Re: [VOTE] Release Apache httpd 2.4.15 as GA
in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$ RedirectMatch 404 ^/.*cgi-win/(.*)$ RedirectMatch 404 ^/.*cgiwin/(.*)$ RedirectMatch 404 ^/.*commoncgi/(.*)$ RedirectMatch 404 ^/.*console/(.*)$ RedirectMatch 404 ^/.*ControlManager/(.*)$ RedirectMatch 404 ^/.*cs-dns/(.*)$ RedirectMatch 404 ^/.*cs-whois/(.*)$ RedirectMatch 404 ^/.*cvstrac/(.*)$ RedirectMatch 404 ^/.*database-admin/(.*)$ RedirectMatch 404 ^/.*databaseadmin/(.*)$ RedirectMatch 404 ^/.*databasemanager/(.*)$ RedirectMatch 404 ^/.*databaseweb/(.*)$ RedirectMatch 404 ^/.*dbma/(.*)$ RedirectMatch 404 ^/.*dmanager/(.*)$ RedirectMatch 404 ^/.*dokuwiki/(.*)$ RedirectMatch 404 ^/.*dokuwiki/(.*)$ RedirectMatch 404 ^/.*DotNetNuke/(.*)$ RedirectMatch 404 ^/.*dotProject/(.*)$ RedirectMatch 404 ^/.*dotProject/(.*)$
Re: [VOTE] Release Apache httpd 2.4.15 as GA
-1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$ RedirectMatch 404 ^/.*cgi-win/(.*)$ RedirectMatch 404 ^/.*cgiwin/(.*)$ RedirectMatch 404 ^/.*commoncgi/(.*)$ RedirectMatch 404 ^/.*console/(.*)$ RedirectMatch 404 ^/.*ControlManager/(.*)$ RedirectMatch 404 ^/.*cs-dns/(.*)$ RedirectMatch 404 ^/.*cs-whois/(.*)$ RedirectMatch 404 ^/.*cvstrac/(.*)$ RedirectMatch 404 ^/.*database-admin/(.*)$ RedirectMatch 404 ^/.*databaseadmin/(.*)$ RedirectMatch 404 ^/.*databasemanager/(.*)$ RedirectMatch 404 ^/.*databaseweb/(.*)$ RedirectMatch 404 ^/.*dbma/(.*)$ RedirectMatch 404 ^/.*dmanager/(.*)$ RedirectMatch 404 ^/.*dokuwiki/(.*)$ RedirectMatch 404 ^/.*dokuwiki/(.*)$ RedirectMatch 404 ^/.*DotNetNuke/(.*)$ RedirectMatch 404 ^/.*dotProject/(.*)$ RedirectMatch 404 ^/.*dotProject/(.*)$ RedirectMatch 404 ^/.*drupal/(.*)$ RedirectMatch 404 ^/.*fileserver/(.*)$ RedirectMatch 404 ^/.*hastymail2/(.*)$ RedirectMatch 404 ^/.*Hastymail2/(.*)$ RedirectMatch 404 ^/.*hastymail/(.*)$ RedirectMatch 404
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Fri, Jun 19, 2015 at 12:50 PM, Jim Jagielski j...@jagunet.com wrote: The pre-release test tarballs for Apache httpd 2.4.15 can be found at the usual place: http://httpd.apache.org/dev/dist/ I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [X] +1: Good to go Test suite passed with prefork and event on: CentOS 7 64-bit FreeBSD 10.1, 32-bit, kernel accept filter not loaded Fedora 22, 64-bit Ubuntu 12, 32-bit* Ubuntu 15, 32-bit* *silly failure of t/filter/case.t due to an expected Perl doc file not being installed Built with cmake 3.1.3 and VS 2012 x64 on Windows, and served pages -- Born in Roswell... married an alien... http://emptyhammock.com/
Re: buckets across threads - question
re: https://github.com/icing/mod_h2/issues/28 has this design further evolved? Is there a way to make the deep copy un-necessary by injecting your own bucket_alloc created with a pool with a threadsafe allocator very early? It seems like all of the buckets are created in the h2 thread after you've had a chance to manipulate stuff. On Tue, Mar 31, 2015 at 2:57 PM, Stefan Eissing stefan.eiss...@greenbytes.de wrote: Thanks, Jim! Am 31.03.2015 um 19:29 schrieb Jim Jagielski j...@jagunet.com: What I did is used the alpn patch as a guide and updated trunk to add the functionality: http://svn.apache.org/r1670397 I'll give it a few days to work out and then propose for a 2.4 backport. On Mar 31, 2015, at 1:13 PM, Stefan Eissing stefan.eiss...@greenbytes.de wrote: I think the old NPN patch is in trunk. The ALPN not AFAIK. I undertstand there is a trunk first policy, but it'd be good to get it at least going there... thanks. Stefan Am 31.03.2015 um 18:22 schrieb Jim Jagielski j...@jagunet.com: PS. As a small quid-pro-quo and because you were asking about a possibly 2.4.13: there has so far not been a volunteer to integrate the ALPN patch I adapted from mod_spdy. It would be great if someone could take a look at it. It is the biggest obstacle so far for experimenters (early sufferers) of mod_h2 and it would be very nice to have it out of the way. I'll take a look. It's not currently in trunk, is that right? -- Eric Covener cove...@gmail.com
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On 6/19/2015 9:50 AM, Jim Jagielski wrote: The pre-release test tarballs for Apache httpd 2.4.15 can be found at the usual place: http://httpd.apache.org/dev/dist/ I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [X] +1: Good to go VC9/12 and various Windows flavors. Thanks for RMing
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Fri, Jun 19, 2015 at 6:50 PM, Jim Jagielski j...@jagunet.com wrote: I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [X] +1: Good to go No regression, with event and worker, included apr-1.5.2 and apr-util-1.5.4. Tested systems: * Debian 8 - 64bit, * Debian 7 - 64bit, * Debian 6 - 64bit, * Debian 6 - mixed 32/64bit system/kernel. Thanks Jim for RM'ing, Yann.
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On 6/21/2015 11:24 PM, William A Rowe Jr wrote: As this is not a regression from 2.4.13 or 2.4.14 candidates, it seems to me we should ship. I am mostly a lurker on this list but I feel I need to chime in on this. The mistake with that sentiment is that it is imposing largely invisible to users, internal processes onto said users. The public never saw 2.4.1[34] so I would consider the above irrelevant. From the user's point of view, going from the last publicly released version (2.4.12) to the new one, this *would* be a regression. The fact that this was not caught in 2.4.1[34] is a gap in the testing process, and shouldn't be (IMHO) grounds for breaking working sites with a patch release. Just my $0.02. Kean
Re: buckets across threads - question
On Sun, Jun 21, 2015 at 11:07 AM, Eric Covener cove...@gmail.com wrote: re: https://github.com/icing/mod_h2/issues/28 has this design further evolved? Is there a way to make the deep copy un-necessary by injecting your own bucket_alloc created with a pool with a threadsafe allocator very early? It seems like all of the buckets are created in the h2 thread after you've had a chance to manipulate stuff. Or a bucket_alloc per (faux) request_rec somehow.
Re: [VOTE] Release Apache httpd 2.4.15 as GA
It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. And [1] broke your configuration, assuming ^\/something\/$ is an expression (not a regex). [1] http://svn.apache.org/r1663259 On Sun, Jun 21, 2015 at 7:52 PM, Reindl Harald h.rei...@thelounge.net wrote: in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$ RedirectMatch 404 ^/.*cgi-win/(.*)$ RedirectMatch 404 ^/.*cgiwin/(.*)$ RedirectMatch 404 ^/.*commoncgi/(.*)$ RedirectMatch 404 ^/.*console/(.*)$ RedirectMatch 404 ^/.*ControlManager/(.*)$ RedirectMatch 404 ^/.*cs-dns/(.*)$ RedirectMatch 404 ^/.*cs-whois/(.*)$ RedirectMatch 404 ^/.*cvstrac/(.*)$
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 5:24 PM, William A Rowe Jr wr...@rowe-clan.net wrote: As this is not a regression from 2.4.13 or 2.4.14 candidates, it seems to me we should ship. I am -1 for 2.4.15 with the regression. The other candidates being broken doesn't mitigate it much for me. -- Eric Covener cove...@gmail.com
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. On Jun 21, 2015 12:53 PM, Reindl Harald h.rei...@thelounge.net wrote: in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$ RedirectMatch 404 ^/.*cgi-win/(.*)$ RedirectMatch 404 ^/.*cgiwin/(.*)$ RedirectMatch 404 ^/.*commoncgi/(.*)$ RedirectMatch 404 ^/.*console/(.*)$ RedirectMatch 404 ^/.*ControlManager/(.*)$ RedirectMatch 404 ^/.*cs-dns/(.*)$ RedirectMatch 404 ^/.*cs-whois/(.*)$ RedirectMatch 404 ^/.*cvstrac/(.*)$ RedirectMatch 404 ^/.*database-admin/(.*)$ RedirectMatch 404 ^/.*databaseadmin/(.*)$ RedirectMatch 404
Re: Additional LB providers
Additional providers is cool... but what do you mean by fold in? Add them as additional modules? (Sorry for top-post... mobile email client) -- Daniel Ruggeri Original Message From: Jim Jagielski j...@jagunet.com Sent: June 18, 2015 11:52:12 AM CDT To: httpd dev@httpd.apache.org Subject: Additional LB providers I'm playing around w/ a newish LB provider that balances based on latency. I'd like to fold it in after I clean it up a bit but it seems to me that we could also fold in the round-robin provider in example (after a suitable cleanup) as well as add in a simply by_random as well. Comments?
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Am 21.06.2015 um 21:02 schrieb Yann Ylavic: It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. And [1] broke your configuration, assuming ^\/something\/$ is an expression (not a regex). [1] http://svn.apache.org/r1663259 that may be true but * it is a regression breaking configs working like a charm over years and IMHO a no-go for a minor update * at makes little sense to provide a URL when you just want the default 404 error page defined with ErrorDocument 404 html content because by enforce providing a URL the configuration is no longer re-useable on different machines On Sun, Jun 21, 2015 at 7:52 PM, Reindl Harald h.rei...@thelounge.net wrote: in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 9:04 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup Attached. mod_alias-revert-r1663259.patch Description: application/download
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Am 21.06.2015 um 21:28 schrieb Yann Ylavic: On Sun, Jun 21, 2015 at 9:04 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup Attached thank you! confirmed - with that patch applied the shared configuration over all of our servers works as the last years the question remains how this should be handeled in the future because i searched a long time for a solution to just give out the 404 default page in case of several URLs to get rid of the noise of security scans and that requires a error code to prevent false positives signature.asc Description: OpenPGP digital signature
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 2:11 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:02 schrieb Yann Ylavic: It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. All the way back to 1.3... the fact that it worked at all was a coincidence. If this were an 'undocumented feature', then users are responsible for submitting a docs patch that it is a feature in-use. We can't possibly predict every broken- but-otherwise-working configuration in existence. And [1] broke your configuration, assuming ^\/something\/$ is an expression (not a regex). [1] http://svn.apache.org/r1663259 that may be true but * it is a regression breaking configs working like a charm over years and IMHO a no-go for a minor update That's called a charmed existence, and charms turn. IMHO, it is a go (for a subversion update, actually, minor would be 2.6.0, for example). * at makes little sense to provide a URL when you just want the default 404 error page defined with ErrorDocument 404 html content because by enforce providing a URL the configuration is no longer re-useable on different machines Irrelevant. Pulling Coar/Bowen '04 Apache Cookbook off the shelf, this error was propagated by the last example in 5.8 (and likely elsewhere); Redirect gone /foo.html which likely isn't working in 2.4.15. As this is not a regression from 2.4.13 or 2.4.14 candidates, it seems to me we should ship.
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup On Jun 21, 2015 12:53 PM, Reindl Harald h.rei...@thelounge.net mailto:h.rei...@thelounge.net wrote: in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015 tel:972582%202015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 11:24 PM, William A Rowe Jr wr...@rowe-clan.net wrote: Pulling Coar/Bowen '04 Apache Cookbook off the shelf, this error was propagated by the last example in 5.8 (and likely elsewhere); Redirect gone /foo.html which likely isn't working in 2.4.15. It is (still) working since the gone keyword is handled specifically.
Re: [VOTE] Release Apache httpd 2.4.15 as GA
No issues/regressions seen with VC9/10/11/14 running XP/win7/win8+/win10 and server 2012+/2016. Op 21 jun. 2015 om 19:30 heeft Gregg Smith g...@gknw.net het volgende geschreven: On 6/19/2015 9:50 AM, Jim Jagielski wrote: The pre-release test tarballs for Apache httpd 2.4.15 can be found at the usual place: http://httpd.apache.org/dev/dist/ I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [X] +1: Good to go VC9/12 and various Windows flavors. Thanks for RMing
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 9:37 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:28 schrieb Yann Ylavic: On Sun, Jun 21, 2015 at 9:04 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup Attached thank you! confirmed - with that patch applied the shared configuration over all of our servers works as the last years Thanks Harald for testing. Could you please also test the attached patch (instead of the previous one) which should fix the issue without reverting? mod_alias-fix.patch Description: application/download
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Am 21.06.2015 um 22:05 schrieb Yann Ylavic: On Sun, Jun 21, 2015 at 9:37 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:28 schrieb Yann Ylavic: On Sun, Jun 21, 2015 at 9:04 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup Attached thank you! confirmed - with that patch applied the shared configuration over all of our servers works as the last years Thanks Harald for testing. no problem i guess i have to apologize not testing the 24.13 / 2.4.14 which likely would have found that much eralier :-( Could you please also test the attached patch (instead of the previous one) which should fix the issue without reverting? looks fine! Patch #6 (mod_alias-fix.patch): + /usr/bin/cat /home/builduser/rpmbuild/SOURCES/mod_alias-fix.patch + /usr/bin/patch -p1 --fuzz=0 patching file modules/mappers/mod_alias.c signature.asc Description: OpenPGP digital signature
Bug report for Apache httpd-2 [2015/06/21]
+---+ | Bugzilla Bug ID | | +-+ | | Status: UNC=Unconfirmed NEW=New ASS=Assigned| | | OPN=ReopenedVER=Verified(Skipped Closed/Resolved) | | | +-+ | | | Severity: BLK=Blocker CRI=Critical REG=Regression MAJ=Major | | | | MIN=Minor NOR=NormalENH=Enhancement TRV=Trivial | | | | +-+ | | | | Date Posted | | | | | +--+ | | | | | Description | | | | | | | | 7483|Ass|Enh|2002-03-26|Add FileAction directive to assign a cgi interpret| | 8713|Inf|Min|2002-05-01|No Errorlog on PROPFIND/Depth:Infinity| | 8867|Opn|Cri|2002-05-07|exports.c generation fails when using a symlink to| |10747|New|Maj|2002-07-12|ftp SIZE command and 'smart' ftp servers results i| |11294|New|Enh|2002-07-30|desired vhost_alias option| |11580|Opn|Enh|2002-08-09|generate Content-Location headers | |12033|Opn|Nor|2002-08-26|Graceful restart immediately result in [warn] long| |12680|New|Enh|2002-09-16|Digest authentication with integrity protection | |13599|Inf|Nor|2002-10-14|autoindex formating broken for multibyte sequences| |13661|Ass|Enh|2002-10-15|Apache cannot not handle dynamic IP reallocation | |14104|Opn|Enh|2002-10-30|not documented: must restart server to load new CR| |14496|New|Enh|2002-11-13|Cannot upgrade any version on Windows. Must uninst| |14922|Inf|Enh|2002-11-28|target is currently hardcoded to 'apache2' | |15719|Inf|Nor|2002-12-30|WebDAV MOVE to destination URI which is content-ne| |16761|Inf|Nor|2003-02-04|CustomLog with pipe spawns process during config | |16802|New|Enh|2003-02-05|Additional AllowOverride directive Restrict | |16811|Ass|Maj|2003-02-05|mod_autoindex always return webpages in UTF-8.| |17107|New|Min|2003-02-16|Windows should not install printenv | |17114|New|Enh|2003-02-17|Please add strip and install-strip targets to Make| |17244|Ass|Nor|2003-02-20|./configure --help gives false information regardi| |17497|Opn|Nor|2003-02-27|mod_mime_magic generates incorrect response header| |18325|New|Enh|2003-03-25|PAM support for suEXEC| |18334|Inf|Cri|2003-03-25|Server crashes when authenticating users against L| |18497|New|Min|2003-03-30|configure --help gives wrong default for sysconfdi| |19043|New|Min|2003-04-15|Interesting interaction between cern_meta module a| |19670|New|Enh|2003-05-05|content type header supplied upon PUT is thrown aw| |20036|Ass|Nor|2003-05-19|Trailing Dots stripped from PATH_INFO environment | |21253|New|Nor|2003-07-01|Mime magic doesn't continue if type is specifed fo| |21260|New|Nor|2003-07-02|CacheMaxExpire directive not enforced ! | |21533|Ass|Cri|2003-07-11|Multiple levels of htacces files can cause mod_aut| |22138|Inf|Cri|2003-08-05|Webdav is not preccessing special chars right.| |22237|New|Enh|2003-08-08|option to disable ServerSignature on index pages | |22484|Opn|Maj|2003-08-16|semaphore problem takes httpd down| |22686|Opn|Nor|2003-08-25|ab: apr_poll: The timeout specified has expired (7| |22898|Opn|Nor|2003-09-02|nph scripts with two HTTP header | |23167|Inf|Cri|2003-09-14|--enable-layout never goes to apr apr-util| |23181|New|Nor|2003-09-15|Status 304 (Not modified) and chunking leads to an| |23238|New|Cri|2003-09-18|non-async-signal-safe operations from signal handl| |23330|New|Enh|2003-09-22|Enhance ApacheMonitor to view and control Tomcat s| |23911|Opn|Cri|2003-10-18|CGI processes left defunct/zombie under 2.0.54| |24031|New|Enh|2003-10-23|Passphrase protected private key in SSLProxyMachin| |24095|Opn|Cri|2003-10-24|ERROR Parent: child process exited with status 32| |24890|Opn|Nor|2003-11-21|Apache config parser should not be local aware ( g| |25014|New|Enh|2003-11-26|A flexible interface for mod_log_config | |25201|New|Enh|2003-12-04|Provide Cache Purge operation | |25240|Inf|Enh|2003-12-05|SSL Library Error: 336105671 logged as information| |25435|New|Enh|2003-12-11|sethandler and directoryindex not playing nice| |25469|Opn|Enh|2003-12-12|create AuthRoot for defining paths to auth files | |25484|Ass|Nor|2003-12-12|Non-service Apache cannot be stopped in WinXP | |25543|Inf|Nor|2003-12-15|mod_proxy_ajp overwrites existing response headers| |25667|New|Nor|2003-12-19|Memory leak in function ssl_scache_dbm_retrieve().|
Re: Using UPN from subjectAltName with SSLUserName
On 19.06.2015 16:51, Jan Pazdziora wrote:
On Thu, Jun 18, 2015 at 12:22:21PM +0200, Yann Ylavic wrote:
I think a more generic way would to have something like
SSL_CLIENT_OID_oid_n, so that we wouldn't have to add a new field
each time.
In this case, that would be: SSL_CLIENT_OID_1.3.6.1.4.1.311.20.2.3_n.
The point with the otherName SAN type is that it's yet another bag of
potentially arbitrary ASN.1 stuff, actually (not just simple strings, as
is the case for rfc822Name or dNSName):
GeneralName ::= CHOICE {
otherName [0] OtherName,
rfc822Name [1] IA5String,
dNSName [2] IA5String,
x400Address [3] ORAddress,
directoryName [4] Name,
ediPartyName[5] EDIPartyName,
uniformResourceIdentifier [6] IA5String,
iPAddress [7] OCTET STRING,
registeredID[8] OBJECT IDENTIFIER }
OtherName ::= SEQUENCE {
type-idOBJECT IDENTIFIER,
value [0] EXPLICIT ANY DEFINED BY type-id }
^^
(See RFC 7299 section 3.14 for the otherName forms defined by the PKIX
WG in the past.)
While Microsoft's UPN happens to be a very simple case (the value is
just a bare UTF8String here), this need not be true for other forms
of otherName.
Adding support for msUPN seems useful, but it's really something which
needs special-case coding in ssl_util_ssl.c:modssl_X509_getSAN(). I
suggest using SSL_{CLIENT,SERVER}_SAN_OTHER_msUPN_* for the variable
name(s), to make it clear that it's a subjectAltName entry of type
otherName. Then, in the code for GEN_OTHERNAME, specifically look for
this otherName form via NID_ms_upn - as only in this case, you
can be sure to expect a simple UTF8String in otherName-value
(strongSwan's openssl_x509.c might be a source of inspiration for coding
this).
Note that for exposing the msUPN variables with StdEnvVars, you also
need to adapt ssl_engine_vars.c:modssl_var_extract_san_entries().
Kaspar
