during the auth rewrite it happend, that the return code of the dbm_fetch
will be used. this results in a 500 Response, if the user has an _empty_
user id supplied (bad key, SDBM returns APR_EINVAL, for example, but it
seems, that every dbm type cooks its own return code; can't test other
types at the moment, sorry).
Anyway this currently results in the wrong message "dbm file could not be
opened".
I'm not sure, what choice is better:
- simply ignore return code of dbm_fetch
- do an extra dbm_exists check before the real fetch
- ?
See for example mod_authn_dbm.c:122
(in comparison with the good ol' mod_auth_dbm.c:150)
nd
--
$_=q?tvc!uif)%*|#Bopuifs!A`#~tvc!Xibu)%*|qsjou#Kvtu!A`#~tvc!KBQI!)*|~
tvc!ifmm)%*|#Qfsm!A`#~tvc!jt)%*|(Ibdlfs(~ # What the hell is JAPH? ;
@_=split/\s\s+#/;$_=(join''=>map{chr(ord( # Andr� Malo ;
$_)-1)}split//=>$_[0]).$_[1];s s.*s$_see; # http://www.perlig.de/ ;
