Bug#892628: fixed in icinga 1.14.2+ds-1

[Bas Couwenberg]

fixed 892628 icinga/1.14.2+ds-1
thanks

Hi Jan,

On 2019-07-04 11:52, Jan Wagner wrote:

Am 11.03.18 um 19:20 schrieb Bas Couwenberg:

   * Update Apache configuration for 2.4 syntax.
 (closes: #892628)


after upgrading to buster I did run into the problem, that there was no
authenticating when accessing icinga. Looking into 98d8eb16 show, that
you added

Require all granted

Seems that is not what you whated, cause requireing authentication it
has to be "Require all denied".


No, "Require all granted" is the Apache 2.4 equivalent of "Allow From 
All". Which is what this issue is about.


When authentication is configured, you need "Require valid-user". Which 
the configuration also uses. "Require all granted" should probably be 
dropped instead.


That being said, Icinga 1.x is EOL upstream and as documented in the 
release-notes you should migrate to Icinga 2.


I'm not going to fix this issue in buster, if you cannot migrate to 
icinga2 soon, you can try the above to see if it fixes your issue.


Users who encounter this issue will have to fix the configuration 
themselves, or you or someone else needs to be willing to prepare as 
stable update for it.


Kind Regards,

Bas

Bug#892628: fixed in icinga 1.14.2+ds-1

[Jan Wagner]

Hi Bas,

Am 11.03.18 um 19:20 schrieb Bas Couwenberg:
>* Update Apache configuration for 2.4 syntax.
>  (closes: #892628)

after upgrading to buster I did run into the problem, that there was no
authenticating when accessing icinga. Looking into 98d8eb16 show, that
you added

Require all granted

Seems that is not what you whated, cause requireing authentication it
has to be "Require all denied".

Cheers, Jan.
-- 
Never write mail to , you have been warned!
-BEGIN GEEK CODE BLOCK-
Version: 3.12
GIT d-- s+: a C+++ UL P+ L+++ E--- W+++ N+++ o++ K++ w--- O M+ V- PS
PE Y++
PGP++ t-- 5 X R tv- b+ DI D+ G++ e++ h r+++ y
--END GEEK CODE BLOCK--





signature.asc
Description: OpenPGP digital signature