View Issue Details

IDProjectCategoryView StatusLast Update
0017736phpList 3 applicationAuthentication Systempublic15-05-17 15:13
Reportermichiel 
PrioritynormalSeverityminorReproducibilitysometimes
Status assignedResolutionopen 
Product Version3.0.12 
Target Versionnext minorFixed in Version 
Summary0017736: htaccess update for apache 2.4
Description<Files ..... >

remove:
- Order allow,deny
- Deny from all

change to:

    <IfModule mod_authz_core.c>
      # Apache 2.4
      Require all granted
    </IfModule>
    <IfModule !mod_authz_core.c>
      # Apache 2.2
      Order allow,deny
      Allow from all
    </IfModule>
 </Files>
Additional InformationAlthough this is the suggested change for Dokuwiki.

I wonder though if the last Allow from all needs to change to Deny from all
TagsNo tags attached.

Activities

rata

03-07-15 16:46

developer   ~0056273

Acording to the patch you sent by email:

- Order allow,deny
- Deny from all
+ <IfModule mod_authz_core.c>
+ # Apache 2.4
+ Require all granted
+ </IfModule>
+ <IfModule !mod_authz_core.c>
+ # Apache 2.2
+ Order allow,deny
+ Allow from all
+ </IfModule>
 </Files>


It seems that both need (Require all granted and Allow from all) need to be denied, instead. But maybe there is some subtle thing I'm remembering, this was all pretty confusing and every time I need to check the docs because it sucks this syntax IMHO.

Seeing the docs here: https://httpd.apache.org/docs/2.2/mod/mod_authz_host.html#order in a quick glance I guess the patch is wrong. But the actual way to see it an be sure, given that this is so tricky, is trying it. Maybe there is something outside the patch changed lines that changes the behavior or something.

In any case, we are not really concerced about the dokuwiki example, but about the uses in phplist itself. To update our uses we can use that documentation and this one on upgrading:

https://httpd.apache.org/docs/2.4/upgrading.html

rata

03-07-15 16:47

developer   ~0056274

Ohh, now I understand the remove and added. So yes, it was the same patch :)

samtuke

15-05-17 15:13

administrator   ~0059066

Has this patch already been applied?