Thomas, thanks for the update. I'll close the bug then as Fix Released.
** Changed in: apache2 (Ubuntu)
Status: Incomplete = Fix Released
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
With new installs and updated packages this bug seems gone. Kerberos
Apache work out of the box again.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/839390
Title:
Apache+Kerberos
Found that too. After setting LDAPVerifyServerCert off everything
seemed fine again. Since we're working with self signed certificates
this isn't tragic.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
On a test system I was able to revert back to the older apache-package.
Error gone. True a regression. But since on a third server I am working
with apache2 compiled from sources and this apache2 doesn't show the
error --- but it might quite be it had it, but it is already fixed
upstream.
--
You
SSL regression appears to be when used for ldap communication to active
directory servers, not for serving http.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/839390
Title:
@Michael
You mentioned SSL. How does that fit in here?
You can add bug data from an afflicted, internet-connected, system by
running this:
$ apport-collect 839390
Otherwise, there are ways to save bug data to file, transfer it to
another machine, and then upload it to this bug.
--
You
I'm also seeing intermittent LDAP failures to bind for users with this
version of the apache2 package. I think a regression in ssl support for
ldap has occured with this version of apache2. I've put one of my two
misbehaving servers back to 2.2.14-5ubuntu8.4 to see if the problems go
away. A
I've worked around this bug at this time by adding:
LDAPVerifyServerCert off
to the server config to get around the problem at this time.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
It is currently believed that this was introduced by?
apache2 (2.2.14-5ubuntu8.6) lucid-security; urgency=low
* SECURITY UPDATE: Range header DoS vulnerability
- debian/patches/207_CVE-2011-3192.dpatch: filter out large
byte ranges and improve memory efficiency in handling buckets.
@Thomas, if you are able - and willing to, are you able to try reverting
back to apache2 2.2.14-5ubuntu8.5 - to check it is functional, then
upgrade back to *8.6 to prove this introduced the regression?
Thanks.
--
You received this bug notification because you are a member of Ubuntu
Server
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/839390
Title:
Apache+Kerberos not working anymore since update today
To manage notifications about this bug go to:
The configfile for Nagios3 working before the update:
!ScriptAlias /cgi-bin/nagios3 /usr/lib/cgi-bin/nagios3
!ScriptAlias /nagios3/cgi-bin /usr/lib/cgi-bin/nagios3
!Alias /nagios3/stylesheets /etc/nagios3/stylesheets
!Alias /nagios3 /usr/share/nagios3/htdocs
!
!DirectoryMatch
** Tags added: regression-update
** Changed in: apache2 (Ubuntu)
Importance: Undecided = High
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/839390
Title:
Apache+Kerberos not
13 matches
Mail list logo