[Bug 55957] environment lost when processing child directories' .htaccess
https://issues.apache.org/bugzilla/show_bug.cgi?id=55957
--- Comment #7 from Dan Jacobson jida...@jidanni.org ---
I am guessing that the authors were probably trying to be careful to
follow scope rules to not allow variables set in say many parallel
/images/*/.htaccess files to affect each other, but overdid it, leaving
no scope at all for the current file.
---
SetEnv only affects Allow from env=!... not env=...
By the way, also highly unexplainable to me is why only one of the
following four work, instead of two:
# while read; do cat ~jidanni/mediawiki/images/radioscanningtw/.htaccess; w3m
-dump http://radioscanningtw.jidanni.org/images |grep radio.*:; echo
--; done
Order Deny,Allow
Deny from all
Allow from env=!let_me_in
[DIR] radioscanningtw/ 2014-01-07 11:18-
--
Order Deny,Allow
Deny from all
Allow from env=let_me_in
--
SetEnv let_me_in 1
Order Deny,Allow
Deny from all
Allow from env=let_me_in
--
SetEnv let_me_in 1
Order Deny,Allow
Deny from all
Allow from env=!let_me_in
--
Browsing the child directly with
d=radioscanningtw.jidanni.org/images/radioscanningtw/; while read; do
cat ~jidanni/$d/.htaccess; w3m -dump http://$d; echo -n --;
done
shows the same 3/1 pattern.
Below we observe SetEnvIfExpr is defective when processing the subdir.
+ cat
/home/jidanni/radioscanningtw.jidanni.org/images/radioscanningtw/.htaccess
SetEnvIfExpr true let_me_inX
Order Deny,Allow
Deny from all
Allow from env=!let_me_inX
+ w3m -dump http://radioscanningtw.jidanni.org/images
Index of /images
[ICO] NameLast modified Size Description
━━
[PARENTDIR] Parent Directory -
[ ] README 2012-03-28 11:36 203
[DIR] radioscanningtw/ 2014-01-07 13:19-
[DIR] taizhongbus/ 2014-01-06 15:14-
━━
Apache/2.4.6 (Debian) Server at radioscanningtw.jidanni.org Port 80
+ w3m -dump http://radioscanningtw.jidanni.org/images/radioscanningtw
Forbidden
You don't have permission to access /images/radioscanningtw on this server.
━━━
Apache/2.4.6 (Debian) Server at radioscanningtw.jidanni.org Port 80
=
==AH WORKS!===for both passes!=
If %{HTTP_HOST} !~ /radioscanningtw\.jidanni\.org/i
SetEnv blockme 1
/If
Order Deny,Allow
Deny from all
Allow from env=!blockme
=
So we see the problem has nothing to do with the environment, but
instead some operators!
SetEnv blockme 1
If %{HTTP_HOST} =~ /radioscanningtw\.jidanni\.org/i
UnSetEnv blockme
/If
Order Deny,Allow
Deny from all
Allow from env=!blockme
Above also works.
However, the following doesn't. How to explain that?!
If %{HTTP_HOST} =~ /radioscanningtw\.jidanni\.org/i
SetEnv good 1
/If
Order Deny,Allow
Deny from all
Allow from env=good
OK I have come up with a final working version,
If %{HTTP_HOST} !~ /radioscanningtw\.jidanni\.org/i
Deny from all
/If
Thank goodness!
Alas, that works only for 2.4. Still working on 2.2.
--
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org
[Bug 55957] some operators defective when processing child directories' .htaccess
https://issues.apache.org/bugzilla/show_bug.cgi?id=55957 Dan Jacobson jida...@jidanni.org changed: What|Removed |Added Summary|environment lost when |some operators defective |processing child|when processing child |directories' .htaccess |directories' .htaccess -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org For additional commands, e-mail: bugs-h...@httpd.apache.org
[Bug 55963] New: Add application/ld+json to mime.types
https://issues.apache.org/bugzilla/show_bug.cgi?id=55963 Bug ID: 55963 Summary: Add application/ld+json to mime.types Product: Apache httpd-2 Version: 2.5-HEAD Hardware: All OS: All Status: NEW Severity: normal Priority: P2 Component: mod_mime Assignee: bugs@httpd.apache.org Reporter: mark_lantha...@gmx.net Created attachment 31176 -- https://issues.apache.org/bugzilla/attachment.cgi?id=31176action=edit Adds application/ld+json to mime.types JSON-LD's media type has been registered at IANA already quite some time ago and the specification at W3C already reached Proposed Recommendation status. It is expected to become a proper Recommendation next week. Given that it is already used in the wild, I think it would be time to add its media type to mime.types. I've added a patch for trunk but this should also be backported to 2.4. Let me know if you want me to either create a separate ticket for that or add another patch. Thanks, Markus -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org For additional commands, e-mail: bugs-h...@httpd.apache.org
[Bug 55963] Add application/ld+json to mime.types
https://issues.apache.org/bugzilla/show_bug.cgi?id=55963 Markus Lanthaler mark_lantha...@gmx.net changed: What|Removed |Added Keywords||PatchAvailable, PortBack URL||www.w3.org/TR/json-ld/ CC||mark_lantha...@gmx.net -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org For additional commands, e-mail: bugs-h...@httpd.apache.org
[Bug 55957] some operators defective when processing child directories' .htaccess
https://issues.apache.org/bugzilla/show_bug.cgi?id=55957 --- Comment #8 from Dan Jacobson jida...@jidanni.org --- No there is no working equivalent for 2.2.9. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org For additional commands, e-mail: bugs-h...@httpd.apache.org
[Bug 54101] Socket backend support for mod_proxy
https://issues.apache.org/bugzilla/show_bug.cgi?id=54101 Tomas van Rijsse to...@pionect.nl changed: What|Removed |Added CC||to...@pionect.nl -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org For additional commands, e-mail: bugs-h...@httpd.apache.org
[Bug 55972] New: Proxy IP list is populated with incorrect IP addresses
https://issues.apache.org/bugzilla/show_bug.cgi?id=55972 Bug ID: 55972 Summary: Proxy IP list is populated with incorrect IP addresses Product: Apache httpd-2 Version: 2.5-HEAD Hardware: PC OS: All Status: NEW Severity: normal Priority: P2 Component: mod_remoteip Assignee: bugs@httpd.apache.org Reporter: mike.ru...@oracle.com In the remoteip_modify_request() function in mod_remoteip.c the wrong IP addresses are used to populate the proxy_ips field. req-useragent_ip should be used instead of c-client_ip. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org For additional commands, e-mail: bugs-h...@httpd.apache.org
[Bug 55972] Proxy IP list is populated with incorrect IP addresses
https://issues.apache.org/bugzilla/show_bug.cgi?id=55972
--- Comment #1 from Mike Rumph mike.ru...@oracle.com ---
Created attachment 31180
-- https://issues.apache.org/bugzilla/attachment.cgi?id=31180action=edit
Patch to populate the proxy_ips field with correct IP addresses.
I have attached a patch against mod_remoteip.c in httpd trunk.
This patch will populate the proxy_ips field with correct IP addresses.
This test gives us a long list to view in the simplest way.
The patch can be verified with the following setup which are variations from
bug 55635:
LogFormat %h %a %{c}a xf=\%{X-Forwarded-For}i\ %l %u %t \%r\ %s %b
forward
CustomLog logs/access_log forward
LogLevel debug mod_remoteip.c:trace1
Location /test
Order Deny,Allow
Deny from all
Allow from localhost 127.0.0.1 1.1.1.1
/Location
RemoteIPHeader X-Forwarded-For
Do not include any RemoteIPInternalProxy, RemoteIPInternalProxyList,
RemoteIPTrustedProxy or RemoteIPTrustProxyList.
This will cause mod_remoteip to take the default of treating the client IP and
all IP addresses in X-Forwarded-For as external trusted proxies.
- $ curl -v -H X-Forwarded-For: 1.1.1.2, 1.1.1.1, 87.245.198.54,
87.250.250.203 http://10.1.2.3:8080/test/
- $ tail logs/access_log
my_host 1.1.1.2 10.1.2.3 xf=- - - [07/Jan/2014:11:03:54 -0800] GET /test/
HTTP/1.1 403 207
- $ tail logs/error_log
Similar records to the following will be seen in the error log.
Before the fix:
[Tue Jan 07 11:03:54.053043 2014] [remoteip:trace1] [pid 3456:tid 1108416832]
mod_remoteip.c(404): [client 1.1.1.2:59017] Using 1.1.1.2 as client's IP by
proxies 10.1.2.3, 10.1.2.3, 10.1.2.3, 10.1.2.3
After the fix:
[Tue Jan 07 12:38:22.488850 2014] [remoteip:trace1] [pid 20135:tid 1107126592]
mod_remoteip.c(405): [client 1.1.1.2:52291] Using 1.1.1.2 as client's IP by
proxies 10.1.2.3, 87.250.250.203, 87.245.198.54, 1.1.1.1
--
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org
For additional commands, e-mail: bugs-h...@httpd.apache.org
[Bug 55972] Proxy IP list is populated with incorrect IP addresses
https://issues.apache.org/bugzilla/show_bug.cgi?id=55972 Mike Rumph mike.ru...@oracle.com changed: What|Removed |Added Keywords||PatchAvailable -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org For additional commands, e-mail: bugs-h...@httpd.apache.org
