https://bz.apache.org/bugzilla/show_bug.cgi?id=62485
Michael Kaufmann <apache-bugzi...@michael-kaufmann.ch> changed:
What |Removed |Added
----------------------------------------------------------------------------
Summary|rewriterule is not |RewriteRule is not
|activated when |activated when
|followsymlinks is off |FollowSymLinks is off
CC| |apache-bugzilla@michael-kau
| |fmann.ch
--- Comment #1 from Michael Kaufmann <apache-bugzi...@michael-kaufmann.ch> ---
Some admins are forced to keep FollowSymLinks enabled because they want to use
a RewriteRule in <Directory>/<Location> context.
Yes, there *could be* an insecure RewriteRule, but mod_rewrite cannot decide if
there actually *is* an insecure RewriteRule. It would be great if there was an
option to disable the FollowSymLinks check in mod_rewrite.
Please also mention this check in
https://httpd.apache.org/docs/2.4/en/mod/core.html#options - I guess that most
admins do not expect that disabling FollowSymLinks affects mod_rewrite.
See also bug 43036.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org
