[EMAIL PROTECTED] apache security patches

Hi reffering to these.   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3352 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3357   Is their patches for these? or is anyone who wants to close the holes expected to use beta code?   thanks   Chris

[EMAIL PROTECTED] Apache Privilege Separation for WebDAV

Hi Folks, I've been doing some work on privilege separation with Apache 1.3 and thought I share it with folk here (could be useful for anyone who is using WebDAV and apache). http://oss.metaparadigm.com/apache-privsep/ The Apache Privilege Separation patch addresses the problem that an Apache

[EMAIL PROTECTED] Understanding suexec error with Apache 1.3.34 and PHP 4

Hello, I'm trying to get suexec running with php4 and a site full of .php pages running on a Mac OS X 10.3.9 machine. I was experiencing silent failures of suexec (no entry in the /var/log/httpd/{suexec_log,error_log} files) so I eventually found the c source code that I am pretty certai

AW: [EMAIL PROTECTED] ProxyPass trouble, WAS: Can't get "stickysession" to work

Hi , Last month i made the same thing and after some "forbidden", i put the "/" after the "mycluster" and it worked. For me it worked this: ProxyPass / balancer://wpgcluster/ lbmethod=byrequests stickysession=JSESSIONID nofailover=On BalancerMember http://10.0.0.1:11800/ smax=15 loadfactor=

Re: [EMAIL PROTECTED] Access control problems, .htaccess and Directory and Allow directives

Whoa! Thanks it works. - Original Message - From: "Joshua Slive" <[EMAIL PROTECTED]> To: Sent: Sunday, January 08, 2006 1:01 AM Subject: Re: [EMAIL PROTECTED] Access control problems, .htaccess and Directory and Allow directives On 1/7/06, Emmanuel E <[EMAIL PROTECTED]> wrote: yes

Re: [EMAIL PROTECTED] Access control problems, .htaccess and Directory and Allow directives

On 1/7/06, Emmanuel E <[EMAIL PROTECTED]> wrote: > yes i got that. But I have set AllowOverride to All in the directory htdocs. > So why dosent .htaccess work? I mean I thought as outlined in > http://httpd.apache.org/docs/2.0/sections.html#mergin - "So for example, > will be processed before /va

Re: [EMAIL PROTECTED] Access control problems, .htaccess and Directory and Allow directives

yes i got that. But I have set AllowOverride to All in the directory htdocs. So why dosent .htaccess work? I mean I thought as outlined in http://httpd.apache.org/docs/2.0/sections.html#mergin - "So for example, will be processed before /var/web/dir/subdir>." So shouldnt the directives be pro

[EMAIL PROTECTED] php_admin_* directives in a phpSuExec environment

Hello, Is there anyway to prevent users from modifying limits imposed by php.ini configuration in a phpSuExec configured PHP installation?? For example in server with PHP running in a module, I use php_admin_* directives: php_admin_value memory_limit 40M And users can't modify them from

Re: [EMAIL PROTECTED] Access control problems, .htaccess and Directory and Allow directives

On 1/7/06, Emmanuel E <[EMAIL PROTECTED]> wrote: > > Options FollowSymLinks > AllowOverride None > > The .htaccess file in C:\ contains the following: > > = > AuthUserFile c:/apache2/bin/password.txt > AuthName "blah" > AuthType Basic > Require user blah > Satisfy Al

Re: [EMAIL PROTECTED] Apache 2.0.55 / alias and windows folders

I've found what was the error.In fact, the Alias is case-sensitive and my Driver letter was in capital letter instead of tiny. ;-(stupid mistake.Everything works well now.MaileenJoshua Slive <[EMAIL PROTECTED]> wrote: On 1/7/06, P.M <[EMAIL PROTECTED]> wrote:> But nothing works.First tell us exactl

[EMAIL PROTECTED] Access control problems, .htaccess and Directory and Allow directives

Hi, I have not been able to understand how the different Access Control directives are merged. The access control methods specified in the .htaccess files are not being followed. I am on Apache (SSL enabled) version 2.0.54 on WinXP. The problem I am having is as follows: My Configuration file

Re: [EMAIL PROTECTED] VirtualDocumentRoot dir and dot

mmm test.1.domain.com works with following directive VirtualDocumentRoot /path/domain.com/%1.0%2.0 but third level domain such as test.domain.com does not work anymore. ErrorLog try to find test.domain like test.domain.domain.com .. Adebisi ha scritto: Hi all i configured apache2 with vir

[EMAIL PROTECTED] VirtualDocumentRoot dir and dot

Hi all i configured apache2 with virtualdocumentroot as /path/domain.com/%1 and it works good for domain of third level such as test.domain.com where test dir path is /path/domain.com/test Now i need to configure apache2 for dir like test.1 Example: VirtualDocumentRoot /path/domain.com/%1+

Re: [EMAIL PROTECTED] Apache 2.0.55 / alias and windows folders

On 1/7/06, P.M <[EMAIL PROTECTED]> wrote: > But nothing works. First tell us exactly what happens when you try it, including the relevant messages in your browser, the error log and the access log. Joshua.

Re: [EMAIL PROTECTED] mod_log_config not running

Joshua Slive wrote: On 1/7/06, Mark Leone <[EMAIL PROTECTED]> wrote: I have the following statements in my httpd.conf file: LoadModule config_log_module libexec/httpd/mod_log_config.so AddModule mod_log_config.c Module mod_log_config is the first module loaded and added in the respective

Re: [EMAIL PROTECTED] mod_log_config not running

On 1/7/06, Mark Leone <[EMAIL PROTECTED]> wrote: > I have the following statements in my httpd.conf file: > > LoadModule config_log_module libexec/httpd/mod_log_config.so > AddModule mod_log_config.c > > > Module mod_log_config is the first module loaded and added in the > respective sections. > >

[EMAIL PROTECTED] Apache 2.0.55 / alias and windows folders

Hi,I'm new in Apache HTTP and i have some questions regarding ALIAS command.i do not want to place all my websites developped under the documentroot folder, so based on documentation, i've tried to use an aliaswithout success.just after the documentroot definition, i wrote that :ALIAS /test "E: