13:57:55.557902 2019] [ssl:debug] [pid 99609] ssl_engine_kernel.c(970): [client xxx.xxx.xxx.xxx:56892] AH02260: Performing full renegotiation: complete handshake protocol (client does support secure renegotiation)
[Thu Feb 21 13:57:55.557919 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1988): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Handshake: start
[Thu Feb 21 13:57:55.557932 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: SSL renegotiate ciphers
[Thu Feb 21 13:57:55.557948 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: SSLv3 write hello request A
[Thu Feb 21 13:57:55.557978 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: SSLv3 flush data
[Thu Feb 21 13:57:55.557986 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: SSLv3 write hello request C
[Thu Feb 21 13:57:55.557996 2019] [ssl:info] [pid 99609] [client xxx.xxx.xxx.xxx:56892] AH02226: Awaiting re-negotiation handshake
[Thu Feb 21 13:57:55.558005 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1988): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Handshake: start
[Thu Feb 21 13:57:55.558016 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: before accept initialization
[Thu Feb 21 13:57:55.590106 2019] [ssl:debug] [pid 99609] ssl_engine_kernel.c(2141): [client xxx.xxx.xxx.xxx:56892] AH02645: Server name not provided via TLS extension (using default/first virtual host)
[Thu Feb 21 13:57:55.590134 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: SSLv3 read client hello A
[Thu Feb 21 13:57:55.590146 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: SSLv3 write server hello A
[Thu Feb 21 13:57:55.590177 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: SSLv3 write certificate A
[Thu Feb 21 13:57:55.590190 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: SSLv3 write certificate request A
[Thu Feb 21 13:57:55.590217 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(1996): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Loop: SSLv3 flush data
[Thu Feb 21 13:57:55.887495 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(2001): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Read: SSLv3 read client certificate A
[Thu Feb 21 13:57:55.887530 2019] [ssl:trace3] [pid 99609] ssl_engine_kernel.c(2020): [client xxx.xxx.xxx.xxx:56892] OpenSSL: Exit: failed in SSLv3 read client certificate A
[Thu Feb 21 13:57:55.887538 2019] [ssl:error] [pid 99609] [client xxx.xxx.xxx.xxx:56892] AH02261: Re-negotiation handshake failed
[Thu Feb 21 13:57:55.887567 2019] [ssl:error] [pid 99609] SSL Library Error: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate (SSL alert number 42) -- Subject CN in certificate not server name or identical to CA!?
[Thu Feb 21 13:57:55.887578 2019] [core:trace3] [pid 99609] request.c(117): [client xxx.xxx.xxx.xxx:56892] auth phase 'check access (with Satisfy All)' gave status 403: /my/secret/path
[Thu Feb 21 13:57:55.887611 2019] [http:trace3] [pid 99609] http_filters.c(1003): [client xxx.xxx.xxx.xxx:56892] Response sent with status 403
But there isn't something real useful.
I want to log/write the certificate that apache is reading and not accepting. How can I log it ?

You can enable SSL debugging logs in your Application Server JVM config by adding the following JVM command line parameter and restart the Application Server:
-Djavax.net.debug=all
Depending on your WAS version, adding the above parameter is typically done by navigating to WAS Admin Console > Servers > Application Servers > YourServer > Process Management > Java Virtual Machine > Generic JVM arguments

caught SIGWINCH, shutting down gracefully

I'm a total newbie to this and I have already managed to mess my server (tried installing APC for PHP when this happened... Here is the log. Any ideas how to restore my server functions? :(
[Sun Jul 16 03:31:02.006590 2017] [auth_digest:notice] [pid 23258] AH01757: generating secret for digest authentication ...
[Sun Jul 16 03:31:02.007261 2017] [lbmethod_heartbeat:notice] [pid 23258] AH02282: No slotmem from mod_heartmonitor
[Sun Jul 16 03:31:02.027374 2017] [mpm_prefork:notice] [pid 23258] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sun Jul 16 03:31:02.027395 2017] [core:notice] [pid 23258] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Sun Jul 16 03:31:02.058755 2017] [mpm_prefork:notice] [pid 23258] AH00171: Graceful restart requested, doing restart
[Sun Jul 16 03:31:02.100133 2017] [auth_digest:notice] [pid 23258] AH01757: generating secret for digest authentication ...
[Sun Jul 16 03:31:02.100780 2017] [lbmethod_heartbeat:notice] [pid 23258] AH02282: No slotmem from mod_heartmonitor
[Sun Jul 16 03:31:02.121136 2017] [mpm_prefork:notice] [pid 23258] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sun Jul 16 03:31:02.121158 2017] [core:notice] [pid 23258] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Sun Jul 16 13:12:50.236464 2017] [mpm_prefork:notice] [pid 23258] AH00170: caught SIGWINCH, shutting down gracefully
[Sun Jul 16 13:14:51.100292 2017] [suexec:notice] [pid 590] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Sun Jul 16 13:14:51.155867 2017] [auth_digest:notice] [pid 590] AH01757: generating secret for digest authentication ...
[Sun Jul 16 13:14:51.156790 2017] [lbmethod_heartbeat:notice] [pid 590] AH02282: No slotmem from mod_heartmonitor
[Sun Jul 16 13:14:51.369027 2017] [mpm_prefork:notice] [pid 590] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sun Jul 16 13:14:51.369071 2017] [core:notice] [pid 590] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Sun Jul 16 13:20:01.607625 2017] [mpm_prefork:notice] [pid 590] AH00171: Graceful restart requested, doing restart
[Sun Jul 16 13:20:01.665046 2017] [auth_digest:notice] [pid 590] AH01757: generating secret for digest authentication ...
[Sun Jul 16 13:20:01.665703 2017] [lbmethod_heartbeat:notice] [pid 590] AH02282: No slotmem from mod_heartmonitor
[Sun Jul 16 13:20:01.688267 2017] [mpm_prefork:notice] [pid 590] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sun Jul 16 13:20:01.688297 2017] [core:notice] [pid 590] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Sun Jul 16 13:30:02.019149 2017] [mpm_prefork:notice] [pid 590] AH00171: Graceful restart requested, doing restart
[Sun Jul 16 13:30:02.082624 2017] [auth_digest:notice] [pid 590] AH01757: generating secret for digest authentication ...
[Sun Jul 16 13:30:02.083308 2017] [lbmethod_heartbeat:notice] [pid 590] AH02282: No slotmem from mod_heartmonitor
[Sun Jul 16 13:30:02.104286 2017] [mpm_prefork:notice] [pid 590] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sun Jul 16 13:30:02.104312 2017] [core:notice] [pid 590] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Sun Jul 16 14:10:01.665938 2017] [mpm_prefork:notice] [pid 590] AH00171: Graceful restart requested, doing restart
[Sun Jul 16 14:10:01.753728 2017] [auth_digest:notice] [pid 590] AH01757: generating secret for digest authentication ...
[Sun Jul 16 14:10:01.754391 2017] [lbmethod_heartbeat:notice] [pid 590] AH02282: No slotmem from mod_heartmonitor
[Sun Jul 16 14:10:01.775101 2017] [mpm_prefork:notice] [pid 590] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sun Jul 16 14:10:01.775121 2017] [core:notice] [pid 590] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Sun Jul 16 19:56:39.477667 2017] [mpm_prefork:notice] [pid 590] AH00170: caught SIGWINCH, shutting down gracefully
[Sun Jul 16 19:56:40.550616 2017] [suexec:notice] [pid 18301] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Sun Jul 16 19:56:40.574146 2017] [auth_digest:notice] [pid 18301] AH01757: generating secret for digest authentication ...
[Sun Jul 16 19:56:40.574850 2017] [lbmethod_heartbeat:notice] [pid 18301] AH02282: No slotmem from mod_heartmonitor
[Sun Jul 16 19:56:40.602247 2017] [mpm_prefork:notice] [pid 18301] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sun Jul 16 19:56:40.602280 2017] [core:notice] [pid 18301] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Mon Jul 17 03:07:01.379026 2017] [mpm_prefork:notice] [pid 18301] AH00171: Graceful restart requested, doing restart
[Mon Jul 17 03:07:01.443341 2017] [auth_digest:notice] [pid 18301] AH01757: generating secret for digest authentication ...
[Mon Jul 17 03:07:01.444065 2017] [lbmethod_heartbeat:notice] [pid 18301] AH02282: No slotmem from mod_heartmonitor
[Mon Jul 17 03:07:01.465989 2017] [mpm_prefork:notice] [pid 18301] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Mon Jul 17 03:07:01.466011 2017] [core:notice] [pid 18301] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Mon Jul 17 22:40:16.353423 2017] [mpm_prefork:notice] [pid 18301] AH00170: caught SIGWINCH, shutting down gracefully
[Mon Jul 17 22:41:47.131564 2017] [suexec:notice] [pid 566] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Mon Jul 17 22:41:47.180607 2017] [auth_digest:notice] [pid 566] AH01757: generating secret for digest authentication ...
[Mon Jul 17 22:41:47.182357 2017] [lbmethod_heartbeat:notice] [pid 566] AH02282: No slotmem from mod_heartmonitor
[Mon Jul 17 22:41:47.439980 2017] [mpm_prefork:notice] [pid 566] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Mon Jul 17 22:41:47.440032 2017] [core:notice] [pid 566] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Tue Jul 18 03:34:01.232302 2017] [mpm_prefork:notice] [pid 566] AH00171: Graceful restart requested, doing restart
[Tue Jul 18 03:34:01.308323 2017] [auth_digest:notice] [pid 566] AH01757: generating secret for digest authentication ...
[Tue Jul 18 03:34:01.309293 2017] [lbmethod_heartbeat:notice] [pid 566] AH02282: No slotmem from mod_heartmonitor
[Tue Jul 18 03:34:01.332770 2017] [mpm_prefork:notice] [pid 566] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Tue Jul 18 03:34:01.332791 2017] [core:notice] [pid 566] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Wed Jul 19 00:23:21.218800 2017] [core:notice] [pid 566] AH00052: child pid 23334 exit signal Segmentation fault (11)
[Wed Jul 19 00:24:26.305481 2017] [core:notice] [pid 566] AH00052: child pid 17928 exit signal Segmentation fault (11)
[Wed Jul 19 00:33:21.458126 2017] [mpm_prefork:notice] [pid 566] AH00170: caught SIGWINCH, shutting down gracefully
[Wed Jul 19 00:34:55.085223 2017] [suexec:notice] [pid 575] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Wed Jul 19 00:34:55.123665 2017] [auth_digest:notice] [pid 575] AH01757: generating secret for digest authentication ...
[Wed Jul 19 00:34:55.124399 2017] [lbmethod_heartbeat:notice] [pid 575] AH02282: No slotmem from mod_heartmonitor
[Wed Jul 19 00:34:55.373515 2017] [mpm_prefork:notice] [pid 575] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Wed Jul 19 00:34:55.373544 2017] [core:notice] [pid 575] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Wed Jul 19 02:10:09.173702 2017] [core:notice] [pid 575] AH00052: child pid 11449 exit signal Segmentation fault (11)
[Wed Jul 19 02:13:17.444142 2017] [core:notice] [pid 575] AH00052: child pid 2643 exit signal Segmentation fault (11)
[Wed Jul 19 02:14:19.603707 2017] [core:notice] [pid 575] AH00052: child pid 12390 exit signal Segmentation fault (11)
[Wed Jul 19 02:22:53.412575 2017] [core:notice] [pid 575] AH00052: child pid 12273 exit signal Segmentation fault (11)
[Wed Jul 19 02:24:52.665096 2017] [core:notice] [pid 575] AH00052: child pid 12988 exit signal Segmentation fault (11)
[Wed Jul 19 02:29:16.976828 2017] [core:notice] [pid 575] AH00052: child pid 12429 exit signal Segmentation fault (11)
[Wed Jul 19 03:24:10.692202 2017] [core:notice] [pid 575] AH00052: child pid 14983 exit signal Segmentation fault (11)
[Wed Jul 19 03:31:01.588089 2017] [mpm_prefork:notice] [pid 575] AH00171: Graceful restart requested, doing restart
[Wed Jul 19 03:31:01.682642 2017] [auth_digest:notice] [pid 575] AH01757: generating secret for digest authentication ...
[Wed Jul 19 03:31:01.685765 2017] [lbmethod_heartbeat:notice] [pid 575] AH02282: No slotmem from mod_heartmonitor
[Wed Jul 19 03:31:01.707253 2017] [mpm_prefork:notice] [pid 575] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Wed Jul 19 03:31:01.707280 2017] [core:notice] [pid 575] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Wed Jul 19 14:27:54.516364 2017] [mpm_prefork:notice] [pid 575] AH00170: caught SIGWINCH, shutting down gracefully
[Wed Jul 19 14:29:26.805786 2017] [suexec:notice] [pid 587] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Wed Jul 19 14:29:26.860112 2017] [auth_digest:notice] [pid 587] AH01757: generating secret for digest authentication ...
[Wed Jul 19 14:29:26.860800 2017] [lbmethod_heartbeat:notice] [pid 587] AH02282: No slotmem from mod_heartmonitor
[Wed Jul 19 14:29:27.133553 2017] [mpm_prefork:notice] [pid 587] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Wed Jul 19 14:29:27.133603 2017] [core:notice] [pid 587] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Wed Jul 19 14:34:27.499636 2017] [core:notice] [pid 587] AH00052: child pid 918 exit signal Segmentation fault (11)
[Wed Jul 19 15:48:42.277788 2017] [core:notice] [pid 587] AH00052: child pid 6725 exit signal Segmentation fault (11)
[Wed Jul 19 16:03:10.435325 2017] [mpm_prefork:notice] [pid 587] AH00170: caught SIGWINCH, shutting down gracefully
[Wed Jul 19 16:04:44.334204 2017] [suexec:notice] [pid 572] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Wed Jul 19 16:04:44.391125 2017] [auth_digest:notice] [pid 572] AH01757: generating secret for digest authentication ...
[Wed Jul 19 16:04:44.392095 2017] [lbmethod_heartbeat:notice] [pid 572] AH02282: No slotmem from mod_heartmonitor
[Wed Jul 19 16:04:44.648082 2017] [mpm_prefork:notice] [pid 572] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Wed Jul 19 16:04:44.648119 2017] [core:notice] [pid 572] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Thu Jul 20 03:22:02.015317 2017] [mpm_prefork:notice] [pid 572] AH00171: Graceful restart requested, doing restart
[Thu Jul 20 03:22:02.109887 2017] [auth_digest:notice] [pid 572] AH01757: generating secret for digest authentication ...
[Thu Jul 20 03:22:02.114118 2017] [lbmethod_heartbeat:notice] [pid 572] AH02282: No slotmem from mod_heartmonitor
[Thu Jul 20 03:22:02.228318 2017] [mpm_prefork:notice] [pid 572] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Thu Jul 20 03:22:02.228339 2017] [core:notice] [pid 572] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Thu Jul 20 03:43:47.687144 2017] [mpm_prefork:notice] [pid 572] AH00170: caught SIGWINCH, shutting down gracefully
[Thu Jul 20 03:45:24.079667 2017] [suexec:notice] [pid 532] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Thu Jul 20 03:45:24.116354 2017] [auth_digest:notice] [pid 532] AH01757: generating secret for digest authentication ...
[Thu Jul 20 03:45:24.117538 2017] [lbmethod_heartbeat:notice] [pid 532] AH02282: No slotmem from mod_heartmonitor
[Thu Jul 20 03:45:24.367893 2017] [mpm_prefork:notice] [pid 532] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Thu Jul 20 03:45:24.367943 2017] [core:notice] [pid 532] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Fri Jul 21 03:34:01.565426 2017] [mpm_prefork:notice] [pid 532] AH00171: Graceful restart requested, doing restart
[Fri Jul 21 03:34:01.597084 2017] [auth_digest:notice] [pid 532] AH01757: generating secret for digest authentication ...
[Fri Jul 21 03:34:01.597788 2017] [lbmethod_heartbeat:notice] [pid 532] AH02282: No slotmem from mod_heartmonitor
[Fri Jul 21 03:34:01.622501 2017] [mpm_prefork:notice] [pid 532] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Fri Jul 21 03:34:01.622525 2017] [core:notice] [pid 532] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Sat Jul 22 03:27:01.916200 2017] [mpm_prefork:notice] [pid 532] AH00171: Graceful restart requested, doing restart
[Sat Jul 22 03:27:01.981867 2017] [auth_digest:notice] [pid 532] AH01757: generating secret for digest authentication ...
[Sat Jul 22 03:27:01.982645 2017] [lbmethod_heartbeat:notice] [pid 532] AH02282: No slotmem from mod_heartmonitor
[Sat Jul 22 03:27:02.006622 2017] [mpm_prefork:notice] [pid 532] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sat Jul 22 03:27:02.006648 2017] [core:notice] [pid 532] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Sun Jul 23 03:11:01.397763 2017] [mpm_prefork:notice] [pid 532] AH00171: Graceful restart requested, doing restart
[Sun Jul 23 03:11:01.454335 2017] [auth_digest:notice] [pid 532] AH01757: generating secret for digest authentication ...
[Sun Jul 23 03:11:01.455017 2017] [lbmethod_heartbeat:notice] [pid 532] AH02282: No slotmem from mod_heartmonitor
[Sun Jul 23 03:11:01.476079 2017] [mpm_prefork:notice] [pid 532] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sun Jul 23 03:11:01.476099 2017] [core:notice] [pid 532] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Sun Jul 23 18:23:23.218063 2017] [mpm_prefork:notice] [pid 532] AH00170: caught SIGWINCH, shutting down gracefully
[Sun Jul 23 18:24:54.094377 2017] [suexec:notice] [pid 570] AH01232: suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Sun Jul 23 18:24:54.127317 2017] [auth_digest:notice] [pid 570] AH01757: generating secret for digest authentication ...
[Sun Jul 23 18:24:54.128106 2017] [lbmethod_heartbeat:notice] [pid 570] AH02282: No slotmem from mod_heartmonitor
[Sun Jul 23 18:24:54.394225 2017] [mpm_prefork:notice] [pid 570] AH00163: Apache/2.4.6 (CentOS) configured -- resuming normal operations
[Sun Jul 23 18:24:54.394263 2017] [core:notice] [pid 570] AH00094: Command line: '/usr/sbin/httpd -D FOREGROUND'
[Mon Jul 24 00:32:30.456050 2017] [mpm_prefork:notice] [pid 570] AH00170: caught SIGWINCH, shutting down gracefully
Thanks a ton!!

Apache Active Directory mod_authnz_ldap not working

I have been trying to get AD auth on a virtualhost page working for the past several days, to no avail. Help...
CentOS 7
Apache 2.4.6
mod_ldap and mod_authnz_ldap installed and loading
<VirtualHost *:80>
DocumentRoot /var/www/wwwtest/public
ServerName wwwtest.example.com
ErrorLog logs/wwwtest.example.com-error_log
CustomLog logs/wwwtest.example.com-access_log common
<Directory /var/www/wwwtest/public>
Allow from all
Order Allow,Deny
Options Indexes MultiViews FollowSymLinks
AllowOverride None
AuthType Basic
AuthName "login"
AuthBasicProvider ldap
AuthLDAPBindDN ldapuser#EXAMPLE.COM
AuthLDAPBindPassword ldappassword
AuthLDAPURL "ldap://ldap01.example.com:3268/ou=employees,ou=users,dc=example,dc=com?sAMAccountName?sub?(objectClass=user)"
AuthLDAPBindAuthoritative off
Require valid-user
</Directory>
</VirtualHost>
I have trace8 enabled in /etc/httpd/conf/httpd.conf
And this is what I see in /var/log/httpd/wwwtest.example.com-error.log
[Wed Oct 21 12:12:56.213178 2015] [http:trace4] [pid 20648] http_request.c(301): [client 172.16.250.250:49559] Headers received from client:
[Wed Oct 21 12:12:56.213263 2015] [http:trace4] [pid 20648] http_request.c(305): [client 172.16.250.250:49559] Host: wwwtest.example.com
[Wed Oct 21 12:12:56.213278 2015] [http:trace4] [pid 20648] http_request.c(305): [client 172.16.250.250:49559] User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:41.0) Gecko/20100101 Firefox/41.0
[Wed Oct 21 12:12:56.213284 2015] [http:trace4] [pid 20648] http_request.c(305): [client 172.16.250.250:49559] Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
[Wed Oct 21 12:12:56.213289 2015] [http:trace4] [pid 20648] http_request.c(305): [client 172.16.250.250:49559] Accept-Language: en-US,en;q=0.5
[Wed Oct 21 12:12:56.213293 2015] [http:trace4] [pid 20648] http_request.c(305): [client 172.16.250.250:49559] Accept-Encoding: gzip, deflate
[Wed Oct 21 12:12:56.213297 2015] [http:trace4] [pid 20648] http_request.c(305): [client 172.16.250.250:49559] DNT: 1
[Wed Oct 21 12:12:56.213301 2015] [http:trace4] [pid 20648] http_request.c(305): [client 172.16.250.250:49559] Connection: keep-alive
[Wed Oct 21 12:12:56.213305 2015] [http:trace4] [pid 20648] http_request.c(305): [client 172.16.250.250:49559] Cache-Control: max-age=0
[Wed Oct 21 12:12:56.213309 2015] [http:trace4] [pid 20648] http_request.c(305): [client 172.16.250.250:49559] Authorization: Basic RTAxMDEwMTAxOkNvbmNvcmRpYTIwMTU=
[Wed Oct 21 12:12:56.213530 2015] [authz_core:debug] [pid 20648] mod_authz_core.c(809): [client 172.16.250.250:49559] AH01626: authorization result of Require valid-user : denied (no authenticated user yet)
[Wed Oct 21 12:12:56.213556 2015] [authz_core:debug] [pid 20648] mod_authz_core.c(809): [client 172.16.250.250:49559] AH01626: authorization result of <RequireAny>: denied (no authenticated user yet)
[Wed Oct 21 12:12:56.213644 2015] [authnz_ldap:debug] [pid 20648] mod_authnz_ldap.c(501): [client 172.16.250.250:49559] AH01691: auth_ldap authenticate: using URL ldap://ldap01.example.com:3268/ou=employees,ou=users,dc=example,dc=edu?sAMAccountName?sub?(objectClass=user)
[Wed Oct 21 12:12:56.213705 2015] [authnz_ldap:trace1] [pid 20648] mod_authnz_ldap.c(522): [client 172.16.250.250:49559] auth_ldap authenticate: final authn filter is (&(objectClass=user)(sAMAccountName=TESTUSER))
[Wed Oct 21 12:12:56.215123 2015] [ldap:debug] [pid 20648] util_ldap.c(372): AH01278: LDAP: Setting referrals to On.
[Wed Oct 21 12:12:56.216479 2015] [ldap:trace2] [pid 20648] util_ldap.c(591): [client 172.16.250.250:49559] ldap_simple_bind() failed with server down (try 1)
[Wed Oct 21 12:12:56.217336 2015] [ldap:trace2] [pid 20648] util_ldap.c(591): [client 172.16.250.250:49559] ldap_simple_bind() failed with server down (try 2)
[Wed Oct 21 12:12:56.217358 2015] [ldap:trace2] [pid 20648] util_ldap.c(606): [client 172.16.250.250:49559] attempt to re-init the connection
[Wed Oct 21 12:12:56.217398 2015] [ldap:debug] [pid 20648] util_ldap.c(372): AH01278: LDAP: Setting referrals to On.
[Wed Oct 21 12:12:56.218332 2015] [ldap:trace2] [pid 20648] util_ldap.c(591): [client 172.16.250.250:49559] ldap_simple_bind() failed with server down (try 3)
[Wed Oct 21 12:12:56.219355 2015] [ldap:trace2] [pid 20648] util_ldap.c(591): [client 172.16.250.250:49559] ldap_simple_bind() failed with server down (try 4)
[Wed Oct 21 12:12:56.219392 2015] [ldap:trace2] [pid 20648] util_ldap.c(606): [client 172.16.250.250:49559] attempt to re-init the connection
[Wed Oct 21 12:12:56.219430 2015] [ldap:debug] [pid 20648] util_ldap.c(372): AH01278: LDAP: Setting referrals to On.
[Wed Oct 21 12:12:56.219444 2015] [authnz_ldap:debug] [pid 20648] mod_authnz_ldap.c(539): [client 172.16.250.250:49559] AH01694: auth_ldap authenticate: user TESTUSER authentication failed; URI / [LDAP: ldap_simple_bind() failed][Can't contact LDAP server] (not authoritative)
[Wed Oct 21 12:12:56.219454 2015] [auth_basic:error] [pid 20648] [client 172.16.250.250:49559] AH01618: user TESTUSER not found: /
[Wed Oct 21 12:12:56.219469 2015] [core:trace3] [pid 20648] request.c(119): [client 172.16.250.250:49559] auth phase 'check user' gave status 401: /
[Wed Oct 21 12:12:56.219530 2015] [http:trace3] [pid 20648] http_filters.c(992): [client 172.16.250.250:49559] Response sent with status 401, headers:
[Wed Oct 21 12:12:56.219532 2015] [http:trace5] [pid 20648] http_filters.c(999): [client 172.16.250.250:49559] Date: Wed, 21 Oct 2015 19:12:56 GMT
[Wed Oct 21 12:12:56.219534 2015] [http:trace5] [pid 20648] http_filters.c(1002): [client 172.16.250.250:49559] Server: Apache/2.4.6 (CentOS)
[Wed Oct 21 12:12:56.219536 2015] [http:trace4] [pid 20648] http_filters.c(835): [client 172.16.250.250:49559] WWW-Authenticate: Basic realm=\\”login\\”
[Wed Oct 21 12:12:56.219538 2015] [http:trace4] [pid 20648] http_filters.c(835): [client 172.16.250.250:49559] Content-Length: 381
[Wed Oct 21 12:12:56.219540 2015] [http:trace4] [pid 20648] http_filters.c(835): [client 172.16.250.250:49559] Keep-Alive: timeout=5, max=100
[Wed Oct 21 12:12:56.219541 2015] [http:trace4] [pid 20648] http_filters.c(835): [client 172.16.250.250:49559] Connection: Keep-Alive
[Wed Oct 21 12:12:56.219542 2015] [http:trace4] [pid 20648] http_filters.c(835): [client 172.16.250.250:49559] Content-Type: text/html; charset=iso-8859-1
I can do ldapsearch with these credentials and it returns user objects from our DC, so the credentials are correct. I ran Wireshark on the DC. It never saw any LDAP packets from this web server. I ran tcpdump on the web server and it never sent any LDAP packets when I attempted to auth...
We got AD auth via PHP working in like 10 minutes, but I had previously been working on this for days...so sure, it auth works now, but I want to know why mod_ldap and mod_authnz_ldap aren't working...or...what isn't working.
Also, I'm kinda new with Apache...so the problem is more than likely something I'm misunderstanding.
Thanks in advance.
UPDATE: Apparently it works just fine in Debian. (Apache 2.2.22, bu still) sigh

SOLVED: Clearly I'm still new at Linux as well.
It was, of course, an issue with SELinux. Even though I had set it from Enforcing to Permissive (and then eventually to Disabled), I didn't know that the only way to make that change is apparently by rebooting (or, setenforce 0). Rebooted, and it all worked fine because SELinux was now disabled. I then found that SELinux logs are at /var/log/audit/audit.log. There, were a bunch of:
type=AVC msg=audit(1445466425.176:1849): avc: denied { name_connect } for pid=21184 comm="httpd" dest=389 scontext=system_u:system_r:httpd_t:s0 tcontext=system_u:object_r:ldap_port_t:s0 tclass=tcp_socket
So to allow httpd to access ldap, I followed this post which says:
# getsebool -a | grep ldap
authlogin_nsswitch_use_ldap --> off
httpd_can_connect_ldap --> off
# setsebool httpd_can_connect_ldap 1
# getsebool -a | grep ldap
authlogin_nsswitch_use_ldap --> off
httpd_can_connect_ldap --> on
After that, auth worked perfectly with Firewalld enabled and with SELinux Enforcing. That also explains why a tcpdump showed no ldap bind attempts.
So yeah, hopefully this helps out anyone else that may have been stuck.
Bottom line: learn more about SELinux.

Apache WAMP Stopped Working

I was enabling something in my WAMP. Anyhow I clicked on the Wamp Button > Apache > Apache Modules > and I was looking for what I wanted, but accidentally pressed "r". Once I pressed "r" my localhost website would not work, and now my Wamp icon is appearing orange. I have no clue what happend, do you? Here is my error:
[Sat Jul 26 16:15:29.537732 2014] [mpm_winnt:notice] [pid 4092:tid 400] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Sat Jul 26 16:15:29.537732 2014] [mpm_winnt:notice] [pid 4092:tid 400] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Sat Jul 26 16:15:29.537732 2014] [core:notice] [pid 4092:tid 400] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Sat Jul 26 16:15:29.538734 2014] [mpm_winnt:notice] [pid 4092:tid 400] AH00418: Parent: Created child process 1608
[Sat Jul 26 16:15:30.029179 2014] [mpm_winnt:notice] [pid 1608:tid 452] AH00354: Child: Starting 64 worker threads.
[Sat Jul 26 22:33:53.434220 2014] [authz_core:error] [pid 1608:tid 960] [client 192.168.1.30:54781] AH01630: client denied by server configuration: C:/wamp/www/
[Sat Jul 26 22:51:56.233745 2014] [mpm_winnt:notice] [pid 4092:tid 400] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Sat Jul 26 22:51:58.265082 2014] [mpm_winnt:notice] [pid 1608:tid 452] AH00364: Child: All worker threads have exited.
[Sat Jul 26 22:51:58.296328 2014] [mpm_winnt:notice] [pid 4092:tid 400] AH00430: Parent: Child process 1608 exited successfully.
[Sun Jul 27 14:05:56.746487 2014] [mpm_winnt:notice] [pid 5232:tid 284] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Sun Jul 27 14:05:56.753499 2014] [mpm_winnt:notice] [pid 5232:tid 284] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Sun Jul 27 14:05:56.753499 2014] [core:notice] [pid 5232:tid 284] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Sun Jul 27 14:05:56.763491 2014] [mpm_winnt:notice] [pid 5232:tid 284] AH00418: Parent: Created child process 6916
[Sun Jul 27 14:05:57.485065 2014] [mpm_winnt:notice] [pid 6916:tid 460] AH00354: Child: Starting 64 worker threads.
[Wed Jul 30 23:20:46.242815 2014] [mpm_winnt:notice] [pid 5232:tid 284] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Wed Jul 30 23:20:51.539762 2014] [mpm_winnt:notice] [pid 6916:tid 460] AH00364: Child: All worker threads have exited.
[Wed Jul 30 23:21:05.180559 2014] [mpm_winnt:notice] [pid 5232:tid 284] AH00430: Parent: Child process 6916 exited successfully.
[Thu Jul 31 12:45:25.093273 2014] [mpm_winnt:notice] [pid 2568:tid 536] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Thu Jul 31 12:45:25.094274 2014] [mpm_winnt:notice] [pid 2568:tid 536] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Thu Jul 31 12:45:25.094274 2014] [core:notice] [pid 2568:tid 536] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Thu Jul 31 12:45:25.097276 2014] [mpm_winnt:notice] [pid 2568:tid 536] AH00418: Parent: Created child process 2596
[Thu Jul 31 12:45:26.045952 2014] [mpm_winnt:notice] [pid 2596:tid 424] AH00354: Child: Starting 64 worker threads.
[Tue Aug 19 16:05:08.423733 2014] [mpm_winnt:notice] [pid 2568:tid 536] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Tue Aug 19 16:05:13.642604 2014] [mpm_winnt:notice] [pid 2596:tid 424] AH00364: Child: All worker threads have exited.
[Tue Aug 19 16:05:30.064645 2014] [mpm_winnt:notice] [pid 2568:tid 536] AH00430: Parent: Child process 2596 exited successfully.
[Tue Aug 19 23:30:25.524220 2014] [mpm_winnt:notice] [pid 5720:tid 572] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Tue Aug 19 23:30:25.553224 2014] [mpm_winnt:notice] [pid 5720:tid 572] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Tue Aug 19 23:30:25.553224 2014] [core:notice] [pid 5720:tid 572] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Tue Aug 19 23:30:25.556224 2014] [mpm_winnt:notice] [pid 5720:tid 572] AH00418: Parent: Created child process 2012
[Tue Aug 19 23:30:26.184670 2014] [mpm_winnt:notice] [pid 2012:tid 452] AH00354: Child: Starting 64 worker threads.
[Wed Aug 27 10:43:18.752095 2014] [mpm_winnt:notice] [pid 5720:tid 572] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Wed Aug 27 10:43:21.845885 2014] [mpm_winnt:notice] [pid 2012:tid 452] AH00364: Child: All worker threads have exited.
[Wed Aug 27 10:43:28.517847 2014] [mpm_winnt:notice] [pid 5720:tid 572] AH00430: Parent: Child process 2012 exited successfully.
[Thu Aug 28 17:22:50.302524 2014] [mpm_winnt:notice] [pid 3476:tid 528] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Thu Aug 28 17:22:50.303536 2014] [mpm_winnt:notice] [pid 3476:tid 528] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Thu Aug 28 17:22:50.303536 2014] [core:notice] [pid 3476:tid 528] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Thu Aug 28 17:22:50.305520 2014] [mpm_winnt:notice] [pid 3476:tid 528] AH00418: Parent: Created child process 2632
[Thu Aug 28 17:22:51.240439 2014] [mpm_winnt:notice] [pid 2632:tid 448] AH00354: Child: Starting 64 worker threads.
[Tue Sep 02 20:02:08.448199 2014] [mpm_winnt:notice] [pid 3476:tid 528] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Tue Sep 02 20:02:10.495104 2014] [mpm_winnt:notice] [pid 2632:tid 448] AH00364: Child: All worker threads have exited.
[Tue Sep 02 20:02:12.604507 2014] [mpm_winnt:notice] [pid 3476:tid 528] AH00430: Parent: Child process 2632 exited successfully.
[Fri Sep 05 21:55:31.379470 2014] [mpm_winnt:notice] [pid 6080:tid 488] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Fri Sep 05 21:55:31.402538 2014] [mpm_winnt:notice] [pid 6080:tid 488] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Fri Sep 05 21:55:31.402538 2014] [core:notice] [pid 6080:tid 488] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Fri Sep 05 21:55:31.404485 2014] [mpm_winnt:notice] [pid 6080:tid 488] AH00418: Parent: Created child process 3256
[Fri Sep 05 21:55:32.012043 2014] [mpm_winnt:notice] [pid 3256:tid 448] AH00354: Child: Starting 64 worker threads.
[Sun Sep 14 20:08:13.490202 2014] [mpm_winnt:notice] [pid 6080:tid 488] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Sun Sep 14 20:08:17.209027 2014] [mpm_winnt:notice] [pid 3256:tid 448] AH00364: Child: All worker threads have exited.
[Sun Sep 14 20:08:23.584115 2014] [mpm_winnt:notice] [pid 6080:tid 488] AH00430: Parent: Child process 3256 exited successfully.
[Fri Sep 19 20:55:13.884326 2014] [mpm_winnt:notice] [pid 8340:tid 556] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Fri Sep 19 20:55:13.884326 2014] [mpm_winnt:notice] [pid 8340:tid 556] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Fri Sep 19 20:55:13.884326 2014] [core:notice] [pid 8340:tid 556] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Fri Sep 19 20:55:13.888323 2014] [mpm_winnt:notice] [pid 8340:tid 556] AH00418: Parent: Created child process 8116
[Fri Sep 19 20:55:14.532934 2014] [mpm_winnt:notice] [pid 8116:tid 452] AH00354: Child: Starting 64 worker threads.
[Sat Sep 20 19:54:01.953621 2014] [mpm_winnt:notice] [pid 8340:tid 556] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Sat Sep 20 19:54:03.984898 2014] [mpm_winnt:notice] [pid 8116:tid 452] AH00364: Child: All worker threads have exited.
[Sat Sep 20 19:54:05.984928 2014] [mpm_winnt:notice] [pid 8340:tid 556] AH00430: Parent: Child process 8116 exited successfully.
[Mon Nov 03 17:15:38.006650 2014] [mpm_winnt:notice] [pid 6552:tid 532] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Mon Nov 03 17:15:38.022297 2014] [mpm_winnt:notice] [pid 6552:tid 532] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Mon Nov 03 17:15:38.022297 2014] [core:notice] [pid 6552:tid 532] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Mon Nov 03 17:15:38.022297 2014] [mpm_winnt:notice] [pid 6552:tid 532] AH00418: Parent: Created child process 4616
[Mon Nov 03 17:15:38.709800 2014] [mpm_winnt:notice] [pid 4616:tid 448] AH00354: Child: Starting 64 worker threads.
[Mon Nov 17 20:07:44.422884 2014] [mpm_winnt:notice] [pid 6552:tid 532] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Mon Nov 17 20:07:46.516716 2014] [mpm_winnt:notice] [pid 4616:tid 448] AH00364: Child: All worker threads have exited.
[Mon Nov 17 20:07:58.048122 2014] [mpm_winnt:notice] [pid 6552:tid 532] AH00430: Parent: Child process 4616 exited successfully.
[Sat Nov 22 15:49:46.091430 2014] [mpm_winnt:notice] [pid 2112:tid 528] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Sat Nov 22 15:49:46.092432 2014] [mpm_winnt:notice] [pid 2112:tid 528] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Sat Nov 22 15:49:46.092432 2014] [core:notice] [pid 2112:tid 528] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Sat Nov 22 15:49:46.097436 2014] [mpm_winnt:notice] [pid 2112:tid 528] AH00418: Parent: Created child process 4212
[Sat Nov 22 15:49:46.818947 2014] [mpm_winnt:notice] [pid 4212:tid 460] AH00354: Child: Starting 64 worker threads.
[Sun Nov 23 17:27:17.509537 2014] [:error] [pid 4212:tid 968] [client ::1:55412] script 'C:/wamp/www/testwebsite/action.php' not found or unable to stat, referer: http://localhost/testwebsite/home.php
[Sun Nov 23 18:24:20.050683 2014] [:error] [pid 4212:tid 968] [client ::1:55774] script 'C:/wamp/www/testwebsite/action.php' not found or unable to stat, referer: http://localhost/testwebsite/home.php
[Tue Nov 25 23:41:55.578131 2014] [authz_core:error] [pid 4212:tid 956] [client ::1:57231] AH01630: client denied by server configuration: C:/Apache24, referer: http://localhost/postin%27/
[Tue Nov 25 23:41:55.579129 2014] [authz_core:error] [pid 4212:tid 956] [client ::1:57231] AH01630: client denied by server configuration: C:/Apache24, referer: http://localhost/postin%27/
[Tue Nov 25 23:41:55.582134 2014] [authz_core:error] [pid 4212:tid 960] [client ::1:57233] AH01630: client denied by server configuration: C:/Apache24, referer: http://localhost/postin%27/
[Tue Nov 25 23:41:55.583131 2014] [authz_core:error] [pid 4212:tid 948] [client ::1:57234] AH01630: client denied by server configuration: C:/Apache24, referer: http://localhost/postin%27/
[Tue Nov 25 23:41:55.584132 2014] [authz_core:error] [pid 4212:tid 968] [client ::1:57235] AH01630: client denied by server configuration: C:/Apache24, referer: http://localhost/postin%27/
[Fri Nov 28 17:08:26.648100 2014] [:error] [pid 4212:tid 960] [client ::1:57746] script 'C:/wamp/www/postin'/home.php' not found or unable to stat
[Fri Nov 28 17:11:46.907963 2014] [:error] [pid 4212:tid 960] [client ::1:57777] script 'C:/wamp/www/postin'/bootstrap-3.3.1-dist/dist/home.php' not found or unable to stat
[Fri Nov 28 17:15:44.406860 2014] [core:error] [pid 4212:tid 944] (20024)The given path is misformatted or contained invalid characters: [client ::1:57972] AH00127: Cannot map GET /postin%27/%3C!--%20bootstrap-3.3.1-dist/dist/css/%20--%3Ebootstrap.min.css HTTP/1.1 to file, referer: http://localhost/postin%27/home.php
[Fri Nov 28 17:18:10.663503 2014] [:error] [pid 4212:tid 948] [client ::1:58026] script 'C:/wamp/www/postin'/bootstrap-3.3.1-dist/dist/home.php' not found or unable to stat
[Fri Nov 28 17:18:12.207563 2014] [:error] [pid 4212:tid 948] [client ::1:58026] script 'C:/wamp/www/postin'/bootstrap-3.3.1-dist/dist/home.php' not found or unable to stat
[Fri Dec 05 18:24:55.774622 2014] [mpm_winnt:notice] [pid 2112:tid 528] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Fri Dec 05 18:24:59.102790 2014] [mpm_winnt:notice] [pid 4212:tid 460] AH00364: Child: All worker threads have exited.
[Fri Dec 05 18:25:05.634129 2014] [mpm_winnt:notice] [pid 2112:tid 528] AH00430: Parent: Child process 4212 exited successfully.
[Fri Dec 05 18:31:26.578880 2014] [mpm_winnt:notice] [pid 5104:tid 524] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Fri Dec 05 18:31:26.594559 2014] [mpm_winnt:notice] [pid 5104:tid 524] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Fri Dec 05 18:31:26.594559 2014] [core:notice] [pid 5104:tid 524] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Fri Dec 05 18:31:26.594559 2014] [mpm_winnt:notice] [pid 5104:tid 524] AH00418: Parent: Created child process 4816
[Fri Dec 05 18:31:27.078901 2014] [mpm_winnt:notice] [pid 4816:tid 448] AH00354: Child: Starting 64 worker threads.
[Fri Dec 12 21:51:38.749809 2014] [mpm_winnt:notice] [pid 5104:tid 524] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Fri Dec 12 21:51:41.796737 2014] [mpm_winnt:notice] [pid 4816:tid 448] AH00364: Child: All worker threads have exited.
[Fri Dec 12 21:51:43.093608 2014] [mpm_winnt:notice] [pid 5104:tid 524] AH00430: Parent: Child process 4816 exited successfully.
[Sat Dec 13 11:24:25.831509 2014] [mpm_winnt:notice] [pid 6184:tid 544] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Sat Dec 13 11:24:25.854544 2014] [mpm_winnt:notice] [pid 6184:tid 544] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Sat Dec 13 11:24:25.854544 2014] [core:notice] [pid 6184:tid 544] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Sat Dec 13 11:24:25.857526 2014] [mpm_winnt:notice] [pid 6184:tid 544] AH00418: Parent: Created child process 6680
[Sat Dec 13 11:24:26.865517 2014] [mpm_winnt:notice] [pid 6680:tid 460] AH00354: Child: Starting 64 worker threads.
[Wed Dec 17 21:24:32.537560 2014] [:error] [pid 6680:tid 948] [client ::1:60268] script 'C:/wamp/www/postin'/register.php' not found or unable to stat, referer: http://localhost/postin%27/login.php
[Wed Dec 17 22:02:28.555099 2014] [:error] [pid 6680:tid 948] [client ::1:60539] script 'C:/wamp/www/postin'/login.php' not found or unable to stat, referer: http://localhost/postin%27/home.php
[Wed Dec 17 22:02:52.576181 2014] [:error] [pid 6680:tid 948] [client ::1:60543] script 'C:/wamp/www/postin'/login.php' not found or unable to stat
[Wed Dec 17 22:15:36.019756 2014] [:error] [pid 6680:tid 964] [client ::1:60613] script 'C:/wamp/www/postin'/login.php' not found or unable to stat, referer: http://localhost/postin%27/home.php
[Sun Dec 21 12:27:45.334508 2014] [:error] [pid 6680:tid 912] [client ::1:59901] script 'C:/wamp/www/postin'/common.php' not found or unable to stat
[Tue Dec 30 12:18:01.153171 2014] [authz_core:error] [pid 6680:tid 948] [client 192.168.2.5:56561] AH01630: client denied by server configuration: C:/wamp/www/
[Thu Jan 01 18:26:51.143348 2015] [:error] [pid 6680:tid 888] [client ::1:59517] script 'C:/wamp/www/postin'/accountcreated.php' not found or unable to stat
[Sun Jan 04 20:54:45.491787 2015] [:error] [pid 6680:tid 932] [client ::1:57184] script 'C:/wamp/www/postin'/termsofservice.php' not found or unable to stat, referer: http://localhost/postin'/registerpage.php
[Mon Jan 05 17:24:33.723650 2015] [:error] [pid 6680:tid 964] [client ::1:58637] script 'C:/wamp/www/postin'/login.php' not found or unable to stat
[Mon Jan 05 17:24:37.591476 2015] [:error] [pid 6680:tid 964] [client ::1:58637] script 'C:/wamp/www/postin'/login.php' not found or unable to stat
[Tue Jan 06 22:09:36.379069 2015] [:error] [pid 6680:tid 888] [client ::1:51681] script 'C:/wamp/www/postin'/termsofservice.php' not found or unable to stat, referer: http://localhost/postin'/registerpage.php
[Thu Jan 08 21:41:11.273540 2015] [:error] [pid 6680:tid 884] [client ::1:62629] script 'C:/wamp/www/postin'/login.php' not found or unable to stat, referer: http://localhost/postin%27/home.php
[Sun Jan 11 13:29:52.929580 2015] [:error] [pid 6680:tid 884] [client ::1:52843] script 'C:/wamp/www/postin'/profile.php' not found or unable to stat, referer: http://localhost/postin%27/registerpage.php
[Sun Jan 11 13:41:35.124376 2015] [:error] [pid 6680:tid 952] [client ::1:52970] script 'C:/wamp/www/postin'/login.php' not found or unable to stat
[Sun Jan 11 19:42:59.503446 2015] [:error] [pid 6680:tid 952] [client ::1:53526] script 'C:/wamp/www/postin'/upload.php' not found or unable to stat, referer: http://localhost/postin'/new.php
[Mon Jan 12 18:44:18.786667 2015] [mpm_winnt:notice] [pid 6184:tid 544] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Mon Jan 12 18:44:20.956208 2015] [mpm_winnt:notice] [pid 6680:tid 460] AH00364: Child: All worker threads have exited.
[Mon Jan 12 18:44:34.341014 2015] [mpm_winnt:notice] [pid 6184:tid 544] AH00430: Parent: Child process 6680 exited successfully.
[Mon Jan 12 18:44:52.542886 2015] [mpm_winnt:notice] [pid 8624:tid 536] AH00455: Apache/2.4.9 (Win64) PHP/5.5.12 configured -- resuming normal operations
[Mon Jan 12 18:44:52.542886 2015] [mpm_winnt:notice] [pid 8624:tid 536] AH00456: Apache Lounge VC11 Server built: Mar 16 2014 12:42:59
[Mon Jan 12 18:44:52.542886 2015] [core:notice] [pid 8624:tid 536] AH00094: Command line: 'c:\\wamp\\bin\\apache\\apache2.4.9\\bin\\httpd.exe -d C:/wamp/bin/apache/apache2.4.9'
[Mon Jan 12 18:44:52.545907 2015] [mpm_winnt:notice] [pid 8624:tid 536] AH00418: Parent: Created child process 18300
[Mon Jan 12 18:44:53.289434 2015] [mpm_winnt:notice] [pid 18300:tid 480] AH00354: Child: Starting 64 worker threads.
[Mon Jan 12 18:46:01.845526 2015] [mpm_winnt:notice] [pid 8624:tid 536] AH00422: Parent: Received shutdown signal -- Shutting down the server.
[Mon Jan 12 18:46:03.846968 2015] [mpm_winnt:notice] [pid 18300:tid 480] AH00364: Child: All worker threads have exited.
[Mon Jan 12 18:46:03.865961 2015] [mpm_winnt:notice] [pid 8624:tid 536] AH00430: Parent: Child process 18300 exited successfully.

If there is a problem in apache starting first change the port number from 80 to 8080 and change in httpd.conf form localhost 80 to localhost 8080.
If it doesn't work
open cmd:
Then go to wamp->bin->apache->apache..(version)->bin
execute:httpd.conf -r warn
and restart wamp

Apache 2.4.6 mod_proxy_fcgi and PHP-FPM returning 404 error

I have PHP 5.3.3 with PHP-FPM running at 172.17.0.163:20533. I tested it with nginx and with cgi-fcgi:
$ SCRIPT_FILENAME=/www/localhost/test.php REQUEST_METHOD=GET cgi-fcgi -bind -connect 172.17.0.163:20533
returns
X-Powered-By: PHP/5.3.3
Content-type: text/html
hello, it works!
So, PHP-FPM is working.
Unfortunately, Apache 2.4 has some issues with PHP-FPM:
<VirtualHost *>
UseCanonicalName Off
VirtualDocumentRoot "/www/%0"
RewriteEngine On
RewriteRule ^/(.*\.php(/.*)?)$ fcgi://172.17.0.163:20533/www/%{SERVER_NAME}/$1 [P]
</VirtualHost>
Opening http:// localhost/test.php returns a "404 Not found" error. Non PHP files are working. Looking at the apache error logs, everything looks fine.
[Fri Nov 15 18:53:00.426776 2013] [mpm_event:info] [pid 1959:tid 140474380953408] AH00490: Server built: Nov 13 2013 14:23:31
[Fri Nov 15 18:53:00.426787 2013] [core:notice] [pid 1959:tid 140474380953408] AH00094: Command line: '/usr/local/sbin/httpd'
[Fri Nov 15 18:53:00.426917 2013] [proxy:debug] [pid 3028:tid 140474380953408] proxy_util.c(1694): AH00925: initializing worker proxy:reverse shared
[Fri Nov 15 18:53:00.426950 2013] [proxy:debug] [pid 3028:tid 140474380953408] proxy_util.c(1734): AH00927: initializing worker proxy:reverse local
[Fri Nov 15 18:53:00.427010 2013] [proxy:debug] [pid 3028:tid 140474380953408] proxy_util.c(1769): AH00930: initialized pool in child 3028 for (*) min=0 max=25 smax=25
[Fri Nov 15 18:53:00.427101 2013] [proxy:debug] [pid 3030:tid 140474380953408] proxy_util.c(1694): AH00925: initializing worker proxy:reverse shared
[Fri Nov 15 18:53:00.427421 2013] [proxy:debug] [pid 3029:tid 140474380953408] proxy_util.c(1694): AH00925: initializing worker proxy:reverse shared
[Fri Nov 15 18:53:00.427445 2013] [proxy:debug] [pid 3029:tid 140474380953408] proxy_util.c(1734): AH00927: initializing worker proxy:reverse local
[Fri Nov 15 18:53:00.427488 2013] [proxy:debug] [pid 3029:tid 140474380953408] proxy_util.c(1769): AH00930: initialized pool in child 3029 for (*) min=0 max=25 smax=25
[Fri Nov 15 18:53:00.427129 2013] [proxy:debug] [pid 3030:tid 140474380953408] proxy_util.c(1734): AH00927: initializing worker proxy:reverse local
[Fri Nov 15 18:53:00.428326 2013] [proxy:debug] [pid 3030:tid 140474380953408] proxy_util.c(1769): AH00930: initialized pool in child 3030 for (*) min=0 max=25 smax=25
[Fri Nov 15 18:53:01.627599 2013] [rewrite:trace2] [pid 3028:tid 140474150618880] mod_rewrite.c(468): [client 172.17.42.1:57951] 172.17.42.1 - - [localhost/sid#7fc2bd82e7f8][rid#7fc2bd7a10a0/initial] init rewrite engine with requested uri /test.php
[Fri Nov 15 18:53:01.627664 2013] [rewrite:trace3] [pid 3028:tid 140474150618880] mod_rewrite.c(468): [client 172.17.42.1:57951] 172.17.42.1 - - [localhost/sid#7fc2bd82e7f8][rid#7fc2bd7a10a0/initial] applying pattern '^/(.*\\.php(/.*)?)$' to uri '/test.php'
[Fri Nov 15 18:53:01.627718 2013] [rewrite:trace2] [pid 3028:tid 140474150618880] mod_rewrite.c(468): [client 172.17.42.1:57951] 172.17.42.1 - - [localhost/sid#7fc2bd82e7f8][rid#7fc2bd7a10a0/initial] rewrite '/test.php' -> 'fcgi://172.17.0.163:20533/www/localhost/test.php'
[Fri Nov 15 18:53:01.627747 2013] [rewrite:trace2] [pid 3028:tid 140474150618880] mod_rewrite.c(468): [client 172.17.42.1:57951] 172.17.42.1 - - [localhost/sid#7fc2bd82e7f8][rid#7fc2bd7a10a0/initial] forcing proxy-throughput with fcgi://172.17.0.163:20533/www/localhost/test.php
[Fri Nov 15 18:53:01.627759 2013] [rewrite:trace1] [pid 3028:tid 140474150618880] mod_rewrite.c(468): [client 172.17.42.1:57951] 172.17.42.1 - - [localhost/sid#7fc2bd82e7f8][rid#7fc2bd7a10a0/initial] go-ahead with proxy request proxy:fcgi://172.17.0.163:20533/www/localhost/test.php [OK]
[Fri Nov 15 18:53:01.627776 2013] [proxy_fcgi:trace1] [pid 3028:tid 140474150618880] mod_proxy_fcgi.c(90): [client 172.17.42.1:57951] canonicalising URL //172.17.0.163:20533/www/localhost/test.php
[Fri Nov 15 18:53:01.627776 2013] [proxy_fcgi:debug] [pid 3028:tid 140474150618880] mod_proxy_fcgi.c(120): [client 172.17.42.1:57951] AH01060: set r->filename to proxy:fcgi://172.17.0.163:20533/www/localhost/test.php
[Fri Nov 15 18:53:01.628070 2013] [proxy:trace2] [pid 3028:tid 140474150618880] proxy_util.c(1857): [client 172.17.42.1:57951] *: found reverse proxy worker for fcgi://172.17.0.163:20533/www/localhost/test.php
[Fri Nov 15 18:53:01.628082 2013] [proxy:debug] [pid 3028:tid 140474150618880] mod_proxy.c(1100): [client 172.17.42.1:57951] AH01143: Running scheme fcgi handler (attempt 0)
[Fri Nov 15 18:53:01.628096 2013] [proxy_fcgi:debug] [pid 3028:tid 140474150618880] mod_proxy_fcgi.c(944): [client 172.17.42.1:57951] AH01076: url: fcgi://172.17.0.163:20533/www/localhost/test.php proxyname: (null) proxyport: 0
[Fri Nov 15 18:53:01.628107 2013] [proxy_fcgi:debug] [pid 3028:tid 140474150618880] mod_proxy_fcgi.c(954): [client 172.17.42.1:57951] AH01078: serving URL //172.17.0.163:20533/www/localhost/test.php
[Fri Nov 15 18:53:01.628134 2013] [proxy:debug] [pid 3028:tid 140474150618880] proxy_util.c(2020): AH00942: FCGI: has acquired connection for (*)
[Fri Nov 15 18:53:01.628147 2013] [proxy:debug] [pid 3028:tid 140474150618880] proxy_util.c(2072): [client 172.17.42.1:57951] AH00944: connecting //172.17.0.163:20533/www/localhost/test.php to 172.17.0.163:20533
[Fri Nov 15 18:53:01.628224 2013] [proxy:debug] [pid 3028:tid 140474150618880] proxy_util.c(2194): [client 172.17.42.1:57951] AH00947: connected /www/localhost/test.php to 172.17.0.163:20533
[Fri Nov 15 18:53:01.628248 2013] [proxy:trace2] [pid 3028:tid 140474150618880] proxy_util.c(2446): FCGI: fam 2 socket created to connect to *
[Fri Nov 15 18:53:01.629453 2013] [proxy_fcgi:trace4] [pid 3028:tid 140474150618880] util_script.c(521): [client 172.17.42.1:57951] Headers from script 'test.php':
[Fri Nov 15 18:53:01.629552 2013] [proxy_fcgi:trace4] [pid 3028:tid 140474150618880] util_script.c(522): [client 172.17.42.1:57951] Status: 404 Not Found
[Fri Nov 15 18:53:01.629583 2013] [proxy_fcgi:trace1] [pid 3028:tid 140474150618880] util_script.c(599): [client 172.17.42.1:57951] Status line from script 'test.php': 404 Not Found
[Fri Nov 15 18:53:01.629595 2013] [proxy_fcgi:trace4] [pid 3028:tid 140474150618880] util_script.c(522): [client 172.17.42.1:57951] X-Powered-By: PHP/5.3.3
[Fri Nov 15 18:53:01.629608 2013] [proxy_fcgi:trace4] [pid 3028:tid 140474150618880] util_script.c(522): [client 172.17.42.1:57951] Content-type: text/html
[Fri Nov 15 18:53:01.629680 2013] [proxy:debug] [pid 3028:tid 140474150618880] proxy_util.c(2035): AH00943: FCGI: has released connection for (*)
It seems as if mod_proxy_fcgi is not sending the script path correctly?! Has anyone an idea?
UPDATE 16 Nov 2013
I tested it with Apache 2.2.25 and mod_fastcgi 2.4.6:
<VirtualHost *>
UseCanonicalName Off
VirtualDocumentRoot "/www/%0"
AddHandler php5-fastcgi .php
FastCgiExternalServer /www/localhost -host 172.17.0.163:20533
</VirtualHost>
Works like a charm. I guess Apache 2.4.6 with mod_proxy_fcgi is buggy.
Update 17 Nov 2013
I tested it with Apache 2.4.6 and mod_proxy_fcgi and PHP 5.4.21. It works. So, there seems to be a problem with PHP 5.3.3 together with Apache 2.4.6 and mod_proxy_fcgi.

Using PHP 5.3.27 fixes all the issues.