Bug#880421: document a2* environment files in man page
Package: apache2
Version: 2.4.29-1
Severity: minor
Tags: patch
Hi,
please consider the following patch to the a2enmod.8 manual page, and
probably for the other a2* man pages as well:
--- a2enmod.8.orig 2017-10-31 12:44:50.637454116 +0100
+++ a2enmod.8 2017-10-31 12:57:25.827865519 +0100
@@ -79,6 +79,28 @@
module, and disables the
.B mod_mime_magic
module.
+.SH "ENVIRONMENT"
+.sp
+The following environment variables may be specified\&.
+.sp
+.TP
+.B dir_suffix
+Distinguish different instances of apache2. Suffixes /etc/apache2 to build a
new APACHE_CONFDIR
+.TP
+.B APACHE_CONFDIR
+Override the entire configuraation directory (/etc/apache2$dir_suffix)
+.TP
+.B APACHE_ENVVARS
+Override the default envvars file (/etc/apache2$dir_suffix/envvars)
+.TP
+.B APACHE_{MODS,CONF,SITES}_AVAIL
+Override the path to the directory holding the available snippets for modules,
configuration and sites.
+.TP
+.B APACHE_{MODS,CONF,SITES}_ENABLED
+Override the path to the directory holding the enabled snippets for modules,
configuration and sites. For example, in a multi-instance setup, you can set
dir_suffix=-myinstance and override APACHE_MODS_AVAIL back to
/etc/apache2/mods-available to have a single store of snippets for all instances
+.TP
+.B APACHE_STATE_DIRECTORY
+Override the path to the state directory (/var/lib/apache2)
.SH FILES
.TP
.B /etc/apache2/mods-available
Bug#562583: apache2.2-common: new init.d script pidof_apache function
Package: apache2.2-common
Version: 2.2.14-3
Severity: wishlist
Hi,
please consider this new pidof_apache function for the init.d script:
pidof_apache() {
# if there is actually an apache2 process whose pid is in PIDFILE,
# print it and return 0.
if [ -e "$PIDFILE" ]; then
if pidof apache2 | tr ' ' '\n' | grep $(cat $PIDFILE); then
return 0
else
return 1
fi
fi
return 1
}
This has the advantage of not explicitly iterating through all existing
apache2 processes, which makes -x output much easier readable. I am
sure that the if construct can be written more elegantly though.
Greetings
Marc
--
To UNSUBSCRIBE, email to debian-apache-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Bug#466367: apache2.2-common: conffile question during upgrade
Package: apache2.2-common Version: 2.2.8-1 Severity: normal Hi, piuparts -d etch -d lenny fails when the package being tested pulls in apache2, because dpkg issues a "conffile changed" question for /etc/default/apache2 during apache2.2-common update, even if the file was not changed since etch's apache2 was installed. This makes the automated update fail. If you absolutely have to mess with your dpkg-conffiles, please do it in a way that doesn't break an important test tool. Greetings Marc -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.24.2-zgsrv (SMP w/1 CPU core; PREEMPT) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#349709: fixed in apache2 2.2.8-1
Hi,
you wrote:
>* Move the configuration of User, Group, and PidFile to
> /etc/apache2/envvars. This makes it easier to use these settings in
> scripts. /etc/apache2/envvars can now also be used to influence
> apache2ctl
> (inspired by Marc Haber's patch). (Closes: #349709, #460105, #458085)
Thanks for patching. To me, it looks like you forgot to patch the
HTTPD call in the *) case in the last five lines of apachectl, which
IMO needs an ${APACHE_ARGUMENTS} as well. Or am I missing something
and you left out this change on purpose?
Greetings
Marc
--
-----
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#448754: /usr/bin/htpasswd: please give batchable option
On Wed, Oct 31, 2007 at 05:13:00PM +0100, Stefan Fritsch wrote: > htpasswd is missing a feature there to get the password from a file > descriptor. Or from a pipe. This is an upstream issue, can you pass it onwards? > What the manpage means is probably that one should use -b only when > necessary. From a shell script the use of -b might be acceptable > because the password will not be put into .bash_history and htpasswd > runs only for a very short time (so it's difficult to get the > password with ps). It is still ugly. > A real workaround would be to feed the password to htpasswd with socat > (search for ssh in the socat man page for an example), but this is > IMHO not suitable for a postinst because of the added dependency. And it is even more ugly. Greetings Marc -- ----- Marc Haber | "I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 3221 2323190 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#448754: /usr/bin/htpasswd: please give batchable option
Package: apache2-utils Version: 2.2.6-2 Severity: normal File: /usr/bin/htpasswd Hi, the man page for htpasswd discourages use of -b, because the password is visible on the command line. That's ok. However, how is one supposed to set a htpasswd password from a shell script (like a package postinst) if -b is discouraged? Piping a password to htpasswd does not seem to work either. Please advise and document. Greetings Marc -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.23.1-scyw00225 (PREEMPT) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages apache2-utils depends on: ii libapr1 1.2.11-1 The Apache Portable Runtime Librar ii libaprutil1 1.2.7+dfsg-2+b1 The Apache Portable Runtime Utilit ii libc6 2.6.1-6 GNU C Library: Shared libraries ii libdb4.44.4.20-11Berkeley v4.4 Database Libraries [ ii libexpat1 1.95.8-4 XML parsing C library - runtime li ii libldap22.1.30.dfsg-13.5 OpenLDAP libraries ii libpcre37.3-2Perl 5 Compatible Regular Expressi ii libpq5 8.2.5-2 PostgreSQL C client library ii libsqlite3-03.4.2-2 SQLite 3 shared library ii libssl0.9.8 0.9.8g-1 SSL shared libraries ii libuuid11.40.2-1 universally unique id library apache2-utils recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#392646: Re: Bug#392646: apache2.2-common: doesn't start, child processes segfault
severity #392646 serious thanks On Thu, Oct 12, 2006 at 08:33:40PM +0200, Tollef Fog Heen wrote: > John Fry skrev: > >Since I upgraded to apache2 on unstable, apache fails to start after > >trying to spawn a bunch of child processes. Here's a snippet from > >/var/log/apache2/error.log: > > Known bug in apr; it doesn't work correctly with 2.4 kernels. Which is an RC bug, according to the release team. Partial upgrades need to be supported, it is a non-option to leave people without a working apache after upgrading apache from sarge to etch before the kernel is upgraded. Greetings Marc -- ----- Marc Haber | "I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#366124: apache2: should mark its listening socket close-on-exec
Package: apache2 Severity: wishlist Hi, the exim4 maintainers have received an increasing number of support cases where apache wouldn't start because there was an exim process listening on port 80. People keep suggesting a compromised exim and worse things. Only explanation I can come up with is the following: (1) apache or something running inside the apache process (maybe a php script using mail()) sends e-mail using /usr/lib/sendmail. (2) exim, invoked as /usr/lib/sendmail, inherits the listening socket. (3) exim cannot deliver the message right away and stays around (maybe teergrubed) (4) while exim is still around, apache dies for some reason (5) The newly started apache cannot bind to port 80 since it is still held by the exim process exec()ed in (2). I am told by one of the exim developers that the most easy way to avoid this behavior would be to have apache mark its listening socket close-on-exec to avoid exim inheriting the socket. I'd like to hear your comments. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.16.14-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#353450: apache2-common: new init script allowing more flexibility
Package: apache2-common Severity: wishlist Hi, please consider the attached new init script. It extends functionality to: - accepts additional parameter: If a path to an apache config file is given on the command line (as /etc/init.d/apache2 start /home/apache-foo/etc/apache2.conf), handle daemon configured with the given config file. - invoke daemon with sanitized environment - pull paths to pid, run and lock files from the apache configuration This allows the init script to handle multiple daemons running on the same host. The also attached file apache2-local, suiteable for doc/examples, allows holders of local shell accounts to run their own apache process under their own uid, controlled by ~/.apache2-local. The combination of these two scripts is useful in a setting where a number of web applications are to be run in their own apache process (listening on a high port on 127.0.0.1), with the "main" apache process on port 80 is reverse proxy to make the local apaches reachable from the Internet. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15.4-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) apache2 Description: application/shellscript apache2-local Description: application/shellscript
Bug#350286: apache2-common: why is the apache2 pid file not in /var/run/apache2?
On Sat, Jan 28, 2006 at 11:15:52PM +, Adam Conrad wrote: > Marc Haber wrote: > > why is apache2 configured to write its pid to /var/run/apache2.pid > > instead of /var/run/apache2/apache2.pid? Is that an oversight in > > packaging or am I missing something? > > You're missing the fact that, while the current location isn't ideal, > it's a serious pain in the ass to FIX it now, because it requires > unconditionally running sed across people's config files. Which is not > generally considered nice. Agreed. Please document this "misplacement" so that people stop wondering about it. Greetings Marc -- ----- Marc Haber | "I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#350286: apache2-common: why is the apache2 pid file not in /var/run/apache2?
Package: apache2-common Severity: wishlist Hi, why is apache2 configured to write its pid to /var/run/apache2.pid instead of /var/run/apache2/apache2.pid? Is that an oversight in packaging or am I missing something? Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15.1-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#350285: apache2-common: there should be a possibility to access the parsed configuration
Package: apache2-common Severity: wishlist Tags: upstream Hi, the init script goes to some lengths to find out about the contents of the PidFile directive. It currently supports one-level includes, but no deeper include recursion and no conditionals. Implementing this outside apache is tedious, error prone, and it is actually re-implementing code that is already present in the apache code itself. Upstream should be asked to deliver a command line option that makes apache parse the configuration (honoring -D, -d, -f, -C and -c) and dump the parsed configuration to stdout, optionally with a possibility to select only parts of configuration to be printed. exim 4 does this very nicely, refer to /usr/share/doc/exim4-base/spec.txt.gz's documentation of the -bP option for inspiration. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15.1-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#349716: apache2-common: please consider giving a2[en|dis][mod|site] more flexibility
tags #349716 patch
thanks
On Tue, Jan 24, 2006 at 09:38:04PM +0100, Marc Haber wrote:
> I would like to submit a complete rewrite for a2[en|dis][mod|site].
Attached.
Greetings
Marc
--
-----
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835
#!/bin/sh -e
if [ -z "$SYSCONFDIR" ]; then
SYSCONFDIR='/etc/apache2'
fi
if [ -z "$LOCCONFDIR" ]; then
LOCCONFDIR="$SYSCONFDIR"
fi
if [ -z "$INITSCRIPT" ]; then
INITSCRIPT="/etc/init.d/apache2"
fi
case "$(basename $0)" in
a2enmod) OBJ="module"; ACT="enable";;
a2dismod) OBJ="module"; ACT="disable";;
a2ensite) OBJ="site"; ACT="enable";;
a2dissite) OBJ="site"; ACT="disable";;
*) echo >&2 "$0 call name unknown"; exit 1 ;;
esac
case "$OBJ" in
module) PRIORITY=""
NAME="Module"; DIR="mods"; SFFX=".load";
RELOAD="force-reload";;
site) NAME="Site"; DIR="sites"; SFFX=""; RELOAD="reload";;
*) echo >&2 "unexpected OBJ value $OBJ"; exit 1;;
esac
if [ -z "$AVAILDIR" ]; then
AVAILDIR="$SYSCONFDIR/$DIR-available"
fi
if [ -z "$ENABLDIR" ]; then
ENABLDIR="$LOCCONFDIR/$DIR-enabled"
fi
if [ -z $1 ]; then
echo "Which $OBJ would you like to ${ACT}?"
echo -n "Your choices are: "
find $AVAILDIR -name "*$SFFX" -mindepth 1 -maxdepth 1 \
-exec basename '{}' $SFFX \; | tr '\n' ' '
echo
echo -n "$NAME name? "
read ACTON
else
ACTON=$1
fi
#figure out if we're on a prefork or threaded mpm
if [ -x /usr/sbin/apache2 ]; then
PREFORK=`/usr/sbin/apache2 -l | grep prefork || true`
fi
if [ "$OBJ" = "module" ] && [ "$ACTON" = "cgi" ] && [ -z "$PREFORK" ]; then
ACTON="cgid"
fi
if [ "$OBJ" = "site" ] && [ "$ACTON" = "default" ]; then
PRIORITY="000-"
fi
if [ "$ACT" = "enable" ]; then
if [ -e "$ENABLDIR/$PRIORITY$ACTON$SFFX" ]; then
echo "This $OBJ is already enabled!"
exit 0
fi
if ! [ -e "$AVAILDIR/$ACTON$SFFX" ]; then
echo "This $OBJ does not exist!"
exit 1
fi
fi
if [ "$ACT" = "disable" ]; then
if ! [ -e "$ENABLDIR/$PRIORITY$ACTON$SFFX" ]; then
echo "This $OBJ is already disabled, or does not exist!"
exit 1
fi
fi
if [ "$OBJ" = "module" ] && [ "$ACT" = "enable" ]; then
for i in conf load; do
if [ -e "$AVAILDIR/$ACTON.$i" -a ! -e "$ENABLDIR/$ACTON.$i" ];
then
ln -sf "$AVAILDIR/$ACTON.$i" "$ENABLDIR/$ACTON.$i"
fi
done
elif [ "$OBJ" = "site" ] && [ "$ACT" = "enable" ]; then
ln -sf $AVAILDIR/$ACTON $ENABLDIR/$PRIORITY$ACTON
elif [ "$OBJ" = "module" ] && [ "$ACT" = "disable" ]; then
rm -f "$ENABLDIR/$ACTON.conf" "$ENABLDIR/$ACTON.load"
elif [ "$OBJ" = "site" ] && [ "$ACT" = "disable" ]; then
rm -f "$ENABLDIR/$PRIORITY$ACTON"
fi
echo "$NAME $ACTON ${ACT}d; run $INITSCRIPT $RELOAD to activate."
exit 0
Bug#349709: apache2-common: please add more flexibility to apache2ctl
tags #349709 patch thanks On Tue, Jan 24, 2006 at 08:55:30PM +0100, Marc Haber wrote: > I would like to submit a patch Attached. Greetings Marc -- ----- Marc Haber | "I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835 --- /usr/sbin/apache2ctl2005-09-05 13:10:28.0 +0200 +++ ./apache2ctl2006-01-24 21:20:32.0 +0100 @@ -41,27 +41,30 @@ # # # the path to your httpd binary, including options if necessary -HTTPD='/usr/sbin/apache2' +test -z "$HTTPD" && HTTPD='/usr/sbin/apache2' # +# the path to the environment variable file +test -z "$ENVVARS" && ENVVARS='/etc/apache2/envvars' + # pick up any necessary environment variables -if test -f /etc/apache2/envvars; then - . /etc/apache2/envvars +if test -f "$ENVVARS"; then + . $ENVVARS fi # # a command that outputs a formatted text version of the HTML at the # url given on the command line. Designed for lynx, however other # programs may work. -LYNX="www-browser -dump" +test -z "$LYNX" && LYNX="www-browser -dump" # # the URL to your server's mod_status status page. If you do not # have one, then status and fullstatus will not work. -STATUSURL="http://localhost:80/server-status"; +test -z "$STATUSURL" && STATUSURL="http://localhost:80/server-status"; # # Set this variable to a command that increases the maximum # number of file descriptors allowed per child process. This is # critical for configurations that use many file descriptors, # such as mass vhosting, or a multithreaded server. -ULIMIT_MAX_FILES="ulimit -S -n `ulimit -H -n`" +test -z "$ULIMIT_MAX_FILES" && ULIMIT_MAX_FILES="ulimit -S -n `ulimit -H -n`" # # END CONFIGURATION SECTION @@ -77,15 +80,15 @@ case $ARGV in start|stop|restart|graceful) -$HTTPD -k $ARGV +$HTTPD -k $ARGV $HTTPD_ARGS ERROR=$? ;; startssl|sslstart|start-SSL) -$HTTPD -k start -DSSL +$HTTPD -k start -DSSL $HTTPD_ARGS ERROR=$? ;; configtest) -$HTTPD -t +$HTTPD -t $HTTPD_ARGS ERROR=$? ;; status) @@ -95,9 +98,8 @@ $LYNX $STATUSURL ;; *) -$HTTPD $ARGV +$HTTPD $ARGV $HTTPD_ARGS ERROR=$? esac exit $ERROR -
Bug#349709: apache2-common: please add more flexibility to apache2ctl
Package: apache2-common Severity: wishlist Hi, apache2ctl has, for a non-conffile script, a lot of things hardcoded without giving the local admin possibilities to interfere. I would like to submit a patch which allows: * passing arguments to the actual daemon * overriding the HTTPD, LYNX, STATUSURL and ULIMIT_MAX_FILES environment variables from * the startup environment and/or * the environment variable file * reading environment variables from a file different from /etc/apache/envvars These changes will be relatively minor, but are necessary to use apache2ctl to invoke multiple instances of apache2, for example in setups where different web applications get different apache2 instances for security purposes. Please indicate whether a patch like this would have a chance to be included into the package. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#349716: apache2-common: please consider giving a2[en|dis][mod|site] more flexibility
Package: apache2-common Severity: wishlist Hi, I would like to submit a complete rewrite for a2[en|dis][mod|site]. The script don't seem to be a good example for code reuse, so I'd like to wrap up all scripts' functionality into a single script which determines what to do from the name it has been called at. It would, of course, be fully compatible on the command line. I would also love to add the possibility to have the -enabled and the -available directories in two different directories, so that a second instance of apache could run off the same -available directories while writing the -enable links somewhere else. This patch would probably consist of splitting the SYSCONFDIR variable into AVAILDIR and ENABLEDIR, both defaulting to /etc/apache2, and overloadable from the caller environment. Please indicate whether you would be willing to accept the full rewrite, or would prefer a patch against the current scripts to add the split, or if you won't accept any changes. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#349708: apache2-common: apache2ctl startssl not documented in man page
Package: apache2-common Severity: minor Hi, the command apache2ctl startssl, as used by the init script, is not documented in the apache2ctl man page. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#342785: apache: purge fails if ucf was uninstalled
Package: apache Version: 1.3.34-1 Severity: normal dpkg --remove apache dpkg --remove ucf dpkg --purge apache in this case, the postrm fails because it wants to invoke ucf. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.14.3-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) Versions of packages apache depends on: ii apache-common 1.3.34-1 support files for all Apache webse ii debconf [debconf-2.0] 1.4.62 Debian configuration management sy ii libc6 2.3.5-8.1 GNU C Library: Shared libraries an ii libdb4.3 4.3.29-1 Berkeley v4.3 Database Libraries [ ii libexpat1 1.95.8-3 XML parsing C library - runtime li ii libmagic1 4.15-2 File type determination library us ii logrotate 3.7.1-2Log rotation utility ii lsb-base 3.0-12 Linux Standard Base 3.0 init scrip ii mime-support 3.35-1 MIME files 'mime.types' & 'mailcap ii perl 5.8.7-8Larry Wall's Practical Extraction apache recommends no packages. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#340947: apache2-common: standard path to virtual host document roots under /var/www?
Package: apache2-common Severity: wishlist Hi, suexec's default configuration forces cgi-scripts to be in /var/www, even for virtual hosts. otoh, /etc/apache2/sites-available/default has a quite liberal access policy and would allow access to /var/www/www.foo.example/htdocs via the default virtual host, which might not be desireable. Please consider having a default definition for a "virtual host directory" like /var/www/virtual-hosts, which has "deny from all" set in /etc/apache2/sites-available/default in the package version of the conffile: Options Indexes FollowSymLinks MultiViews AllowOverride None Order allow,deny allow from all # This directive allows us to have apache2's default start page # in /apache2-default/, but still have / go to the right place RedirectMatch ^/$ /apache2-default/ Order allow,deny deny from all Then, /var/www/virtual-hosts/www.foo.example could be used as document root for a virtual host without having it accessible from the default virtual host, and suexec could be used. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.14.2-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#312252: SuExec FHS compilance
reassign #312252 apache2-common thanks $ dpkg --search /usr/lib/apache2/suexec2 apache2-common: /usr/lib/apache2/suexec2 Reassign appropriately, thus hoping that the apache maintainers will at least comment. Greetings Marc -- - Marc Haber | "I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things."Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#340946: apache2-common: suexec2's standard configuration prevents suexec of /usr/lib/cgi-bin
Package: apache2-common Severity: wishlist Hi, suexec2's docroot being set to /var/www means that it is not possible to have cgi scripts that come from Debian packages (and thus are located in /usr/lib/cgi-bin as required by Debian policy and FHS) to be executed under suexec. Please consider compiling suexec2 with docroot=/ to remedy this, and to solve #312252 as well. I am, of course, open to any other solution that allows me to suexec cgi-scripts coming from Debian packages. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.14.2-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#334213: apache: asks debconf questions at setup time
Package: apache Version: 1.3.33-8 Severity: minor on current sid, the apache packages ask their debconf questions at dpkg setup time, not at dpkg config time which is before the unpacking of the packages begins. This is an indicator of a bug in the maintainer scrips and/or debconf packaging. Greetings Marc -- System Information: Debian Release: testing/unstable Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.13-zgsrv Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) Versions of packages apache depends on: ii apache-common 1.3.33-8 support files for all Apache webse ii debconf [debconf-2.0] 1.4.58 Debian configuration management sy ii libc6 2.3.5-6GNU C Library: Shared libraries an ii libdb4.2 4.2.52-20 Berkeley v4.2 Database Libraries [ ii libexpat1 1.95.8-3 XML parsing C library - runtime li ii libmagic1 4.12-1 File type determination library us ii logrotate 3.7.1-2Log rotation utility ii mime-support 3.35-1 MIME files 'mime.types' & 'mailcap ii perl 5.8.7-5Larry Wall's Practical Extraction apache recommends no packages. -- debconf information excluded -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#288050: needs to binary depend on openssl
Package: ssl-cert Version: 1.0-10 Severity: serious the package is missing a binary dependency on openssl, which makes calls to make-ssl-cert fail on system that do not have openssl installed. Greetings Marc -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.10-vash Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) Versions of packages ssl-cert depends on: ii debconf [debconf-2.0] 1.4.41 Debian configuration management sy -- debconf information excluded
Bug#288045: fails without error message on debconf database corruption
Package: ssl-cert Version: 1.0-10 Severity: normal File: /usr/sbin/make-ssl-cert Hi, if for some reason the debconf entries from config.dat go missing, make-ssl-cert fails without error message and return code 10. There should be an error message given. Greetings Marc -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.10-vash Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1) Versions of packages ssl-cert depends on: ii debconf [debconf-2.0] 1.4.41 Debian configuration management sy -- debconf information excluded
Bug#287692: insists on having all fields filled in
Package: ssl-cert
Version: 1.0-10
Severity: normal
I happen to be in Germany, a country which has states ("Laender"), but
where the fact in which state a locality is in is completely
unimportant for addressing purposes.
Despite of this, I am forced to enter a state or province name.
ssl-cert should accept empty fields.
Greetings
Marc
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.10-vash
Locale: LANG=C, LC_CTYPE=de_DE (charmap=ISO-8859-1)
Versions of packages ssl-cert depends on:
ii debconf [debconf-2.0] 1.4.41 Debian configuration management sy
-- debconf information excluded
Bug#270224: LogFormat directive probably incorrect
Package: apache
Version: 1.3.29.0.2-5
Severity: minor
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{forensic-id}n"" forensic
This looks like we're missing a \ between the %{forensic-id}n and the
quote.
Greetings
Marc
-- System Information:
Debian Release: 3.1
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.8.1-vash
Locale: LANG=C, LC_CTYPE=de_DE
Versions of packages apache depends on:
pn apache-commonNot found.
ii debconf 1.4.34 Debian configuration management sy
ii dpkg1.10.23 Package maintenance system for Deb
ii libc6 2.3.2.ds1-16 GNU C Library: Shared libraries an
ii libdb4.24.2.52-17Berkeley v4.2 Database Libraries [
ii libexpat1 1.95.6-8 XML parsing C library - runtime li
ii libmagic1 4.10-3 File type determination library us
ii libpam0g0.76-22 Pluggable Authentication Modules l
ii logrotate 3.7-2Log rotation utility
ii mime-support3.28-1 MIME files 'mime.types' & 'mailcap
ii perl5.8.4-2 Larry Wall's Practical Extraction
Bug#270219: httpd.conf: docs say LoadModule, line is Include
Package: apache Version: 1.3.29.0.2-5 Severity: minor httpd.conf says: # Please keep this LoadModule: line here, it is needed for installation. Include /etc/apache/modules.conf Shouldn't it say "Please keep this Include line here"? Greetigns Marc -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.8.1-vash Locale: LANG=C, LC_CTYPE=de_DE Versions of packages apache depends on: pn apache-commonNot found. ii debconf 1.4.34 Debian configuration management sy ii dpkg1.10.23 Package maintenance system for Deb ii libc6 2.3.2.ds1-16 GNU C Library: Shared libraries an ii libdb4.24.2.52-17Berkeley v4.2 Database Libraries [ ii libexpat1 1.95.6-8 XML parsing C library - runtime li ii libmagic1 4.10-3 File type determination library us ii libpam0g0.76-22 Pluggable Authentication Modules l ii logrotate 3.7-2Log rotation utility ii mime-support3.28-1 MIME files 'mime.types' & 'mailcap ii perl5.8.4-2 Larry Wall's Practical Extraction
Bug#270214: httpd.conf issues with mod_backtrace and mod_whatkilledus
Package: apache Severity: minor Hi, the httpd.conf in later apache packages configures mod_backtrace.c and mod_whatkilledus.c. The comment introducing that part of configuration contains an English error: +# They must NOT used in production environment if not for debugging! I am not a native speaker, but that looks like a "be" is missing here. Additionally, the following lines are not commented. Either even the IfModule and EnableExceptionHook lines should be commented as well, or the comments should state that the uncommented lines won't do any harm. Greetings Marc -- System Information: Debian Release: 3.1 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.8.1-vash Locale: LANG=C, LC_CTYPE=de_DE Versions of packages apache depends on: pn apache-commonNot found. ii debconf 1.4.34 Debian configuration management sy ii dpkg1.10.23 Package maintenance system for Deb ii libc6 2.3.2.ds1-16 GNU C Library: Shared libraries an ii libdb4.24.2.52-17Berkeley v4.2 Database Libraries [ ii libexpat1 1.95.6-8 XML parsing C library - runtime li ii libmagic1 4.10-3 File type determination library us ii libpam0g0.76-22 Pluggable Authentication Modules l ii logrotate 3.7-2Log rotation utility ii mime-support3.28-1 MIME files 'mime.types' & 'mailcap ii perl5.8.4-2 Larry Wall's Practical Extraction
Bug#243354: apache: init script refs unfile
Package: apache Version: 1.3.29.0.2-4 Severity: minor # The variables below are NOT to be changed. They are there to make the # script more readable. Look in /etc/defaults/apache for editable variables. This says the init script. (1) It's /etc/default, not /etc/defaults (2) Neither /etc/default/apache nor /etc/defaults/apache is shipped with the package. (3) Neither file is sourced by the init.d scipt, so setting variables there would be ignored by the initialization process. Most likely, this comment is a legacy from earlier days and should be removed. Greetings Marc -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.4.25-darren Locale: LANG=C, LC_CTYPE=C Versions of packages apache depends on: ii apache-common 1.3.29.0.2-4 Support files for all Apache webse ii debconf 1.4.21 Debian configuration management sy ii dpkg1.10.20 Package maintenance system for Deb ii libc6 2.3.2.ds1-11 GNU C Library: Shared libraries an ii libdb4.24.2.52-16Berkeley v4.2 Database Libraries [ ii libexpat1 1.95.6-8 XML parsing C library - runtime li ii libmagic1 4.07-2 File type determination library us ii libpam0g0.76-17 Pluggable Authentication Modules l ii logrotate 3.6.5-2 Log rotation utility ii mime-support3.26-1 MIME files 'mime.types' & 'mailcap ii perl5.8.3-3 Larry Wall's Practical Extraction -- debconf information excluded
