On 11/3/13 4:02 PM, Erwin Hogeweg wrote: > Thanks for the response. It looks like applying the patch solved the problem. > I > am able to connect to the repo again. Pfew.
Glad to help. Something roughly equivalent to that patch will be included in the next release. So you shouldn't need that patch forever. > I had to disable this mod_sec rule in order to make it work though: > > # allow request methods > #SecRule REQUEST_METHOD "!^((?:(?:POS|GE)T|OPTIONS|HEAD))$" \ > # "phase:2,t:none,log,auditlog,status:501,msg:'Method is not allowed by > policy', severity:'2',id:'960032',tag:'POLICY/METHOD_NOT_ALLOWED'" > > Do you have any thoughts (good/bad/ugly) on that? I've personally never used mod_security with Subversion so I can't make a very definitive statement regarding it. Subversion 1.8 clients use chunked http requests and older versions of mod_security didn't allow chunked http requests. So I'd at least recommend that you make sure you have a recent version of it. Other than that I don't have anything additional to add other than what Branko already told you.
