Summary: | htpasswd is broken in apache-2.4.4 | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Zoltán Halassy <zhalassy> |
Component: | [OLD] Server | Assignee: | Gerrit Helm <mail> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | patrick, polynomial-c, proxy-maint |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 468302 | ||
Attachments: |
Proposed ebuild to fix critical bug in apache-tools-2.4.4
Proposed patch to fix critical bug in apache-tools-2.4.4 |
Description
Zoltán Halassy
2013-05-02 15:26:22 UTC
This bug is intended to be a blocker for Apache 2.4 stable request ( bug 468302 ) Created attachment 351406 [details]
Proposed ebuild to fix critical bug in apache-tools-2.4.4
Created attachment 351408 [details, diff] Proposed patch to fix critical bug in apache-tools-2.4.4 Source of patch is https://issues.apache.org/bugzilla/show_bug.cgi?id=54735 This appears to be a critical bug. When 2.4.4 is emerged into a working system, and changes are made to access control files using htpasswd, users are disallowed from accessing password protected resources via http. Once the change is made to a htpasswd file it can not be repaired except by finding a back-up copy of the unaltered file and restoring it. I have attached a proposed ebuild and patch file as a temporary fix to 2.4.4 until 2.4.5 is released. More information on the bug (and the source of the patch file) can be found at https://issues.apache.org/bugzilla/show_bug.cgi?id=54735 Is this still an issue with apache-2.4.6? (In reply to Lars Wendler (Polynomial-C) from comment #5) > Is this still an issue with apache-2.4.6? Nope, it's working as intended. |