https://issues.apache.org/bugzilla/show_bug.cgi?id=45959
--- Comment #5 from Paul B. Henson <[EMAIL PROTECTED]> 2008-10-09 18:47:36 PST --- I'll do you one better than flushing my browser cache ;) : ----- $ telnet 134.71.248.148 80 Trying 134.71.248.148... Connected to 134.71.248.148. Escape character is '^]'. GET /~henson/test_ssi.shtml HTTP/1.1 Host: www.csupomona.edu HTTP/1.1 200 OK Date: Fri, 10 Oct 2008 01:28:09 GMT Server: Apache/2.2.8 (Unix) mod_ssl/2.2.8 OpenSSL/0.9.8g Accept-Ranges: bytes Transfer-Encoding: chunked Content-Type: text/html 7 secret ----- "secret" is the contents of /usr/pkg/etc/httpd/htpasswd, I'm just using it as a test. It's quite possible I am doing something stupid anyway, in which case I apologize in advance; but as far as I can tell everything is configured correctly. Ideally I would like both virtual and file SSI includes to respect symbolic link restrictions, as I was counting on that for my deployment; the users will revolt if our new services don't include SSI, but my plan for deploying authenticated content will not be secure if any of them are able to create symlinks to and serve arbitrary web server readable content :(. Thanks much... -- Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
