>Number: 1278
>Category: mod_usertrack
>Synopsis: date format for cookies is not compliant with RFC..causes
>errors
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: apache
>State: open
>Class: sw-bug
>Submitter-Id: apache
>Arrival-Date: Mon Oct 20 12:00:01 PDT 1997
>Last-Modified:
>Originator: [EMAIL PROTECTED]
>Organization:
apache
>Release: 1.2.4
>Environment:
FreeBSD red.evocative.com 2.2.2-RELEASE FreeBSD 2.2.2-RELEASE #0: Sun Oct 19 11:
23:15 PDT 1997 [EMAIL PROTECTED]:/usr/src/sys/compile/EVOC-RED i386
bash-2.00$
>Description:
RFC 822 specifies the date format:
5. DATE AND TIME SPECIFICATION
5.1. SYNTAX
date-time = [ day "," ] date time ; dd mm yy
; hh:mm:ss zzz
day = "Mon" / "Tue" / "Wed" / "Thu"
/ "Fri" / "Sat" / "Sun"
date = 1*2DIGIT month 2DIGIT ; day month year
; e.g. 20 Jun 82
month = "Jan" / "Feb" / "Mar" / "Apr"
/ "May" / "Jun" / "Jul" / "Aug"
/ "Sep" / "Oct" / "Nov" / "Dec"
time = hour zone ; ANSI and Military
hour = 2DIGIT ":" 2DIGIT [":" 2DIGIT]
; 00:00:00 - 23:59:59
zone = "UT" / "GMT" ; Universal Time
; North American : UT
/ "EST" / "EDT" ; Eastern: - 5/ - 4
/ "CST" / "CDT" ; Central: - 6/ - 5
/ "MST" / "MDT" ; Mountain: - 7/ - 6
/ "PST" / "PDT" ; Pacific: - 8/ - 7
/ 1ALPHA ; Military: Z = UT;
; A:-1; (J not used)
; M:-12; N:+1; Y:+12
/ ( ("+" / "-") 4DIGIT ) ; Local differential
; hours+min. (HHMM)
Here are the changes required to correct the problem
175c175
< "%s%s; path=/; expires=%s, %.2d-%s-%.2d %.2d:%.2d:%.2d GMT",
---
> "%s%s; path=/; expires=%s, %.2d %s %.4d %.2d:%.2d:%.2d GMT",
178c178
< (tms->tm_year >= 100) ? tms->tm_year - 100 : tms->tm_year,
---
> tms->tm_year + 1900,
>How-To-Repeat:
>Fix:
noted above....fix and diagnosis courtesy of Patrick Rigney of Evocative, Inc.
Thanks folks.
%0
>Audit-Trail:
>Unformatted:
