Bug#430386: Bashizm in /etc/init.d/apache2
Package: apache2 Version: 2.2.3-4+etch1 Severity: serious Tags: patch /etc/init.d/apache2 in lines 105 and 108: if [[ ... ]];then but should be if [ ... ];then I'm sure this should be fixed in next security update for etch. -- System Information: Debian Release: 4.0 APT prefers proposed-updates APT policy: (670, 'proposed-updates'), (670, 'stable'), (650, 'testing-proposed-updates'), (650, 'testing'), (600, 'unstable'), (550, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-5-vserver-686 Locale: LANG=ru_RU.KOI8-R, LC_CTYPE=ru_RU.KOI8-R (charmap=KOI8-R) Versions of packages apache2 depends on: ii apache2-mpm-prefork2.2.3-4+etch1 Traditional model for Apache HTTPD apache2 recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#376707: marked as done (/usr/sbin/ab: ApacheBench gives segmentation fault on SSL websites with concurrency 2 or higher)
Your message dated Sat, 23 Jun 2007 21:23:37 +0200 with message-id <[EMAIL PROTECTED]> and subject line /usr/sbin/ab: ApacheBench gives segmentation fault on SSL websites with concurrency 2 or higher has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) --- Begin Message --- Package: apache2-utils Version: 2.0.55-4 Severity: normal File: /usr/sbin/ab When running ApacheBench against a secure website and a concurrency of 2 or higher, it crashes with a segmentation fault: % env - /usr/sbin/ab -c 2 -s https://www.amazon.com/ This is ApacheBench, Version 2.0.41-dev <$Revision: 1.141 $> apache-2.0 Copyright (c) 1996 Adam Twiss, Zeus Technology Ltd, http://www.zeustech.net/ Copyright (c) 1998-2002 The Apache Software Foundation, http://www.apache.org/ Benchmarking www.amazon.com (be patient)...Segmentation fault Running it with "-c 1" works, but that is not half as useful... -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.15-1-686-smp Locale: LANG=en_GB.ISO-8859-15, LC_CTYPE=en_GB (charmap=ISO-8859-1) Versions of packages apache2-utils depends on: ii libapr0 2.0.55-4 the Apache Portable Runtime ii libc6 2.3.6-7GNU C Library: Shared libraries ii libdb4.3 4.3.29-4.1 Berkeley v4.3 Database Libraries [ ii libexpat1 1.95.8-3 XML parsing C library - runtime li ii libldap2 2.1.30-13 OpenLDAP libraries ii libpcre3 6.4-1.1Perl 5 Compatible Regular Expressi ii libssl0.9.8 0.9.8a-7 SSL shared libraries ii zlib1g1:1.2.3-11 compression library - runtime apache2-utils recommends no packages. -- no debconf information --- End Message --- --- Begin Message --- Version: 2.2.3-4 This seems to be fixed in 2.2.x . Feel free to reopen the bug report if you encounter the problem again. --- End Message ---
Processed: bug 294648 is forwarded to http://issues.apache.org/bugzilla/show_bug.cgi?id=14090
Processing commands for [EMAIL PROTECTED]: > # Automatically generated email from bts, devscripts version 2.9.26 > forwarded 294648 http://issues.apache.org/bugzilla/show_bug.cgi?id=14090 Bug#294648: apache2 virtual domain ErrorLog directive not working? Noted your statement that Bug has been forwarded to http://issues.apache.org/bugzilla/show_bug.cgi?id=14090. > End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#423638: marked as done (apache2.2-common: a2enmod uses relative path instead of absolute)
Your message dated Sat, 23 Jun 2007 21:08:03 +0200 with message-id <[EMAIL PROTECTED]> and subject line apache2.2-common: a2enmod uses relative path instead of absolute has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) --- Begin Message --- Package: apache2.2-common Version: 2.2.3-4 Severity: Minor The shell script `a2enmod` uses a relative path instead of an absolute path when enabling modules. This is minor security concern as it could cause any potential problems whilst running Apache by allowing path traversal. The following patch to fix the problem is included: --- a2enmod 2007-05-13 10:46:21.0 -0400 +++ a2enmod.new 2007-05-13 10:46:42.0 -0400 @@ -43,7 +43,7 @@ for i in conf load; do if [ -e $SYSCONFDIR/mods-available/$MODNAME.$i -a ! -e $SYSCONFDIR/mods-enabled/$MODNAME.$i ]; then cd $SYSCONFDIR/mods-enabled; -ln -sf ../mods-available/$MODNAME.$i $MODNAME.$i; +ln -sf $SYSCONFDIR/mods-available/$MODNAME.$i $MODNAME.$i; fi done As I said, this is a minor issue and probably trivial but I'm rather uncomfortable with the fact that it uses a relative path rather than an absolute one like a2ensite. --- End Message --- --- Begin Message --- I agree that this is a purely aesthetic issue. There might even be reasons to use relative paths in the links (like running several apache instances with the config dir copied). Therefore, we will not change this. pgpADj1Mj53C6.pgp Description: PGP signature --- End Message ---
Processed: tagging 350286
Processing commands for [EMAIL PROTECTED]: > # Automatically generated email from bts, devscripts version 2.9.26 > tags 350286 pending Bug#350286: apache2-common: why is the apache2 pid file not in /var/run/apache2? There were no tags set. Tags added: pending > End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#306415: marked as done (apache2-common: Please use relative links in /etc/apache2/mods-enabled)
Your message dated Sat, 23 Jun 2007 21:03:44 +0200 with message-id <[EMAIL PROTECTED]> and subject line apache2-common: Please use relative links in /etc/apache2/mods-enabled has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) --- Begin Message --- Package: apache2-common Version: 2.0.53-5 Severity: wishlist Hi. In my HA setup, having absolute links in /etc/apache2/mods-enabled is a bit disturbing. Please consider using relative links for actions.load cgi.load userdir.conf userdir.load Like they are used for the other mods, too. regards, Sven -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (990, 'testing'), (400, 'experimental'), (50, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.11.7-incase Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) --- End Message --- --- Begin Message --- Version: 2.2.3-1 As far as I can see, this is done in the 2.2.x packages. --- End Message ---
Bug#281147: marked as done (apache2: ProxyPassReverse doesn't change cookie paths)
Your message dated Sat, 23 Jun 2007 20:48:38 +0200 with message-id <[EMAIL PROTECTED]> and subject line apache2: ProxyPassReverse doesn't change cookie paths has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) --- Begin Message --- Package: apache2 Severity: wishlist Hi, i think it would be very usefull to add the patch provided at http://nagoya.apache.org/bugzilla/show_bug.cgi?id=10722 to the apache2 package for provding cookie support to a reverse proxy based on apache2. Thanx in advance, Uli -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (500, 'testing'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.4.27-3um Locale: LANG=C, [EMAIL PROTECTED] --- End Message --- --- Begin Message --- Version: 2.2.3-1 This is now included in Apache 2.2 --- End Message ---
Bug#395823: Still a problem, and commands listed in this report no longer work
When I run:
openssl req $@ -config /usr/share/apache2/ssleay.cnf -new -x509 \ -days
365 -nodes -out /etc/apache2/ssl/apache.pem \
-keyout /etc/apache2/ssl/apache.pem
I get this output:
error on line -1 of /usr/share/apache2/ssleay.cnf
16995:error:02001002:system library:fopen:No such file or
directory:bss_file.c:122:fopen('/usr/share/apache2/ssleay.cnf','rb')
16995:error:2006D080:BIO routines:BIO_new_file:no such
file:bss_file.c:125:
16995:error:0E078072:configuration file routines:DEF_LOAD:no such
file:conf_def.c:197:
The only ssleay.cnf file I find is /usr/share/ssl-cert/ssleay.cnf
Anyone got a working command that will allow me to get ssl working
again? I recently had to upgrade from apache1 due to its removal, and I
need some snakeoil certs!
mike
--
Michael R. Head <[EMAIL PROTECTED]>
http://www.suppressingfire.org/~burner/
http://suppressingfire.livejournal.com
http://picasaweb.google.com/demiri.head.wedding
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#329105: marked as done (apache2: enable OpenSSL engine support)
Your message dated Sat, 23 Jun 2007 14:09:41 +0200 with message-id <[EMAIL PROTECTED]> and subject line apache2: enable OpenSSL engine support has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) --- Begin Message --- Package: apache2 Version: 2.0.54-5 Severity: wishlist Hi, please consider compiling Apache with -DSSL_EXPERIMENTAL_ENGINE so that OpenSSL engine support ist available via the SSLCryptoDevice directive. Thanks, Jörg -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.12-1-k7 Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 Versions of packages apache2 depends on: ii apache2-mpm-worker2.0.54-5 high speed threaded model for Apac -- no debconf information --- End Message --- --- Begin Message --- Version: 2.2.3-1 This is enabled by default in 2.2.x. Closing the bug. --- End Message ---
Bug#286941: marked as done (support OpenSSL ENGINE)
Your message dated Sat, 23 Jun 2007 14:09:41 +0200 with message-id <[EMAIL PROTECTED]> and subject line apache2: enable OpenSSL engine support has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) --- Begin Message --- Package: apache2 Version: 2.0.52-3 Severity: minor I want to use apache with external crypto devices.(SSL accelerator card) To enable openssl engine stuff, please add "--enable-rule=SSL_EXPERIMENTAL" to AP2_COMMON_CONFARGS Tetsuhiro Nakane --- End Message --- --- Begin Message --- Version: 2.2.3-1 This is enabled by default in 2.2.x. Closing the bug. --- End Message ---
Processed: reassign 408429 to apache2-doc, forcibly merging 350822 408429, tagging 350822, tagging 399056
Processing commands for [EMAIL PROTECTED]: > # Automatically generated email from bts, devscripts version 2.9.26 > reassign 408429 apache2-doc Bug#408429: apache2-doc: say how to browse manual Bug reassigned from package `apache2-doc' to `apache2-doc'. > forcemerge 350822 408429 Bug#350822: apache2-doc: add Readme on how to browse the docs Bug#408429: apache2-doc: say how to browse manual Forcibly Merged 350822 408429. > tags 350822 pending Bug#350822: apache2-doc: add Readme on how to browse the docs There were no tags set. Bug#408429: apache2-doc: say how to browse manual Tags added: pending > tags 399056 pending Bug#399056: apache2 could suggest apache2-doc and www-browser as apache2-common did There were no tags set. Tags added: pending > End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
