[Bug 1529355] Re: authzprovideralias-defined authz provider can't be used in Ubuntu14
Andreas Hasenack
andreas at canonical.com
Wed Jan 9 12:56:47 UTC 2019
trusty verification
First, reproducing the bug.
Package used:
root at trusty-apache2-1529355:~# apt-cache policy apache2
apache2:
Installed: 2.4.7-1ubuntu4.20
Candidate: 2.4.7-1ubuntu4.20
Version table:
2.4.10-1ubuntu1.1~ubuntu14.04.2 0
100 http://br.archive.ubuntu.com/ubuntu/ trusty-backports/main amd64 Packages
*** 2.4.7-1ubuntu4.20 0
500 http://br.archive.ubuntu.com/ubuntu/ trusty-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu/ trusty-security/main amd64 Packages
100 /var/lib/dpkg/status
2.4.7-1ubuntu4 0
500 http://br.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages
- wget works:
root at trusty-apache2-1529355:~# wget localhost -O /dev/null
--2019-01-09 12:53:09-- http://localhost/
Resolving localhost (localhost)... 127.0.0.1
Connecting to localhost (localhost)|127.0.0.1|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 11510 (11K) [text/html]
Saving to: ‘/dev/null’
100%[========================================================================================================================================================================================>]
11,510 --.-K/s in 0s
2019-01-09 12:53:09 (143 MB/s) - ‘/dev/null’ saved [11510/11510]
error.log contains the bug line:
root at trusty-apache2-1529355:~# tail -n 1 /var/log/apache2/error.log
[Wed Jan 09 12:53:09.835097 2019] [authz_core:error] [pid 9272:tid 139970345383680] [client 127.0.0.1:34994] AH02305: no alias provider found for 'blacklisted-ips' (BUG?)
access.log shows normal access:
root at trusty-apache2-1529355:~# tail /var/log/apache2/access.log
127.0.0.1 - - [09/Jan/2019:12:53:09 +0000] "GET / HTTP/1.1" 200 11820 "-" "Wget/1.15 (linux-gnu)"
Now with the updated package:
root at trusty-apache2-1529355:~# apt-cache policy apache2
apache2:
Installed: 2.4.7-1ubuntu4.21
Candidate: 2.4.7-1ubuntu4.21
Version table:
2.4.10-1ubuntu1.1~ubuntu14.04.2 0
100 http://br.archive.ubuntu.com/ubuntu/ trusty-backports/main amd64 Packages
*** 2.4.7-1ubuntu4.21 0
500 http://br.archive.ubuntu.com/ubuntu/ trusty-proposed/main amd64 Packages
100 /var/lib/dpkg/status
2.4.7-1ubuntu4.20 0
500 http://br.archive.ubuntu.com/ubuntu/ trusty-updates/main amd64 Packages
500 http://security.ubuntu.com/ubuntu/ trusty-security/main amd64 Packages
2.4.7-1ubuntu4 0
500 http://br.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages
- wget fails, correctly:
root at trusty-apache2-1529355:~# wget localhost -O /dev/null
--2019-01-09 12:55:35-- http://localhost/
Resolving localhost (localhost)... 127.0.0.1
Connecting to localhost (localhost)|127.0.0.1|:80... connected.
HTTP request sent, awaiting response... 403 Forbidden
2019-01-09 12:55:35 ERROR 403: Forbidden.
error.log contains the forbidden message instead of the bug one:
[Wed Jan 09 12:55:35.360992 2019] [authz_core:error] [pid 9834:tid 139771624998656] [client 127.0.0.1:35014] AH01630: client denied by server configuration: /var/www/html/
access.log confirms the 403:
root at trusty-apache2-1529355:~# tail /var/log/apache2/access.log -n 1
127.0.0.1 - - [09/Jan/2019:12:55:35 +0000] "GET / HTTP/1.1" 403 492 "-" "Wget/1.15 (linux-gnu)"
Trusty verification succeeded.
** Tags removed: verification-needed-trusty
** Tags added: verification-done-trusty
--
You received this bug notification because you are a member of Ubuntu
Server, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1529355
Title:
authzprovideralias-defined authz provider can't be used in Ubuntu14
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1529355/+subscriptions
More information about the Ubuntu-server-bugs
mailing list