Bug#488821: apache2-suexec: suexec configuration change demands extensive system changes
Hi Michael, On Wednesday 02 July 2008, Michael Alan Dorman wrote: First, I would like to apologize for my rather terse initial message---it took me a while to figure out that I needed to install a new package (perhaps it warrants a recommends or at least suggests, so it shows up somewhere?), and then once it was installed, a while longer to figure out why that didn't help. apache2.2-common suggests apache2-suexec. A recommends would not be appropriate because the point of the separate package is that it is not installed by default (and apt pulls in recommended packages by default). But I would recommend you to install apt-listchanges. It will display relevant sections of NEWS.Debian during upgrades. Second, I would like to thank you for your effort in maintaining apache---it's an important piece of software that I suspect only earns you annoying messages like this when it breaks, and precious little thanks when it just works. That is certainly appreciated. Allowing suexec to change to random system users is bad from a security point of view. Therefore the minimum uid of 100 should be changed to some higher value. Now the question is if it is possible to make that change in a less disrupting way. A compromise would be to raise it to 200 and not 1000. This would exclude automatically created system accounts on most systems and mean a significant gain in security. Would this be helpful? Is the user you want to switch to created by some Debian package or have you created it manually? That the bound is arbitrary seems to me a pretty clear indicator that it's value for security is limited. While I could definitely understand disallowing root, and even userids that are guaranteed to be on the system, and thus represent known quantities---which is what the old limit did---you can have no knowledge of exactly how many or to what use userids are assigned and how they are used. Users like sshd and mysql have no fixed uid but are guaranteed to be in the low 100s range. Those are the users I wanted to disallow. Finally, when one considers the *many other* constraints on suexec---the executable must in in a particular location, it must be owned by the user in question, etc---I think your assertion that there are gains in security as a result this change in an arbitrary lower bound is questionable. Many of the suexec restrictions are in there to guard against bugs in suexec. For example, there has been a race condition in suexec that could be used to circumvent the owner checks in some obscure circumstances. Similar or worse issues can happen again. But maybe the gain is not large enough to warrant disrupting many system configurations. I will change it back for now. Maybe the apache2-suexec-custom could be extended to make the minimum uid configurable. Then the standard suexec could be changed to min uid 1000. But this will not happen in time for lenny. you. At least be kind enough to your users to announce in NEWS.Debian that you might be about to break their system. :) The min user id change was announced in NEWS.Debian, just like the move to a separate package. Cheers, Stefan -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processing of apache2_2.2.9-3_i386.changes
apache2_2.2.9-3_i386.changes uploaded successfully to localhost along with the files: apache2_2.2.9-3.dsc apache2_2.2.9-3.diff.gz apache2.2-common_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-event_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb apache2-suexec-custom_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb apache2-dbg_2.2.9-3_i386.deb apache2_2.2.9-3_all.deb apache2-doc_2.2.9-3_all.deb apache2-src_2.2.9-3_all.deb Greetings, Your Debian queue daemon -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
apache2 override disparity
There are disparities between your recently accepted upload and the override file for the following file(s): apache2-mpm-event_2.2.9-3_i386.deb: package says section is web, override says net. apache2-mpm-prefork_2.2.9-3_i386.deb: package says section is web, override says net. apache2-mpm-worker_2.2.9-3_i386.deb: package says section is web, override says net. apache2-prefork-dev_2.2.9-3_i386.deb: package says priority is extra, override says optional. apache2-threaded-dev_2.2.9-3_i386.deb: package says priority is extra, override says optional. apache2-utils_2.2.9-3_i386.deb: package says section is web, override says net. apache2.2-common_2.2.9-3_i386.deb: package says section is web, override says net. apache2_2.2.9-3_all.deb: package says section is web, override says net. Either the package or the override file is incorrect. If you think the override is correct and the package wrong please fix the package so that this disparity is fixed in the next upload. If you feel the override is incorrect then please reply to this mail and explain why. Please INCLUDE the list of packages as seen above, or we won't be able to deal with your mail due to missing information. [NB: this is an automatically generated mail; if you replied to one like it before and have not received a response yet, please ignore this mail. Your reply needs to be processed by a human and will be in due course, but until then the installer will send these automated mails; sorry.] -- Debian distribution maintenance software (This message was generated automatically; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
apache2_2.2.9-3_i386.changes ACCEPTED
Accepted: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb Override entries for your package: apache2-dbg_2.2.9-3_i386.deb - extra libdevel apache2-doc_2.2.9-3_all.deb - optional doc apache2-mpm-event_2.2.9-3_i386.deb - optional net apache2-mpm-prefork_2.2.9-3_i386.deb - optional net apache2-mpm-worker_2.2.9-3_i386.deb - optional net apache2-prefork-dev_2.2.9-3_i386.deb - optional devel apache2-src_2.2.9-3_all.deb - extra devel apache2-suexec-custom_2.2.9-3_i386.deb - extra web apache2-suexec_2.2.9-3_i386.deb - optional web apache2-threaded-dev_2.2.9-3_i386.deb - optional devel apache2-utils_2.2.9-3_i386.deb - optional net apache2.2-common_2.2.9-3_i386.deb - optional net apache2_2.2.9-3.dsc - source net apache2_2.2.9-3_all.deb - optional net Announcing to [EMAIL PROTECTED] Closing bugs: 260063 267477 293469 293519 293524 314606 395823 398520 421802 446765 450831 457708 473982 486286 488821 Thank you for your contribution to Debian. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#293524: marked as done (ssl.conf: SSLCertificateFile /etc/apache2/ssl/apache.pem)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#293524: fixed in apache2 2.2.9-3 has caused the Debian Bug report #293524, regarding ssl.conf: SSLCertificateFile /etc/apache2/ssl/apache.pem to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 293524: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=293524 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2-common Version: 2.0.52-3 Severity: wishlist ssl.conf should contain the line: SSLCertificateFile /etc/apache2/ssl/apache.pem With that in place, SSLEngine on would be the only thing required to turn SSL on without where desired. Charles -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (90, 'testing'), (80, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.4.26-1-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages apache2-common depends on: ii debconf 1.4.30.11Debian configuration management sy ii debianutils 2.8.4Miscellaneous utilities specific t ii libapr0 2.0.52-3 The Apache Portable Runtime ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an ii libdb4.24.2.52-17Berkeley v4.2 Database Libraries [ ii libexpat1 1.95.8-1 XML parsing C library - runtime li ii libldap22.1.30-3 OpenLDAP libraries ii libmagic1 4.12-1 File type determination library us ii libssl0.9.7 0.9.7e-2 SSL shared libraries ii mime-support3.28-1 MIME files 'mime.types' 'mailcap ii net-tools 1.60-10 The NET-3 networking toolkit ii openssl 0.9.7e-2 Secure Socket Layer (SSL) binary a ii ssl-cert1.0-11 Simple debconf wrapper for openssl ii zlib1g 1:1.2.2-3compression library - runtime -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3 Distribution: unstable Urgency: low Maintainer:
Bug#260063: marked as done (apache2: suggestion to add new file - conf.d/security.conf)
Your message dated Wed, 02 Jul 2008 09:32:09 + with message-id [EMAIL PROTECTED] and subject line Bug#260063: fixed in apache2 2.2.9-3 has caused the Debian Bug report #260063, regarding apache2: suggestion to add new file - conf.d/security.conf to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 260063: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=260063 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2 Version: 2.0.50-5 Severity: wishlist Tags: security Perhaps there could be a separate configuration file that woould control the default security setings. I'm not sure if conf.d/ is meant solely for user settings, but it could be one possibility to include: conf.d/security.conf For a start, it could include statement: Files ~ \.htpasswd Order allow,deny Deny from all /Files Other settings that user could enable could be added in comments, like: #Directory / ## DENY by default. Later, Explicitly allow access to directories. #Order Deny,Allow #Deny from all #/Directory -- System Information: Debian Release: testing/unstable Architecture: i386 (i686) Kernel: Linux 2.4.26.20040601 Locale: LANG=C, LC_CTYPE=C (ignored: LC_ALL set to en_US) Versions of packages apache2 depends on: ii apache2-mpm-prefork 2.0.50-5 Traditional model for Apache2 -- debconf-show failed ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3 Distribution: unstable Urgency: low Maintainer: Debian Apache Maintainers debian-apache@lists.debian.org Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Apache HTTP Server metapackage apache2-dbg - Apache debugging symbols apache2-doc - Apache HTTP Server documentation apache2-mpm-event - Apache HTTP Server - event driven model apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model apache2-mpm-worker - Apache HTTP Server - high speed threaded model apache2-prefork-dev - Apache development headers - non-threaded MPM apache2-src - Apache source code apache2-suexec - Standard suexec program for Apache 2 mod_suexec apache2-suexec-custom - Configurable suexec
Bug#293519: marked as done (apache2-common: apache2-ssl-certificate configuration)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#293519: fixed in apache2 2.2.9-3 has caused the Debian Bug report #293519, regarding apache2-common: apache2-ssl-certificate configuration to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 293519: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=293519 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2-common Version: 2.0.52-3 Severity: wishlist I have a recommendations for apache2-ssl-certificate: Use a configuration file, perhaps /etc/apache2/ssl/apache.cnf, to store all of the information that the script currently prompts for. This simplifies the process of regenerating a new certificate in the future (this is currently done, for example, in courier-*-ssl). Charles -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (90, 'testing'), (80, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.4.26-1-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages apache2-common depends on: ii debconf 1.4.30.11Debian configuration management sy ii debianutils 2.8.4Miscellaneous utilities specific t ii libapr0 2.0.52-3 The Apache Portable Runtime ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an ii libdb4.24.2.52-17Berkeley v4.2 Database Libraries [ ii libexpat1 1.95.8-1 XML parsing C library - runtime li ii libldap22.1.30-3 OpenLDAP libraries ii libmagic1 4.12-1 File type determination library us ii libssl0.9.7 0.9.7e-2 SSL shared libraries ii mime-support3.28-1 MIME files 'mime.types' 'mailcap ii net-tools 1.60-10 The NET-3 networking toolkit ii openssl 0.9.7e-2 Secure Socket Layer (SSL) binary a ii ssl-cert1.0-11 Simple debconf wrapper for openssl ii zlib1g 1:1.2.2-3compression library - runtime -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev
Bug#488821: marked as done (apache2-suexec: suexec configuration change demands extensive system changes)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#488821: fixed in apache2 2.2.9-3 has caused the Debian Bug report #488821, regarding apache2-suexec: suexec configuration change demands extensive system changes to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 488821: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=488821 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2-suexec Version: suexec configuration change demands extensive system changes Severity: critical Justification: breaks unrelated software Your decision to suddenly change the minimum userid that suexec will allow breaks existing installations of totally unrelated software. This represents a non-trivial amount of work for system administrators to ameliorate---coordinating the changing of a uid and some unknown quantity of files. Please reconsider this action. -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.24-1-686 (SMP w/1 CPU core) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3 Distribution: unstable Urgency: low Maintainer: Debian Apache Maintainers debian-apache@lists.debian.org Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Apache HTTP Server metapackage apache2-dbg - Apache debugging symbols apache2-doc - Apache HTTP Server documentation apache2-mpm-event - Apache HTTP Server - event driven model apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model apache2-mpm-worker - Apache HTTP Server - high speed threaded model apache2-prefork-dev - Apache development headers - non-threaded MPM apache2-src - Apache source code apache2-suexec - Standard suexec program for Apache 2 mod_suexec apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec apache2-threaded-dev - Apache development headers - threaded MPM apache2-utils - utility programs for webservers apache2.2-common - Apache HTTP Server common
Bug#446765: marked as done (apache2.2-common: generate default cert/key and enable ssl)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#446765: fixed in apache2 2.2.9-3 has caused the Debian Bug report #446765, regarding apache2.2-common: generate default cert/key and enable ssl to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 446765: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=446765 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2-common Version: 2.0.43-1 Severity: wishlist The default ssl.conf looks something like: SSLSessionCache shm:/var/log/apache2/ssl_scache(128000) SSLMutex file:/var/log/apache2/ssl_mutex SSLRandomSeed startup file:/dev/urandom 512 SSLRandomSeed connect file:/dev/urandom 512 ErrorLog /var/log/apache2/ssl.log LogLevel debug By making a symlink in mods-enabled, I would assume that the module would be enabled; unfortunately, it's not. It would make sense to add something like the following to ssl.conf: SSLEngine on SSLCertificateFile conf/ssl.crt/server.crt SSLCertificateKeyFile conf/ssl.key/server.key The cert/key would need to be generated in the postinst, of course. -- System Information Debian Release: testing/unstable Architecture: i386 Kernel: Linux chunk 2.4.18-ac3 #1 Sun May 5 14:00:10 EDT 2002 i686 Locale: LANG=en_US, LC_CTYPE=en_US Versions of packages apache2-common depends on: ii debconf 1.2.10 Debian configuration management sy ii debianutils 1.16.7 Miscellaneous utilities specific t ii libapr0 2.0.43-1 The Apache Portable Runtime ii libc6 2.2.5-14.3 GNU C Library: Shared libraries an ii libgdbmg1 1.7.3-27.1 GNU dbm database routines (runtime ii libssl0.9.6 0.9.6g-6 SSL shared libraries ii libxmltok11.1-9 XML Parser Toolkit, runtime librar ii mime-support 3.19-1 MIME files 'mime.types' 'mailcap ii zlib1g1:1.1.4-6 compression library - runtime ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3 Distribution: unstable Urgency: low Maintainer: Debian Apache
Bug#395823: marked as done (Please document apache2-ssl-certificate renameing better)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#395823: fixed in apache2 2.2.9-3 has caused the Debian Bug report #395823, regarding Please document apache2-ssl-certificate renameing better to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 395823: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=395823 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2.2-common Severity: important The program apache2-ssl-certificate from apache2-common disappeared in apache2.2-common without explanation. ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3 Distribution: unstable Urgency: low Maintainer: Debian Apache Maintainers debian-apache@lists.debian.org Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Apache HTTP Server metapackage apache2-dbg - Apache debugging symbols apache2-doc - Apache HTTP Server documentation apache2-mpm-event - Apache HTTP Server - event driven model apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model apache2-mpm-worker - Apache HTTP Server - high speed threaded model apache2-prefork-dev - Apache development headers - non-threaded MPM apache2-src - Apache source code apache2-suexec - Standard suexec program for Apache 2 mod_suexec apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec apache2-threaded-dev - Apache development headers - threaded MPM apache2-utils - utility programs for webservers apache2.2-common - Apache HTTP Server common files Closes: 260063 267477 293469 293519 293524 314606 395823 398520 421802 446765 450831 457708 473982 486286 488821 Changes: apache2 (2.2.9-3) unstable; urgency=low . [ Stefan Fritsch ] * Move NameVirtualHost directive to ports.conf and switch from * to *:80. (Closes: #314606, #486286) * Comment out the CacheEnable line in disk_cache.conf. It would have caused problems with Etch to Lenny upgrades. * Change the minimum user id for suexec back to 100, the new value of 1000 was too disruptive for existing configurations. (Closes: #488821) * Add a default SSL virtual host.
Bug#267477: marked as done (ssl: some easy way to set up an ssl server (as apache-ssl package in apache 1))
Your message dated Wed, 02 Jul 2008 09:32:09 + with message-id [EMAIL PROTECTED] and subject line Bug#267477: fixed in apache2 2.2.9-3 has caused the Debian Bug report #267477, regarding ssl: some easy way to set up an ssl server (as apache-ssl package in apache 1) to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 267477: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=267477 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2 Version: 2.0.50-9 Severity: wishlist With apache 1 setting up an ssl apache server in debian was as easy as: apt-get install apache-ssl This way allowed non apache experts to set up an ssl server without needing to know apache configuration options and avoiding making configuration mistakes. I cannot find some similar thing in apache2 packages, an it seem it is not enough using a2enmod to load ssl, as I need some configuration options in /etc/apache2/apache2.conf. Some of them are placed in /etc/apache2/mods-available/ssl.conf but as I said, it does not seem to be enough loading ssl module with a2enmod to get a working ssl server. I prefer not messing with /etc/apache2/apache2.conf becouse I am sure package maintainer knows much more than me and I could break something. I have seen some people uses virtual hosts to have an ssl apache server listening on other port. Could it be as easy as adding a new file to /etc/apache2/sites-available/ to get apache server listening ssl on port 443? This file could be linked from /etc/apache2/sites-enabled/ by administrators like me to get it to work with no risk to break anything. This would be even cleaner than solution adopted in apache 1 packages becouse only one apache service in /etc/init.d would be used. thanks, txemi. -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.8-1-686 Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] Versions of packages apache2 depends on: ii apache2-mpm-prefork 2.0.50-9 Traditional model for Apache2 -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3
Bug#457708: marked as done (eliminate startup warnings)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#457708: fixed in apache2 2.2.9-3 has caused the Debian Bug report #457708, regarding eliminate startup warnings to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 457708: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457708 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2 Version: 2.2.6-3 Severity: minor Instead of the user having to search Google for ways to fix # apache2ctl start apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.0.1 for ServerName Could we instead have a configuration item [ ]use ___ [ ]use 'localhost' [ ]use contents of today's /etc/hostname [ ]use contents of /etc/hostname as found upon each start OK, but maybe those aren't fully qualified domain names. Anyway, this message should at least be addressed in the Debian docs without the user needing to search the Internet for a solution. ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3 Distribution: unstable Urgency: low Maintainer: Debian Apache Maintainers debian-apache@lists.debian.org Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Apache HTTP Server metapackage apache2-dbg - Apache debugging symbols apache2-doc - Apache HTTP Server documentation apache2-mpm-event - Apache HTTP Server - event driven model apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model apache2-mpm-worker - Apache HTTP Server - high speed threaded model apache2-prefork-dev - Apache development headers - non-threaded MPM apache2-src - Apache source code apache2-suexec - Standard suexec program for Apache 2 mod_suexec apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec apache2-threaded-dev - Apache development headers - threaded MPM apache2-utils - utility programs for webservers apache2.2-common - Apache HTTP Server common files Closes: 260063 267477 293469 293519 293524 314606 395823 398520 421802 446765 450831 457708 473982 486286 488821 Changes: apache2 (2.2.9-3) unstable; urgency=low . [ Stefan
Bug#314606: marked as done (consider moving NameVirtualHost option)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#314606: fixed in apache2 2.2.9-3 has caused the Debian Bug report #314606, regarding consider moving NameVirtualHost option to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 314606: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=314606 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2 Version: 2.0.54-4 Severity: wishlist Some advanced webserver will probably have the 'default' site disabled. If named virtual hosts are used, this causes a problem, since NameVirtualHost * is specified therein. Please consider moving this option to conf.d/vhost.conf. Thanks, -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (600, 'testing'), (98, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.11-cirrus Locale: LANG=en_GB, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Versions of packages apache2 depends on: ii apache2-mpm-worker2.0.54-4 high speed threaded model for Apac -- no debconf information -- .''`. martin f. krafft [EMAIL PROTECTED] : :' :proud Debian developer, admin, user, and author `. `'` `- Debian - when you have better things to do than fixing a system Invalid/expired PGP subkeys? Use subkeys.pgp.net as keyserver! a mac is like a prostitute. sure they look good, but your wallet will feel a lot lighter after getting one. -- psychonate on irc signature.asc Description: Digital signature ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3 Distribution: unstable Urgency: low Maintainer: Debian Apache Maintainers debian-apache@lists.debian.org Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Apache HTTP Server metapackage apache2-dbg - Apache debugging symbols apache2-doc - Apache HTTP Server documentation apache2-mpm-event - Apache HTTP Server - event driven model apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model apache2-mpm-worker - Apache HTTP Server - high speed threaded model apache2-prefork-dev -
Bug#450831: marked as done (apache2-mpm-prefork: apache does not start with: No space left on device: mod_rewrite: could not create rewrite_log_lock error)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#450831: fixed in apache2 2.2.9-3 has caused the Debian Bug report #450831, regarding apache2-mpm-prefork: apache does not start with: No space left on device: mod_rewrite: could not create rewrite_log_lock error to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 450831: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=450831 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2-mpm-prefork Version: 2.2.6-1 Severity: normal Today on my box apache was down and did not start any more, this was the error from the logs: [crit] (28)No space left on device: mod_rewrite: could not create rewrite_log_lock Configuration Failed But there was plenty of space on the file system. After googling around a bit I discovered the problem was in the semaphores and a way to solve the problem is: ipcs -s | grep www-data | awk ' { print $2 } ' | xargs ipcrm sem So I suppose there is a memory leak somewhere. -- System Information: Debian Release: lenny/sid APT prefers stable APT policy: (500, 'stable'), (200, 'testing'), (50, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 2.6.21-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages apache2-mpm-prefork depends on: ii apache2. 2.2.6-2 Next generation, scalable, extenda ii libapr1 1.2.7-8.2 The Apache Portable Runtime Librar ii libaprut 1.2.7+dfsg-2The Apache Portable Runtime Utilit ii libc62.6.1-1 GNU C Library: Shared libraries ii libdb4.4 4.4.20-8Berkeley v4.4 Database Libraries [ ii libexpat 1.95.8-3.4 XML parsing C library - runtime li ii libldap2 2.1.30-13.3 OpenLDAP libraries ii libpcre3 6.7-1 Perl 5 Compatible Regular Expressi ii libpq5 8.2.4-2 PostgreSQL C client library ii libsqlit 3.4.2-2 SQLite 3 shared library ii libuuid1 1.39+1.40-WIP-2006.11.14+dfsg-2 universally unique id library apache2-mpm-prefork recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common
Bug#473982: marked as done (apache2-mpm-prefork: Logrotate complains about APACHE_PID_FILE)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#473982: fixed in apache2 2.2.9-3 has caused the Debian Bug report #473982, regarding apache2-mpm-prefork: Logrotate complains about APACHE_PID_FILE to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 473982: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=473982 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2-mpm-prefork Version: 2.2.8-1 Severity: normal The log rotation does'nt go well. apache2 continued to write in /var/log/apache2/error.log.1 until I restart it. I have received this mail from root : From [EMAIL PROTECTED] Tue Mar 25 16:18:48 2008 Envelope-to: [EMAIL PROTECTED] Delivery-date: Tue, 25 Mar 2008 16:18:48 +0100 From: Anacron [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: Anacron job 'cron.daily' on arachne3 Date: Tue, 25 Mar 2008 16:18:48 +0100 /etc/cron.daily/logrotate: ERROR: APACHE_PID_FILE needs to be defined in /etc/apache2/envvars error: error running shared postrotate script for /var/log/apache2/*.log run-parts: /etc/cron.daily/logrotate exited with return code 1 I have done what is suggested i.e. edit /etc/apache2/envvars adding APACHE_PID_FILE=/var/run/apache2.pid export APACHE_PID_FILE I must wait now a week for the change to take an effect. -- Package-specific info: List of enabled modules from 'apache2 -M': alias auth_basic authn_file authz_default authz_groupfile authz_host authz_user autoindex cgi dir env mime negotiation php5 setenvif status -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.24-1-686 (SMP w/2 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages apache2-mpm-prefork depends on: ii apache2.2-common 2.2.8-1 Next generation, scalable, extenda ii libapr11.2.11-1 The Apache Portable Runtime Librar ii libaprutil11.2.12+dfsg-3 The Apache Portable Runtime Utilit ii libc6 2.7-6 GNU C Library: Shared libraries ii libpcre3 7.4-1+lenny1 Perl 5 Compatible Regular Expressi apache2-mpm-prefork recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary:
Bug#421802: marked as done (apache2: ssl.conf dropped IE workarounds)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#421802: fixed in apache2 2.2.9-3 has caused the Debian Bug report #421802, regarding apache2: ssl.conf dropped IE workarounds to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 421802: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=421802 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2 Version: 2.2.3-4 Severity: normal For no apparent reason, the following IE support lines were removed from mods-available/ssl.conf in the transition from sarge to etch: SetEnvIf User-Agent .*MSIE.* \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 Doing so breaks file downloads over SSL for a percentage of IE users. Adding the lines back in solves the problem. Given that Apache 2.x upstream still has these lines in their default config: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/docs/conf/extra/httpd-ssl.conf.in?revision=515485view=markup ...and that this change is likely to cause problems for many people using Apache to serve files to IE users, can we have those lines back please? -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (700, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-4-686 Locale: LANG=en_GB, LC_CTYPE=en_GB (charmap=ISO-8859-1) Versions of packages apache2 depends on: ii apache2-mpm-worker2.2.3-4High speed threaded model for Apac apache2 recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3 Distribution: unstable Urgency: low Maintainer: Debian Apache Maintainers debian-apache@lists.debian.org Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Apache HTTP Server metapackage apache2-dbg - Apache debugging symbols apache2-doc - Apache HTTP Server documentation apache2-mpm-event - Apache HTTP Server - event driven model apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model apache2-mpm-worker - Apache HTTP Server - high speed threaded model
Bug#486286: marked as done (/etc/apache2/sites-available/default: Put NameVirtualHost in ports.conf and correct the syntax)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#486286: fixed in apache2 2.2.9-3 has caused the Debian Bug report #486286, regarding /etc/apache2/sites-available/default: Put NameVirtualHost in ports.conf and correct the syntax to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 486286: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=486286 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2.2-common Version: 2.2.8-5 Severity: normal File: /etc/apache2/sites-available/default Hi, Currently if you want to use NameVirtualHost you have to have enabled the 'default' site that ships with the package. Whilst many sites will be okay with that, it would be more useful if 'NameVirtualHost *:80' was located in ports.conf. As well, you could also then have 'NameVirtualHost *:443' in ports.conf so that SSL SNI (Server Name Indication) would work, eventually, work out of the box. One other change you need to do if you do these suggested changes is change the virtualhost syntax in 'default' to be: VirtualHost *:80 Otherwise you get this error message: [Sun Jun 15 09:36:10 2008] [error] VirtualHost *:80 -- mixing * ports and non-* ports with a NameVirtualHost address is not supported, proceeding with undefined results Thanks, Anand -- Package-specific info: Config file syntax check failed. List of /etc/apache2/mods-enabled/*.load: alias auth_basic authn_file authz_default authz_groupfile authz_host authz_user autoindex cgi dir env fastcgi include mime negotiation perl php5 rewrite setenvif ssl status userdir -- System Information: Debian Release: lenny/sid APT prefers testing APT policy: (650, 'testing'), (600, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.25-2-686 (SMP w/1 CPU core) Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages apache2.2-common depends on: ii apache2-utils 2.2.8-5 utility programs for webservers ii libapr11.2.12-3 The Apache Portable Runtime Librar ii libaprutil11.2.12+dfsg-6 The Apache Portable Runtime Utilit ii libc6 2.7-12GNU C Library: Shared libraries ii libmagic1 4.24-2File type determination library us ii libssl0.9.80.9.8g-10.1 SSL shared libraries ii lsb-base 3.2-12Linux Standard Base 3.2 init scrip ii mime-support 3.43-1MIME files 'mime.types' 'mailcap ii net-tools 1.60-19 The NET-3 networking toolkit ii perl 5.10.0-10 Larry Wall's Practical Extraction ii procps 1:3.2.7-8 /proc file system utilities ii zlib1g 1:1.2.3.3.dfsg-12 compression library - runtime apache2.2-common recommends no packages. Versions of packages apache2.2-common is related to: pn apache2-mpm-event none (no description available) pn apache2-mpm-itk none (no description available) ii apache2-mpm-prefork 2.2.8-5Traditional model for Apache HTTPD pn apache2-mpm-workernone (no description available) -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to
Bug#398520: marked as done (missing /usr/sbin/apache2-ssl-certificate)
Your message dated Wed, 02 Jul 2008 09:32:10 + with message-id [EMAIL PROTECTED] and subject line Bug#398520: fixed in apache2 2.2.9-3 has caused the Debian Bug report #398520, regarding missing /usr/sbin/apache2-ssl-certificate to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [EMAIL PROTECTED] immediately.) -- 398520: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=398520 Debian Bug Tracking System Contact [EMAIL PROTECTED] with problems ---BeginMessage--- Package: apache2 Version: 2.2.3-3 Severity: normal hi there, i am using debian etch and can not find the script for generating an self signed ssl certificate. it is no problem to create an self signed ssl certificate or better use ca cert, but it is easier to use a script. with kindly regards dennis hoppe -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-686 Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Versions of packages apache2 depends on: ii apache2-mpm-prefork 2.2.3-3Traditional model for Apache HTTPD apache2 recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.9-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-dbg_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-dbg_2.2.9-3_i386.deb apache2-doc_2.2.9-3_all.deb to pool/main/a/apache2/apache2-doc_2.2.9-3_all.deb apache2-mpm-event_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.9-3_i386.deb apache2-mpm-prefork_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.9-3_i386.deb apache2-mpm-worker_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.9-3_i386.deb apache2-prefork-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.9-3_i386.deb apache2-src_2.2.9-3_all.deb to pool/main/a/apache2/apache2-src_2.2.9-3_all.deb apache2-suexec-custom_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec-custom_2.2.9-3_i386.deb apache2-suexec_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-suexec_2.2.9-3_i386.deb apache2-threaded-dev_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.9-3_i386.deb apache2-utils_2.2.9-3_i386.deb to pool/main/a/apache2/apache2-utils_2.2.9-3_i386.deb apache2.2-common_2.2.9-3_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.9-3_i386.deb apache2_2.2.9-3.diff.gz to pool/main/a/apache2/apache2_2.2.9-3.diff.gz apache2_2.2.9-3.dsc to pool/main/a/apache2/apache2_2.2.9-3.dsc apache2_2.2.9-3_all.deb to pool/main/a/apache2/apache2_2.2.9-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 02 Jul 2008 10:15:57 +0200 Source: apache2 Binary: apache2.2-common apache2-mpm-worker apache2-mpm-prefork apache2-mpm-event apache2-utils apache2-suexec apache2-suexec-custom apache2 apache2-doc apache2-prefork-dev apache2-threaded-dev apache2-src apache2-dbg Architecture: source i386 all Version: 2.2.9-3 Distribution: unstable Urgency: low Maintainer: Debian Apache Maintainers debian-apache@lists.debian.org Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Apache HTTP Server metapackage apache2-dbg - Apache debugging symbols apache2-doc - Apache HTTP Server documentation apache2-mpm-event - Apache HTTP Server - event driven model apache2-mpm-prefork - Apache HTTP Server - traditional non-threaded model apache2-mpm-worker - Apache HTTP Server - high speed threaded model apache2-prefork-dev - Apache development headers - non-threaded MPM apache2-src - Apache source code apache2-suexec - Standard suexec program for Apache 2 mod_suexec apache2-suexec-custom - Configurable suexec program for Apache 2 mod_suexec apache2-threaded-dev - Apache development headers - threaded MPM apache2-utils - utility programs for webservers apache2.2-common - Apache HTTP Server common files Closes: 260063 267477 293469 293519
Bug#485525: Same bug with 2.2.9-2
Hello, I have exactly hesame bug with Root rayleigh:[~] dpkg-query -l apache2* | grep ^ii ii apache2 2.2.9-2 Apache HTTP Server metapackage ii apache2-mpm-prefork 2.2.9-2 Apache HTTP Server - traditional non-threade ii apache2-utils 2.2.9-2 utility programs for webservers ii apache2.2-common2.2.9-2 Apache HTTP Server common files Root rayleigh:[~] I have install a SVN repository over https. Sometimes it works, sometimes it does not : rayleigh:[~/jcollab/svn] svn --username bertrand --password co https://rayleigh.systella.fr/svn/pc30/branches/PC30-prod-1.0/ Révision 397 extraite. rayleigh:[~/jcollab/svn] svn --username bertrand --password co https://rayleigh.systella.fr/svn/pc30/branches/PC30-prod-1.0/ svn: Échec de la requête PROPFIND sur '/svn/pc30/branches/PC30-prod-1.0' svn: PROPFIND de '/svn/pc30/branches/PC30-prod-1.0': Could not send request body: SSL socket write failed (https://rayleigh.systella.fr) Each time request fails, apache2 writes in log : == error.log == [Wed Jul 02 13:41:03 2008] [notice] child pid 18654 exit signal Bus error (10) Regards, JKB -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#485525: Same bug with 2.2.9-2
On Wednesday 02 July 2008, BERTRAND Joël wrote: Root rayleigh:[~] dpkg-query -l apache2* | grep ^ii ii apache2 2.2.9-2 Apache HTTP Server metapackage ii apache2-mpm-prefork 2.2.9-2 Apache HTTP Server - traditional non-threade ii apache2-utils 2.2.9-2 utility programs for webservers ii apache2.2-common2.2.9-2 Apache HTTP Server common files Is this SPARC, too? If no, what architecture do you use? What versions of libapr1, libaprutil1, libsvn1, libapache2-svn do you have installed? Each time request fails, apache2 writes in log : == error.log == [Wed Jul 02 13:41:03 2008] [notice] child pid 18654 exit signal Bus error (10) Can you provide a backtrace as per /usr/share/doc/apache2.2-common/README.backtrace ? Thanks. Cheers, Stefan -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#485525: Same bug with 2.2.9-2
Stefan Fritsch a écrit : On Wednesday 02 July 2008, BERTRAND Joël wrote: Root rayleigh:[~] dpkg-query -l apache2* | grep ^ii ii apache2 2.2.9-2 Apache HTTP Server metapackage ii apache2-mpm-prefork 2.2.9-2 Apache HTTP Server - traditional non-threade ii apache2-utils 2.2.9-2 utility programs for webservers ii apache2.2-common2.2.9-2 Apache HTTP Server common files Is this SPARC, too? If no, what architecture do you use? What versions of libapr1, libaprutil1, libsvn1, libapache2-svn do you have installed? On sparc64 (lenny up to date). Server is an U60 (dual US-II/450, 1GB, system on raid1-soft). Versions : ii libapr11.2.12-4 The Apache Portable Runtime Library ii libaprutil11.2.12+dfsg-3 The Apache Portable Runtime Utility Library ii libsvn11.4.6dfsg1-4 Shared libraries used by Subversion ii libapache2-svn 1.4.6dfsg1-4 Subversion server modules for Apache Each time request fails, apache2 writes in log : == error.log == [Wed Jul 02 13:41:03 2008] [notice] child pid 18654 exit signal Bus error (10) Can you provide a backtrace as per /usr/share/doc/apache2.2-common/README.backtrace ? Thanks. Program terminated with signal 10, Bus error. #0 0xf6975d60 in shmcb_expire_division (s=0x0, queue=0xf6980400, cache=0xffa1e904) at /build/buildd/apache2-2.2.9/modules/ssl/ssl_scache_shmcb.c:294 294 /build/buildd/apache2-2.2.9/modules/ssl/ssl_scache_shmcb.c: No such file or directory. in /build/buildd/apache2-2.2.9/modules/ssl/ssl_scache_shmcb.c (gdb) bt full #0 0xf6975d60 in shmcb_expire_division (s=0x0, queue=0xf6980400, cache=0xffa1e904) at /build/buildd/apache2-2.2.9/modules/ssl/ssl_scache_shmcb.c:294 idx = value optimized out now = value optimized out loop = 4158633752 index_num = value optimized out pos_count = value optimized out new_pos = value optimized out #1 0xf940 in ?? () No symbol table info available. #2 0xf944 in ?? () No symbol table info available. Backtrace stopped: previous frame identical to this frame (corrupt stack?) (gdb) Regards, JKB -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#488821: DSpam example
Hi ! I just want to add my own experience on this change :) I use the dspam-webfrontend debian package, and unfortunately, it has to run as the dspam user/group, as I won't allow www-data to have access to the dspam configuration files. dspam has id number 102. Changing the suexec to id 1000 totally breaks this package, and since I'm on testing, I'll have to wait or use another web server. Anyway, thanks for reconsidering your choice, even if I totally understand why you did that. Apache2-* debian packages are really useful and really (often ;) ) bug free, and it has to be stressed :) Adrien -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: found 485525 in 2.2.9-2
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.33 found 485525 2.2.9-2 Bug#485525: apache2 crashing with SIGBUS Bug marked as found in version 2.2.9-2 and reopened. End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#488821: DSpam example
On Wednesday 02 July 2008, Adrien Clerc wrote: and since I'm on testing, I'll have to wait or use another web server. You can manually download and install just the apache2-suexec package from unstable. No need to upgrade the rest of apache. Cheers, Stefan -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]