** Changed in: apache2 (Ubuntu)
Status: Incomplete => Invalid
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/1468822
Title:
Apache 2.4.7 does not set environment vars.
Use 'apachectl -V' instead of calling apache2 directly.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/1468822
Title:
Apache 2.4.7 does not set environment vars. Checked with
** Changed in: apache2 (Ubuntu)
Status: New => Invalid
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/1556065
Title:
I win but i did't get anything and I lost my awp
To
Looks like Vivid will need to either cherry-pick this, or a merge may be
sufficient
since your message says you picked r1629372, r1629485, r1629519 and Debian
2.4.10-6 reports to have picked everything up to r1632831 but I need to check
this.
The commits mentioned by Alex are in the trunk
Hi Robie,
Am Montag, 6. Januar 2014, 13:01:06 schrieb Robie Basak:
I'm wondering if there's more of a potential issue in Ubuntu than in
Debian here. Our next release will be supported for five years, so
I expect that we'll backport a number of as-yet-unknown bug fixes.
As we're team based, it
Hi Robie,
Am Freitag, 3. Januar 2014, 16:53:26 schrieb Robie Basak:
I'm merging apache2 2.4.7-1 from Debian into Ubuntu, but I can't
find the fix in Debian for this issue. The upstream fix doesn't
seem to be present, and I tried dropping a config*.m4 file into
.pc/ and the configfiles= line
If you fix that, you also need to regenerate debian/patches/itk-rerun-
configure.patch after the upstream patch has been applied . I have done
that in the attached patch. I would recommend that you do that for
saucy.
This will also be fixed in 2.4.6-4, which will be uploaded to Debian
soon.
I can reproduce this on Debian sid. Somehow openssl's int_free_ex_data()
calls a free_func that points into nirvana. I guess this may be due to
all the libraries being loaded, unloaded and then loaded again during
apache config parsing. Some library using ssl may do the wrong thing
during
I don't think this should be fixed in apache'2 init script. It depends
on '$network' and whatever is providing $network must ensure that the
network is actually usable. Also, it makes much more sense to fix this
in one place instead of hundreds of network daemons which are affected
by the same
Public bug reported:
Debian's apache2 package contains /usr/share/bug/apache2/script
(actually it's a link to .../apache2-bin/script) which gives useful
output for crash bug reports. It would be nice if apport could include
the output of that script when reporting a crash report.
Or maybe that
The StacktraceTop shown above is not actually the top of the stack. It
looks like apache is shutting down and mod_wsgi is crashing during
shutdown.
#2 0x7f383822c6ee in Py_FatalError () from
/tmp/apport_sandbox_EBD2sJ/usr/lib/x86_64-linux-gnu/libpython2.7.so.1.0
No symbol table info
** Summary changed:
- apache2 crashed with SIGABRT in do_fcntl()
+ mod_wsgi crashes during shutdown
** Package changed: apache2 (Ubuntu) = mod-wsgi (Ubuntu)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
Evgeny, you can use netstat -tnp |grep curl to get the other port
number of the connection from curl to apache2. With that, you can look
for the other end of the connection in netstat -tnp output. The last
column should give be 123/apache2 where 123 is the pid of the apache2
process. You will
No, the regex is correct. It matches MSIE 7 to 9 and 10 to 19
** Changed in: apache2 (Ubuntu)
Status: New = Invalid
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/1028204
I cannot reproduce this on Debian unstable with either 2.2.22-9 or
2.2.22-1.
Wild guess: Do you have a per-user process limit configured in
/etc/security/limits.conf ?
If no, it would be helpful if you could provide a backtrace of the process that
curl connects to and hangs. There is some
There are two schools of thought here. Some people prefer linking to the
libraries directly (the saner approach for a Linux distribution) and
some people prefer to load depending libraries with LoadFile (to make it
easier to avoid loading to different versions of the same library in the
same
Are you sure you have the same configuration for all versions? The
behavior is defined by UseCanonicalName and UseCanonicalPhysicalPort:
http://httpd.apache.org/docs/2.2/mod/core.html#usecanonicalphysicalport
The behavior you describe for 2.2.22-1ubuntu1 seems to match the one for
This is likely this bug in logrotate:
https://bugs.launchpad.net/ubuntu/+source/logrotate/+bug/387189
According to that bug it should be fixed in lucid, though. Do you have
logrotate 3.7.8-4ubuntu2.1 or newer installed? Some more information is
available here:
That's what dpkg-statoverride is for. I will mention that in the suexec
man page.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/897120
Title:
apache2-suexec-custom changes
What you want to achieve is out of scope of apache2-suexec-custom. The
filename in /etc/apache2/suexec is the name of the run user of apache2,
i.e. whatever is specified as 'User' in /etc/apache2/apache2.conf. Or
put it differently, that's the user suexec changes from, while
SuexecUserGroup
Note that it is impossible to determine from apache's response alone if
apache is vulnerable or not. The only way to check it is to do a request
with lots of overlapping ranges (like killapache does) and check if the
process size increases a lot or not. On 32bit machines, the original
This is an unsupported use-case of Apache httpd and I am pretty sure it
won't be changed upstream. And I don't think Ubuntu or Debian should
deviate from that, see http://seclists.org/oss-sec/2011/q3/111
** Changed in: apache2 (Ubuntu)
Status: New = Invalid
--
You received this bug
I think you were only missing RewriteOptions inherit. Without that,
only the last set of RewriteRules are executed, and Location comes
after .htaccess. Can you try that?
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in
This is a logrotate issue and happens if the specified logfile directory
(in this case /var/log/apache2) does not exist and the postrotate script
contains a closing '}'. Therefore I don't think Jonathan's patch would
fix the issue completely.
The full info is at http://bugs.debian.org/cgi-
I haven't really looked into this issue in detail and don't know yet if
the proposed fix is ok.
But in case you want to ahead with it: Your patch is against the wrong
package. srclib/ in apache2 is never compiled. You would have to patch
the apr package and rebuild apache2 with the fixed
That's weird indeed. Maybe the package in your PPA and the package in
natty were compiled with slightly different versions of gcc? Are the
buildlogs available somewhere?
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in
Have you checked with netstat that there are no more open connections?
The processes will only die once there are no more open connections.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in ubuntu.
Which version of apache are you using? Since 2.2.10, it supports chroot
without additional modules. And if that breaks graceful restart, that
should be fixed.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in ubuntu.
It seems reasonable to not listen on IPv6 if no v6 address is
configured. Unfortunately, Apache (or rather APR) does this by using
getaddrinfo's AI_ADDRCONFIG flag. And glibc seems to ignore IPv6
addresses of scope host (i.e. ::1) when deciding if an v6 address is
configured. For me, the default
** Package changed: apache2 (Ubuntu) = eglibc (Ubuntu)
--
apache2 does not listen on ipv6 at all when there is no routable IPv6 address
https://bugs.launchpad.net/bugs/633981
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in
Thanks for checking, Gerben.
Maybe this is related to bug #633981: Can you please check in the output
of
ip a
before and after wireless is connected. Are there any inet6 addresses besides
the loop-back entry inet6 ::1/128 scope host?
Do you use network manager for connecting to the wireless?
Luka, that's correct. MSIE [17-9] matches MSIE 7 to 9 and 10 to 19
(and 1, but that should not be a problem).
--
typing error in default-ssl
https://bugs.launchpad.net/bugs/626728
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in
Doesn't upstart have a facility to handle this kind of problems? If no,
how does e.g. cryptsetup work in Ubuntu?
--
SSL pass phrase dialog can't read input
https://bugs.launchpad.net/bugs/582963
You received this bug notification because you are a member of Ubuntu
Server Team, which is
Gerben, can you please also provide the output of the four commands
getent hosts ::1
getent hosts 127.0.0.1
getent hosts localhost
getent hosts ip6-localhost
both before and after wireless network is configured? Thanks.
--
connection forbidden on localhost after wireless connected
Using /home as suexec docroot is a big no-no from a security point of
view. It will create local privilege escalation vulnerabilities in many
situations. If you don't want to use /var/www you should probably use
directories under /srv.
In any case, the above howto is outdated. Nowadays there is
This is intentional, the regexp is supposed to match MSIE 10 and up. The
probability that someone still uses MSIE 1 is zero, but MSIE 10 is not
that far away.
--
typing error in default-ssl
https://bugs.launchpad.net/bugs/626728
You received this bug notification because you are a member of
apache2's init script has the X-Interactive: true header. IMHO upstart
should support this header like insserv does.
--
SSL pass phrase dialog can't read input
https://bugs.launchpad.net/bugs/582963
You received this bug notification because you are a member of Ubuntu
Server Team, which is
A possible culprit is mod_php. Andreas, do you use mod_php and if yes,
which php extensions have you loaded?
--
/etc/init.d/apache2 restart fails on busy webservers
https://bugs.launchpad.net/bugs/270899
You received this bug notification because you are a member of Ubuntu
Server Team, which is
This has been done in 2.2.15-4
--
Enable ExtendedStatus for mod_status by default (was: munin apache plugin no
data)
https://bugs.launchpad.net/bugs/231706
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in ubuntu.
--
This is https://issues.apache.org/bugzilla/show_bug.cgi?id=45444
Patch is at http://svn.apache.org/viewvc?rev=683280view=rev
** Bug watch added: Apache Software Foundation Bugzilla #45444
http://issues.apache.org/bugzilla/show_bug.cgi?id=45444
** Package changed: eglibc (Ubuntu) = apache2
I think Jiří found the source of the problem, but it is a mod_ssl bug
after all. Reassigning to apache2.
This would be https://issues.apache.org/bugzilla/show_bug.cgi?id=45444
** Bug watch added: Apache Software Foundation Bugzilla #45444
This should be fixed since 2.2.4-2. Which version are you using?
--
Apache fails to start after reboot due to missing /var/run/apache2 direcotry
when ssl is enabled
https://bugs.launchpad.net/bugs/603211
You received this bug notification because you are a member of Ubuntu
Server Team, which
That's strange. /usr/sbin/apache2ctl should contain mkdir -p
/var/run/apache2 and the init script should only call apache2ctl. Can
you check that? And if apache2 failed to start after a boot, you should
be able to restart it (using the init script or apache2ctl) without
creating the directory.
About magic:
Apache's mod_mime_magic does not support all features that are used in
/usr/share/mime/magic. Using that file would result in error messages.
And from a quick glance at libmagic, it doesn't seem possible to use it
in mod_mime_magic either because it is not thread safe. Therefore
This is a rather strange bug:
- It happens if I enable exactly two out of the three modules deflate,
reqtimeout, dump_io. But not with only one or all three of them.
- I have also tried replacing mod_ssl.so, mod_deflate.so, and the openssl-libs
with the versions from karmic and mod_ssl.so with
Actually, I have reproduced bug #595116 and not this one, but I still
think it's the same.
--
client sent HTTP/1.1 request without hostname (see RFC2616 section 14.23)
https://bugs.launchpad.net/bugs/589611
You received this bug notification because you are a member of Ubuntu
Server Team, which
I suspect this is the same issue as bug #595855 and #595116: Headers are
getting truncated with https. So far, I have no idea about the reason.
If you have mod_reqtimeout and/or mod_deflate enabled, you can try if
disabling one or both of them makes any difference.
--
client sent HTTP/1.1
You have written enable it by default in the changelog, but AFAICS,
you have missed the postinst change that actually enables the module.
You may want to merge the NEWS.Debian entry, too.
--
[FFE] apache2 DoS attack using slowloris
https://bugs.launchpad.net/bugs/392759
You received this bug
Kenneth: Enabling php in the userdirs is a security hazard: It allows
every local user on a machine to execute arbitrary code as user www-
data. As this is non-obvious to most admins, the default was changed.
In any case, this is not Zalzadore's problem:
http://localhost/bean/index.php the page
I am not sure how wise it is to make a release that is supported for 5
years and does not contain the fix for CVE-2009-3555 (unless you mean to
add it later). Clients may change their behaviour and refuse to connect
to insecure servers at some time in the future.
The improved protection for
Public bug reported:
Binary package hint: apache2
Apache2 in an LTS release would greatly benefit from some recent changes
in the Debian package:
In 2.2.14-6:
* Add a hook to apache2.2-common's postrm script that may come in handy
when upgrading to 2.4.
This may allow to do the 2.2 - 2.4
The patch is a backport from upstream trunk (2.3.x).
The correct fix would be to use apr_file_open() with APR_OS_DEFAULT
permissions instead of apr_file_mktemp() to create the temp file.
Unfortunately, I don't think I will have time to fix it in the next week
or so.
--
Apache Web DAV incorrect
Since 2.2.14-2, RemoveType also works for types coming from
/etc/mime.types
** Changed in: apache2 (Ubuntu)
Status: Confirmed = Fix Committed
--
Mimetypes coming from package mime-support cannot be removed
https://bugs.launchpad.net/bugs/225105
You received this bug notification because
This has been fixed in 2.2.8-1
** Changed in: apache2 (Ubuntu)
Status: Triaged = Fix Released
--
logrotate, apache2, PidFile hardcoded
https://bugs.launchpad.net/bugs/73363
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2
t3rmin4t0r: This works as intended and as documented, see:
http://httpd.apache.org/docs/2.2/logs.html#virtualhost
dananarama: Can you please post the configuration excerpt where you put
the custom logging inside the virtualhost block and it still does not
work?
--
Apache CustomLog and
You can and should edit apache2.conf in this case. I think the number of
users who profit from a fall back access log is much higher than the
number of users who want to disable the access log altogether
** Changed in: apache2 (Ubuntu)
Status: Confirmed = Invalid
--
CustomLog directive
What file system do you use for your root partition? ext4?
--
apache2.2-common: /etc/init.d/apache2 script is empty
https://bugs.launchpad.net/bugs/392532
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in ubuntu.
--
This has been fixed in 2.2.8-5
** Changed in: apache2 (Ubuntu)
Status: Confirmed = Fix Released
--
package update-manager 1:0.87.24 failed to install/upgrade: ErrorMessage:
SystemError in cache.commit(): E:Sub-process /usr/bin/dpkg returned an error
code (1)
It looks like some file corrupion. Please provide the output of these
two commands:
file /var/lib/dpkg/info/apache2.2-common.postinst
head -1 /var/lib/dpkg/info/apache2.2-common.postinst
You could also try aptitude reinstall apache2.2-common
--
package gnome-user-share 2.28.0-0ubuntu1 failed
I suspect that logrotate chokes on the '}' that is in the postrotate
script in /etc/logrotate.d/apache2. Normally it works fine, but maybe if
there is a configuration parse error before the script, something goes
wrong.
Please provide the output from
ls -l /etc/logrotate.d
and the contents of
The output of
logrotate -d /etc/logrotate.conf
(run as root) would be interesting, too. Especially if it mentions
errors or the file /etc/init.d/apache2.
BTW, you can restore the file with
cd /tmp
aptitude download apache2.2-common
dpkg --extract apache2.2-common_*.deb apache2.2-common
sudo
Thanks for your help, Matt.
I think you changed the directory name and that caused the bug to
appear. But it is definitely a grave bug in logrotate that it mis-parses
the config file and clobbers random files if the log directory does not
exist.
Uhh, can somebody with more launchpad foo please
** Bug watch added: Debian Bug tracker #571033
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=571033
** Also affects: logrotate (Debian) via
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=571033
Importance: Unknown
Status: Unknown
--
apache2.2-common: /etc/init.d/apache2
A workaround may be to add MaxRequestsPerChild 1000 (or an even lower
value) to your configuration.
That wouldn't really help since long-running children just hold onto
memory no matter what it seems.
A lower MaxRequestsPerChild should make the children terminate earlier.
Does the
Is the parameter -f TLS1 necessary to reproduce the problem?
Is the URL / of your webserver a php page? If yes, why is the content
length of the page 0, what does the php script do? If not php, what is
it? A simple redirect?
A workaround may be to add MaxRequestsPerChild 1000 (or an even lower
Some comments:
- All Apache MPMs are affected. The sole exception may be if you use the
event MPM without SSL.
- The slowloris attack leaves plenty of error 400 entries in the access
log.
- Using iptables connlimit with a reasonable maximum number of
connections per IP (like 1/5 or 1/10 of what
This looks like https://issues.apache.org/bugzilla/show_bug.cgi?id=44381
which is fixed in 2.2.9.
--
Mod_ssl randomly causes apache threads to use 100% of CPU
https://bugs.launchpad.net/bugs/306293
You received this bug notification because you are a member of Ubuntu
Server Team, which is
Since 2.2.9-2, /etc/init.d/apache2 restart does a hard (non-graceful)
restart again, so this should already be fixed in Intrepid.
James, do you also experience hangs with the default action
/etc/init.d/apache2 reload during logrotate? If the problem is only
with restart, you could just get the
This is documented in NEWS.Debian. Maybe an entry in the release notes
is needed, too?
--
[Intrepid Alpha 5] NameVirtualHost entry in ports.conf causes NameVirtualHost
*:80 has no VirtualHosts warning
https://bugs.launchpad.net/bugs/268868
You received this bug notification because you are a
Some ideas to narrow down the problem:
- configure the ldap-status url and see if it gives any useful information
while the problem appears
(see http://httpd.apache.org/docs/2.2/mod/mod_ldap.html )
- increase apache loglevel
- use netstat to watch the number of connections from apache to slapd
-
70 matches
Mail list logo
