Re: [VOTE] Release Apache httpd 2.4.15 as GA
* William A Rowe Jr wrote: On Mon, Jun 22, 2015 at 2:01 PM, André Malo n...@perlig.de wrote: * Yann Ylavic wrote: It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. Huh? Actually it is (or maybe I'm not getting something here). I checked at least back until 2.0. http://httpd.apache.org/docs/2.4/mod/mod_alias.html#redirect clearly documents this. That's helpful, except that #redirectmatch does not point back to #redirect as authoritative over arguments. *shrug* apparently I interpret equivalent differently (the part you left out of the quote), but whatever. We all now agree that the 2.4.12 and prior behavior should be preserved, but that doesn't remedy the documentation. Well, we could copy it, if that makes you happy ;-) nd -- Das, was ich nicht kenne, spielt stückzahlmäßig *keine* Rolle. -- Helmut Schellong in dclc
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Mon, Jun 22, 2015 at 2:01 PM, André Malo n...@perlig.de wrote: * Yann Ylavic wrote: It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. Huh? Actually it is (or maybe I'm not getting something here). I checked at least back until 2.0. http://httpd.apache.org/docs/2.4/mod/mod_alias.html#redirect clearly documents this. That's helpful, except that #redirectmatch does not point back to #redirect as authoritative over arguments. We all now agree that the 2.4.12 and prior behavior should be preserved, but that doesn't remedy the documentation.
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Could we check that the proposed patch works and that everyone is OK w/ the implementation as well as maintaining the behavior. My hope would be to TR 2.4.16 the end of this week :)
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Some tests added for framework in r1686886. These cover: Redirect 403 /forbidden RedirectMatch 403 /f+ Location /path/to/f+ Redirect 403 /Location and should address the 2.4.13-15 regression. I also changed the minimum version activating the expr tests (Graham's), from 2.5 to 2.4.15. On Mon, Jun 22, 2015 at 4:32 PM, Jim Jagielski j...@jagunet.com wrote: Agreed. We should also, everytime we catch something like this, add a test-case to the perl test framework to ensure we don't trip over it again :) On Jun 22, 2015, at 8:24 AM, Rainer Jung rainer.j...@kippdata.de wrote: Am 22.06.2015 um 14:04 schrieb Jeff Trawick: On Mon, Jun 22, 2015 at 8:02 AM, Jim Jagielski j...@jagunet.com mailto:j...@jagunet.com wrote: Seems that 3rd time was NOT the charm. Due to the regression I am canceling this VOTE. Let's patch 2.4.16-dev ASAP to handle this and I will TR 2.4.16 forthwith. Thanks, Jim! We'll get through this eventually :) (And thanks Steffen and Reindl too!) +1 to both statements. My test went threw nicely, but due to the problem with the RedirectMatch I would have also voted -1. It is good we have those additional testers in the loop. Thanks Rainer
Re: [VOTE] Release Apache httpd 2.4.15 as GA
A sort of unusual case though, first fix is a docs patch, then a test case for the newly-documented 16 year old behavior :) +1 to the collected feedback and plan. On Jun 22, 2015 9:32 AM, Jim Jagielski j...@jagunet.com wrote: Agreed. We should also, everytime we catch something like this, add a test-case to the perl test framework to ensure we don't trip over it again :) On Jun 22, 2015, at 8:24 AM, Rainer Jung rainer.j...@kippdata.de wrote: Am 22.06.2015 um 14:04 schrieb Jeff Trawick: On Mon, Jun 22, 2015 at 8:02 AM, Jim Jagielski j...@jagunet.com mailto:j...@jagunet.com wrote: Seems that 3rd time was NOT the charm. Due to the regression I am canceling this VOTE. Let's patch 2.4.16-dev ASAP to handle this and I will TR 2.4.16 forthwith. Thanks, Jim! We'll get through this eventually :) (And thanks Steffen and Reindl too!) +1 to both statements. My test went threw nicely, but due to the problem with the RedirectMatch I would have also voted -1. It is good we have those additional testers in the loop. Thanks Rainer
Re: [VOTE] Release Apache httpd 2.4.15 as GA
You are correct, however the syntax never illustrated this. It seems we need two syntaxes, not a [target] optional argument. On Jun 22, 2015 2:02 PM, André Malo n...@perlig.de wrote: * Yann Ylavic wrote: It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. Huh? Actually it is (or maybe I'm not getting something here). I checked at least back until 2.0. http://httpd.apache.org/docs/2.4/mod/mod_alias.html#redirect clearly documents this. Other status codes can be returned by giving the numeric status code as the value of status. If the status is between 300 and 399, the URL argument must be present. If the status is not between 300 and 399, the URL argument must be omitted. http://httpd.apache.org/docs/2.4/mod/mod_alias.html#redirectmatch refers to the above (This directive is equivalent to Redirect). nd -- Solides und umfangreiches Buch -- aus einer Rezension http://pub.perlig.de/books.html#apache2
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Mon, Jun 22, 2015 at 10:50 AM, Plüm, Rüdiger, Vodafone Group
ruediger.pl...@vodafone.com wrote:
-Original Message-
From: Eric Covener [mailto:cove...@gmail.com]
Sent: Montag, 22. Juni 2015 01:08
To: Apache HTTP Server Development List
Subject: Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 5:24 PM, William A Rowe Jr wr...@rowe-clan.net
wrote:
As this is not a regression from 2.4.13 or 2.4.14 candidates, it seems
to me
we should ship.
I am -1 for 2.4.15 with the regression. The other candidates being
broken doesn't mitigate it much for me.
+1 to Eric's comment and
-1 from me as well on the release. Looks like we are a little bit out of luck
with 2.4.x releases recently :-).
My proposal is to leave the vote open at most for 24 hours to see if anything
more comes up and then roll 2.4.16
with the patch from Yann applied.
@Yann: Wouldn't it make sense to check for cmd-path as well before we do the
expression parsing stuff to ensure we are really in a Location... section?
So something like:
@@ -270,7 +273,7 @@
* if we understand the first arg but have no second arg, we are dealing
* with a status like GONE.
*/
-if (grokarg1 arg2 !arg3 HTTP_GONE != status) {
+if (grokarg1 0 arg2 !arg3 cmd-path HTTP_GONE != status) {
const char *expr_err = NULL;
dirconf-redirect =
Yes, that's where I wanted to go for a final version of the patch,
since the comment (above that code) states: we use the expression
syntax assuming a path from the location.
OTOH, I don't see why it would be limited to a Location context...
But try_redirect() uses per_dir_config only, so it's probably better
to not change this for now, and handle module_config in a follow up
(once 2.4.16 is out! :)
AIUI though, we now accept the URL to be (possibly) an expression, but
I don't understand why we need these new alias_dir_conf entries to
handle that, can't we simply use a new expr field in the alias_entry
(maybe with some heuristic to use a plain string if no real expression
is used, for performances reasons if that matters), and thus preserve
the 2.4.12 logic?
Also, I think we should handle any non-redirect (custom) statuses like
we do for HTTP_GONE (no third/second URL argument required nor
relevent, depending on vhost/location context), and mention it in the
doc :)
So finally this makes me wonder if we'd better not revert the change
for now (at least the Redirect* part since Alias* changes look good),
and think more about the possible Redirect* uses.
Regards,
Yann.
Redirect proposed fix (was: [VOTE] Release Apache httpd 2.4.15 as GA)
On Mon, Jun 22, 2015 at 12:26 PM, Yann Ylavic ylavic@gmail.com wrote: On Mon, Jun 22, 2015 at 10:50 AM, Plüm, Rüdiger, Vodafone Group @Yann: Wouldn't it make sense to check for cmd-path as well before we do the expression parsing stuff to ensure we are really in a Location... section? Yes, that's where I wanted to go for a final version of the patch, since the comment (above that code) states: we use the expression syntax assuming a path from the location. The attached patch enables expressions for Location context only a redirect status. I'll try to add tests in framework when I have little time... OTOH, I don't see why it would be limited to a Location context... But try_redirect() uses per_dir_config only, so it's probably better to not change this for now, and handle module_config in a follow up (once 2.4.16 is out! :) AIUI though, we now accept the URL to be (possibly) an expression, but I don't understand why we need these new alias_dir_conf entries to handle that, can't we simply use a new expr field in the alias_entry (maybe with some heuristic to use a plain string if no real expression is used, for performances reasons if that matters), and thus preserve the 2.4.12 logic? Also, I think we should handle any non-redirect (custom) statuses like we do for HTTP_GONE (no third/second URL argument required nor relevent, depending on vhost/location context), and mention it in the doc :) So finally this makes me wonder if we'd better not revert the change for now (at least the Redirect* part since Alias* changes look good), and think more about the possible Redirect* uses. I can't find a related bugzilla for the feature (not sold already :), so either way for me, revert or something like the attached... Regards, Yann. httpd-2.4.x-mod_alias-redirect_expr.patch Description: application/download
Re: [VOTE] Release Apache httpd 2.4.15 as GA
OK... +1: o OSX 10.10.3, Xcode 6.3.2: x86_64 o FreeBSD 9.4, 10.1: x86_64 o CentOS 6.6, 7: x86_64 On Jun 19, 2015, at 12:50 PM, Jim Jagielski j...@jagunet.com wrote: The pre-release test tarballs for Apache httpd 2.4.15 can be found at the usual place: http://httpd.apache.org/dev/dist/ I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [ ] +1: Good to go [ ] +0: meh [ ] -1: Danger Will Robinson. And why. Vote will last the normal 72 hrs. NOTE: The *-deps are only there for convenience. Thx! PS: Hopefully, 3rd time's the charm!
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Seems that 3rd time was NOT the charm. Due to the regression I am canceling this VOTE. Let's patch 2.4.16-dev ASAP to handle this and I will TR 2.4.16 forthwith.
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Mon, Jun 22, 2015 at 8:02 AM, Jim Jagielski j...@jagunet.com wrote: Seems that 3rd time was NOT the charm. Due to the regression I am canceling this VOTE. Let's patch 2.4.16-dev ASAP to handle this and I will TR 2.4.16 forthwith. Thanks, Jim! We'll get through this eventually :) (And thanks Steffen and Reindl too!) -- Born in Roswell... married an alien... http://emptyhammock.com/
Re: Redirect proposed fix (was: [VOTE] Release Apache httpd 2.4.15 as GA)
On Mon, Jun 22, 2015 at 12:56 PM, Yann Ylavic ylavic@gmail.com wrote: The attached patch enables expressions for Location context only a redirect status. *and* a redirect status.
RE: [VOTE] Release Apache httpd 2.4.15 as GA
-Original Message-
From: Eric Covener [mailto:cove...@gmail.com]
Sent: Montag, 22. Juni 2015 01:08
To: Apache HTTP Server Development List
Subject: Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 5:24 PM, William A Rowe Jr wr...@rowe-clan.net
wrote:
As this is not a regression from 2.4.13 or 2.4.14 candidates, it seems
to me
we should ship.
I am -1 for 2.4.15 with the regression. The other candidates being
broken doesn't mitigate it much for me.
+1 to Eric's comment and
-1 from me as well on the release. Looks like we are a little bit out of luck
with 2.4.x releases recently :-).
My proposal is to leave the vote open at most for 24 hours to see if anything
more comes up and then roll 2.4.16
with the patch from Yann applied.
@Yann: Wouldn't it make sense to check for cmd-path as well before we do the
expression parsing stuff to ensure we are really in a Location... section?
So something like:
@@ -270,7 +273,7 @@
* if we understand the first arg but have no second arg, we are dealing
* with a status like GONE.
*/
-if (grokarg1 arg2 !arg3 HTTP_GONE != status) {
+if (grokarg1 0 arg2 !arg3 cmd-path HTTP_GONE != status) {
const char *expr_err = NULL;
dirconf-redirect =
Regards
Rüdiger
Re: [VOTE] Release Apache httpd 2.4.15 as GA
* Yann Ylavic wrote: It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. Huh? Actually it is (or maybe I'm not getting something here). I checked at least back until 2.0. http://httpd.apache.org/docs/2.4/mod/mod_alias.html#redirect clearly documents this. Other status codes can be returned by giving the numeric status code as the value of status. If the status is between 300 and 399, the URL argument must be present. If the status is not between 300 and 399, the URL argument must be omitted. http://httpd.apache.org/docs/2.4/mod/mod_alias.html#redirectmatch refers to the above (This directive is equivalent to Redirect). nd -- Solides und umfangreiches Buch -- aus einer Rezension http://pub.perlig.de/books.html#apache2
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Mon, Jun 22, 2015 at 4:50 AM, Plüm, Rüdiger, Vodafone Group ruediger.pl...@vodafone.com wrote: -1 from me as well on the release. Looks like we are a little bit out of luck with 2.4.x releases recently :-). I'll show some uncharacteristic optimism -- in a way we have been very lucky to catch both issues during voting :) -- Eric Covener cove...@gmail.com
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Am 22.06.2015 um 14:04 schrieb Jeff Trawick: On Mon, Jun 22, 2015 at 8:02 AM, Jim Jagielski j...@jagunet.com mailto:j...@jagunet.com wrote: Seems that 3rd time was NOT the charm. Due to the regression I am canceling this VOTE. Let's patch 2.4.16-dev ASAP to handle this and I will TR 2.4.16 forthwith. Thanks, Jim! We'll get through this eventually :) (And thanks Steffen and Reindl too!) +1 to both statements. My test went threw nicely, but due to the problem with the RedirectMatch I would have also voted -1. It is good we have those additional testers in the loop. Thanks Rainer
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Agreed. We should also, everytime we catch something like this, add a test-case to the perl test framework to ensure we don't trip over it again :) On Jun 22, 2015, at 8:24 AM, Rainer Jung rainer.j...@kippdata.de wrote: Am 22.06.2015 um 14:04 schrieb Jeff Trawick: On Mon, Jun 22, 2015 at 8:02 AM, Jim Jagielski j...@jagunet.com mailto:j...@jagunet.com wrote: Seems that 3rd time was NOT the charm. Due to the regression I am canceling this VOTE. Let's patch 2.4.16-dev ASAP to handle this and I will TR 2.4.16 forthwith. Thanks, Jim! We'll get through this eventually :) (And thanks Steffen and Reindl too!) +1 to both statements. My test went threw nicely, but due to the problem with the RedirectMatch I would have also voted -1. It is good we have those additional testers in the loop. Thanks Rainer
Re: [VOTE] Release Apache httpd 2.4.15 as GA
in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$ RedirectMatch 404 ^/.*cgi-win/(.*)$ RedirectMatch 404 ^/.*cgiwin/(.*)$ RedirectMatch 404 ^/.*commoncgi/(.*)$ RedirectMatch 404 ^/.*console/(.*)$ RedirectMatch 404 ^/.*ControlManager/(.*)$ RedirectMatch 404 ^/.*cs-dns/(.*)$ RedirectMatch 404 ^/.*cs-whois/(.*)$ RedirectMatch 404 ^/.*cvstrac/(.*)$ RedirectMatch 404 ^/.*database-admin/(.*)$ RedirectMatch 404 ^/.*databaseadmin/(.*)$ RedirectMatch 404 ^/.*databasemanager/(.*)$ RedirectMatch 404 ^/.*databaseweb/(.*)$ RedirectMatch 404 ^/.*dbma/(.*)$ RedirectMatch 404 ^/.*dmanager/(.*)$ RedirectMatch 404 ^/.*dokuwiki/(.*)$ RedirectMatch 404 ^/.*dokuwiki/(.*)$ RedirectMatch 404 ^/.*DotNetNuke/(.*)$ RedirectMatch 404 ^/.*dotProject/(.*)$ RedirectMatch 404 ^/.*dotProject/(.*)$
Re: [VOTE] Release Apache httpd 2.4.15 as GA
-1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$ RedirectMatch 404 ^/.*cgi-win/(.*)$ RedirectMatch 404 ^/.*cgiwin/(.*)$ RedirectMatch 404 ^/.*commoncgi/(.*)$ RedirectMatch 404 ^/.*console/(.*)$ RedirectMatch 404 ^/.*ControlManager/(.*)$ RedirectMatch 404 ^/.*cs-dns/(.*)$ RedirectMatch 404 ^/.*cs-whois/(.*)$ RedirectMatch 404 ^/.*cvstrac/(.*)$ RedirectMatch 404 ^/.*database-admin/(.*)$ RedirectMatch 404 ^/.*databaseadmin/(.*)$ RedirectMatch 404 ^/.*databasemanager/(.*)$ RedirectMatch 404 ^/.*databaseweb/(.*)$ RedirectMatch 404 ^/.*dbma/(.*)$ RedirectMatch 404 ^/.*dmanager/(.*)$ RedirectMatch 404 ^/.*dokuwiki/(.*)$ RedirectMatch 404 ^/.*dokuwiki/(.*)$ RedirectMatch 404 ^/.*DotNetNuke/(.*)$ RedirectMatch 404 ^/.*dotProject/(.*)$ RedirectMatch 404 ^/.*dotProject/(.*)$ RedirectMatch 404 ^/.*drupal/(.*)$ RedirectMatch 404 ^/.*fileserver/(.*)$ RedirectMatch 404 ^/.*hastymail2/(.*)$ RedirectMatch 404 ^/.*Hastymail2/(.*)$ RedirectMatch 404 ^/.*hastymail/(.*)$ RedirectMatch 404
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Fri, Jun 19, 2015 at 12:50 PM, Jim Jagielski j...@jagunet.com wrote: The pre-release test tarballs for Apache httpd 2.4.15 can be found at the usual place: http://httpd.apache.org/dev/dist/ I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [X] +1: Good to go Test suite passed with prefork and event on: CentOS 7 64-bit FreeBSD 10.1, 32-bit, kernel accept filter not loaded Fedora 22, 64-bit Ubuntu 12, 32-bit* Ubuntu 15, 32-bit* *silly failure of t/filter/case.t due to an expected Perl doc file not being installed Built with cmake 3.1.3 and VS 2012 x64 on Windows, and served pages -- Born in Roswell... married an alien... http://emptyhammock.com/
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On 6/19/2015 9:50 AM, Jim Jagielski wrote: The pre-release test tarballs for Apache httpd 2.4.15 can be found at the usual place: http://httpd.apache.org/dev/dist/ I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [X] +1: Good to go VC9/12 and various Windows flavors. Thanks for RMing
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Fri, Jun 19, 2015 at 6:50 PM, Jim Jagielski j...@jagunet.com wrote: I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [X] +1: Good to go No regression, with event and worker, included apr-1.5.2 and apr-util-1.5.4. Tested systems: * Debian 8 - 64bit, * Debian 7 - 64bit, * Debian 6 - 64bit, * Debian 6 - mixed 32/64bit system/kernel. Thanks Jim for RM'ing, Yann.
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On 6/21/2015 11:24 PM, William A Rowe Jr wrote: As this is not a regression from 2.4.13 or 2.4.14 candidates, it seems to me we should ship. I am mostly a lurker on this list but I feel I need to chime in on this. The mistake with that sentiment is that it is imposing largely invisible to users, internal processes onto said users. The public never saw 2.4.1[34] so I would consider the above irrelevant. From the user's point of view, going from the last publicly released version (2.4.12) to the new one, this *would* be a regression. The fact that this was not caught in 2.4.1[34] is a gap in the testing process, and shouldn't be (IMHO) grounds for breaking working sites with a patch release. Just my $0.02. Kean
Re: [VOTE] Release Apache httpd 2.4.15 as GA
It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. And [1] broke your configuration, assuming ^\/something\/$ is an expression (not a regex). [1] http://svn.apache.org/r1663259 On Sun, Jun 21, 2015 at 7:52 PM, Reindl Harald h.rei...@thelounge.net wrote: in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$ RedirectMatch 404 ^/.*cgi-win/(.*)$ RedirectMatch 404 ^/.*cgiwin/(.*)$ RedirectMatch 404 ^/.*commoncgi/(.*)$ RedirectMatch 404 ^/.*console/(.*)$ RedirectMatch 404 ^/.*ControlManager/(.*)$ RedirectMatch 404 ^/.*cs-dns/(.*)$ RedirectMatch 404 ^/.*cs-whois/(.*)$ RedirectMatch 404 ^/.*cvstrac/(.*)$
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 5:24 PM, William A Rowe Jr wr...@rowe-clan.net wrote: As this is not a regression from 2.4.13 or 2.4.14 candidates, it seems to me we should ship. I am -1 for 2.4.15 with the regression. The other candidates being broken doesn't mitigate it much for me. -- Eric Covener cove...@gmail.com
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. On Jun 21, 2015 12:53 PM, Reindl Harald h.rei...@thelounge.net wrote: in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$ RedirectMatch 404 ^/.*cgi-win/(.*)$ RedirectMatch 404 ^/.*cgiwin/(.*)$ RedirectMatch 404 ^/.*commoncgi/(.*)$ RedirectMatch 404 ^/.*console/(.*)$ RedirectMatch 404 ^/.*ControlManager/(.*)$ RedirectMatch 404 ^/.*cs-dns/(.*)$ RedirectMatch 404 ^/.*cs-whois/(.*)$ RedirectMatch 404 ^/.*cvstrac/(.*)$ RedirectMatch 404 ^/.*database-admin/(.*)$ RedirectMatch 404 ^/.*databaseadmin/(.*)$ RedirectMatch 404
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Am 21.06.2015 um 21:02 schrieb Yann Ylavic: It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. And [1] broke your configuration, assuming ^\/something\/$ is an expression (not a regex). [1] http://svn.apache.org/r1663259 that may be true but * it is a regression breaking configs working like a charm over years and IMHO a no-go for a minor update * at makes little sense to provide a URL when you just want the default 404 error page defined with ErrorDocument 404 html content because by enforce providing a URL the configuration is no longer re-useable on different machines On Sun, Jun 21, 2015 at 7:52 PM, Reindl Harald h.rei...@thelounge.net wrote: in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$ RedirectMatch 404 ^/.*centreon/(.*)$ RedirectMatch 404 ^/.*certificate/(.*)$ RedirectMatch 404 ^/.*cgi-auth/(.*)$ RedirectMatch 404 ^/.*cgi-bin2/(.*)$ RedirectMatch 404 ^/.*cgi-bin/(.*)$ RedirectMatch 404 ^/.*cgi-csc/(.*)$ RedirectMatch 404 ^/.*cgi-isapi/(.*)$ RedirectMatch 404 ^/.*cgi-lib/(.*)$ RedirectMatch 404 ^/.*cgi-local/(.*)$ RedirectMatch 404 ^/.*cgi-public/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shl/(.*)$ RedirectMatch 404 ^/.*cgi-shop/(.*)$ RedirectMatch 404 ^/.*cgi-sys/(.*)$ RedirectMatch 404 ^/.*cgi-weddico/(.*)$
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 9:04 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup Attached. mod_alias-revert-r1663259.patch Description: application/download
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Am 21.06.2015 um 21:28 schrieb Yann Ylavic: On Sun, Jun 21, 2015 at 9:04 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup Attached thank you! confirmed - with that patch applied the shared configuration over all of our servers works as the last years the question remains how this should be handeled in the future because i searched a long time for a solution to just give out the 404 default page in case of several URLs to get rid of the noise of security scans and that requires a error code to prevent false positives signature.asc Description: OpenPGP digital signature
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 2:11 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:02 schrieb Yann Ylavic: It seems that RedirectMatch isn't documented without the third (URL) argument, unless in Location. All the way back to 1.3... the fact that it worked at all was a coincidence. If this were an 'undocumented feature', then users are responsible for submitting a docs patch that it is a feature in-use. We can't possibly predict every broken- but-otherwise-working configuration in existence. And [1] broke your configuration, assuming ^\/something\/$ is an expression (not a regex). [1] http://svn.apache.org/r1663259 that may be true but * it is a regression breaking configs working like a charm over years and IMHO a no-go for a minor update That's called a charmed existence, and charms turn. IMHO, it is a go (for a subversion update, actually, minor would be 2.6.0, for example). * at makes little sense to provide a URL when you just want the default 404 error page defined with ErrorDocument 404 html content because by enforce providing a URL the configuration is no longer re-useable on different machines Irrelevant. Pulling Coar/Bowen '04 Apache Cookbook off the shelf, this error was propagated by the last example in 5.8 (and likely elsewhere); Redirect gone /foo.html which likely isn't working in 2.4.15. As this is not a regression from 2.4.13 or 2.4.14 candidates, it seems to me we should ship.
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup On Jun 21, 2015 12:53 PM, Reindl Harald h.rei...@thelounge.net mailto:h.rei...@thelounge.net wrote: in fact RedirectMatch is *completly* broken RedirectMatch 404 ^\/something\/$ and *any* URI get a 404 response not just with the long list from my previous post Am 21.06.2015 um 18:57 schrieb Reindl Harald: -1 just rebuilt my httpd rpm with the http://httpd.apache.org/dev/dist/httpd-2.4.15.tar.bz2 on my testserver and all vhosts are coming with a 404 page and nothing in the errorlog first i thought it's a https problem cause by a self signed wildcard certificate, but the same after remove the mod_rewrite redirction LogLevel debug core:debug is not much helpful with only 1 line for each request [Sun Jun 21 18:50:46.972582 2015 tel:972582%202015] [headers:debug] [pid 25479] mod_headers.c(899): AH01503: headers: ap_headers_error_filter() it is in fact that configuration file which suddenly triggers at *every* request instead just mask several unwanted software even if it would exist on the machine [root@testserver:~]$ cat conf/httpd-deny.conf Directory /var/www/cgi-bin AllowOverride None Options None Require all denied /Directory Files ~ ^\.ht Require all denied /Files RedirectMatch 404 ^/.*\.svn/(.*)$ RedirectMatch 404 ^/.*CVS/(.*)$ RedirectMatch 404 ^/.*\.asax$ RedirectMatch 404 ^/.*\.ascx$ RedirectMatch 404 ^/.*\.ashx$ RedirectMatch 404 ^/.*\.asmx$ RedirectMatch 404 ^/.*\.asp$ RedirectMatch 404 ^/.*\.aspx$ RedirectMatch 404 ^/.*\.axd$ RedirectMatch 404 ^/.*\.back$ RedirectMatch 404 ^/.*\.bak$ RedirectMatch 404 ^/.*\.bat$ RedirectMatch 404 ^/.*\.cfm$ RedirectMatch 404 ^/.*\.cmd$ RedirectMatch 404 ^/.*\.csproj$ RedirectMatch 404 ^/.*\.dll$ RedirectMatch 404 ^/.*\.DS_Store$ RedirectMatch 404 ^/.*\.exe$ RedirectMatch 404 ^/.*\.FBCIndex$ RedirectMatch 404 ^/.*\.ini$ RedirectMatch 404 ^/.*\.jhtml$ RedirectMatch 404 ^/.*\.jsp$ RedirectMatch 404 ^/.*\.log$ RedirectMatch 404 ^/.*\.mdf$ RedirectMatch 404 ^/.*\.ocx$ RedirectMatch 404 ^/.*\.py$ RedirectMatch 404 ^/.*\.rb$ RedirectMatch 404 ^/.*\.sh$ RedirectMatch 404 ^/.*\.sql$ RedirectMatch 404 ^/.*\.vbproj$ RedirectMatch 404 ^/.*\.webinfo$ RedirectMatch 404 ^/.*admin-bak/(.*)$ RedirectMatch 404 ^/.*~admin/(.*)$ RedirectMatch 404 ^/.*backups/(.*)$ RedirectMatch 404 ^/.*backup/(.*)$ RedirectMatch 404 ^/.*_backup/(.*)$ RedirectMatch 404 ^/.*bak/(.*)$ RedirectMatch 404 ^/.*_errors/(.*)$ RedirectMatch 404 ^/.*htbin/(.*)$ RedirectMatch 404 ^/.*iisadmin/(.*)$ RedirectMatch 404 ^/.*iisprotect/(.*)$ RedirectMatch 404 ^/.*iissamples/(.*)$ RedirectMatch 404 ^/.*incoming/(.*)$ RedirectMatch 404 ^/.*Install/(.*)$ RedirectMatch 404 ^/.*logs/(.*)$ RedirectMatch 404 ^/.*Log/(.*)$ RedirectMatch 404 ^/.*LOG/(.*)$ RedirectMatch 404 ^/.*lost\+found/(.*)$ RedirectMatch 404 ^/.*oldfiles/(.*)$ RedirectMatch 404 ^/.*_passwords/(.*)$ RedirectMatch 404 ^/.*_private/(.*)$ RedirectMatch 404 ^/.*sslkeys/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*sysbackup/(.*)$ RedirectMatch 404 ^/.*temp/(.*)$ RedirectMatch 404 ^/.*_vti_bin/(.*)$ RedirectMatch 404 ^/.*_vti_bot/(.*)$ RedirectMatch 404 ^/.*_vti_log/(.*)$ RedirectMatch 404 ^/.*_vti_pvt/(.*)$ RedirectMatch 404 ^/.*_vti_shm/(.*)$ RedirectMatch 404 ^/.*_vti_txt/(.*)$ RedirectMatch 404 ^/.*webmaster_logs/(.*)$ RedirectMatch 404 ^/.*wwwlog/(.*)$ RedirectMatch 404 ^/.*~ RedirectMatch 404 ^/.*Administration/(.*)$ RedirectMatch 404 ^/.*AdvWebAdmin/(.*)$ RedirectMatch 404 ^/.*asp/(.*)$ RedirectMatch 404 ^/.*aspx/(.*)$ RedirectMatch 404 ^/.*authadmin/(.*)$ RedirectMatch 404 ^/.*BizTalkServerRepository/(.*)$ RedirectMatch 404 ^/.*blindblog/(.*)$ RedirectMatch 404 ^/.*cbblog/(.*)$ RedirectMatch 404 ^/.*ccards/(.*)$
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 11:24 PM, William A Rowe Jr wr...@rowe-clan.net wrote: Pulling Coar/Bowen '04 Apache Cookbook off the shelf, this error was propagated by the last example in 5.8 (and likely elsewhere); Redirect gone /foo.html which likely isn't working in 2.4.15. It is (still) working since the gone keyword is handled specifically.
Re: [VOTE] Release Apache httpd 2.4.15 as GA
No issues/regressions seen with VC9/10/11/14 running XP/win7/win8+/win10 and server 2012+/2016. Op 21 jun. 2015 om 19:30 heeft Gregg Smith g...@gknw.net het volgende geschreven: On 6/19/2015 9:50 AM, Jim Jagielski wrote: The pre-release test tarballs for Apache httpd 2.4.15 can be found at the usual place: http://httpd.apache.org/dev/dist/ I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [X] +1: Good to go VC9/12 and various Windows flavors. Thanks for RMing
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Sun, Jun 21, 2015 at 9:37 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:28 schrieb Yann Ylavic: On Sun, Jun 21, 2015 at 9:04 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup Attached thank you! confirmed - with that patch applied the shared configuration over all of our servers works as the last years Thanks Harald for testing. Could you please also test the attached patch (instead of the previous one) which should fix the issue without reverting? mod_alias-fix.patch Description: application/download
Re: [VOTE] Release Apache httpd 2.4.15 as GA
Am 21.06.2015 um 22:05 schrieb Yann Ylavic: On Sun, Jun 21, 2015 at 9:37 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:28 schrieb Yann Ylavic: On Sun, Jun 21, 2015 at 9:04 PM, Reindl Harald h.rei...@thelounge.net wrote: Am 21.06.2015 um 21:00 schrieb William A Rowe Jr: Reindl, Try reverting http://svn.apache.org/viewvc?view=revisionrevision=1663259 and see if this resolves your observed defect. could you provide a unified diff for inclusion in the RPM-SPEC for revert that commit, i can't build outside rpmbuild to get a compareable setup Attached thank you! confirmed - with that patch applied the shared configuration over all of our servers works as the last years Thanks Harald for testing. no problem i guess i have to apologize not testing the 24.13 / 2.4.14 which likely would have found that much eralier :-( Could you please also test the attached patch (instead of the previous one) which should fix the issue without reverting? looks fine! Patch #6 (mod_alias-fix.patch): + /usr/bin/cat /home/builduser/rpmbuild/SOURCES/mod_alias-fix.patch + /usr/bin/patch -p1 --fuzz=0 patching file modules/mappers/mod_alias.c signature.asc Description: OpenPGP digital signature
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On 20/06/2015 02:50, Jim Jagielski wrote: I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. using included apr 1.5.2 and apr-util 1.5.4 and with mysql (mariadb) +1 Slackware 13.1 - 14.1 PS: Hopefully, 3rd time's the charm! :)
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Jun 19, 2015, at 10:50 AM, Jim Jagielski j...@jagunet.com wrote: The pre-release test tarballs for Apache httpd 2.4.15 can be found at the usual place: http://httpd.apache.org/dev/dist/ I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [ ] +1: Good to go [ ] +0: meh [ ] -1: Danger Will Robinson. And why. Tested on Fedora 21-64bit. No problems. +1 Leif Vote will last the normal 72 hrs. NOTE: The *-deps are only there for convenience. Thx! PS: Hopefully, 3rd time's the charm!
Re: [VOTE] Release Apache httpd 2.4.15 as GA
On Fri, Jun 19, 2015 at 12:50 PM, Jim Jagielski j...@jagunet.com wrote: [ ] +1: Good to go +1 AIX/xlc/PPC64 100% pass
[VOTE] Release Apache httpd 2.4.15 as GA
The pre-release test tarballs for Apache httpd 2.4.15 can be found at the usual place: http://httpd.apache.org/dev/dist/ I'm calling a VOTE on releasing these as Apache httpd 2.4.15 GA. [ ] +1: Good to go [ ] +0: meh [ ] -1: Danger Will Robinson. And why. Vote will last the normal 72 hrs. NOTE: The *-deps are only there for convenience. Thx! PS: Hopefully, 3rd time's the charm!
