>Number: 1287 >Category: mod_access >Synopsis: add allow,deny/deny,allow warning to mod_access >Confidential: no >Severity: non-critical >Priority: medium >Responsible: apache >State: open >Class: change-request >Submitter-Id: apache >Arrival-Date: Mon Oct 20 23:50:00 PDT 1997 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.3 >Environment: n/a >Description: I can never remember how the order directive works. It would be easy for mod_access to warn when a config like this:
order allow,deny deny from all allow from a.b.c.d was used. It makes no sense -- it denies all access, despite what looks like an attempt to allow some. Similarly for: order deny,allow deny from a.b.c.d allow from all Which allows all access despite what looks like an attempt to allow some. >How-To-Repeat: >Fix: >Audit-Trail: >Unformatted:
