There should be at least an ewarn in the ebuild that for apache-2.4 users the file /var/www/localhost/htdocs/phpsysinfo/.htaccess has to be removed/replaced. That file only works with apache-2.2 right.
If you have a patch that will make it work for apache-2.2 and 2.4 I'd be happy to apply it if you upstream it as well. Otherwise you should open an issue upstream to resolve this.
looks like this is needed : https://httpd.apache.org/docs/current/mod/mod_access_compat.html /me wodners how to activate it
But at least this works here for me : n22unst4 ~ # diff .htaccess /var/www/localhost/htdocs/phpsysinfo/.htaccess 1,4c1,3 < <files phpsysinfo.ini> < order deny,allow < deny from all < </files> --- > <Files phpsysinfo.ini> > Require host 127.0.0.1 > </Files>
(In reply to Toralf Förster from comment #3) > But at least this works here for me : > > n22unst4 ~ # diff .htaccess /var/www/localhost/htdocs/phpsysinfo/.htaccess > 1,4c1,3 > < <files phpsysinfo.ini> > < order deny,allow > < deny from all > < </files> > --- > > <Files phpsysinfo.ini> > > Require host 127.0.0.1 > > </Files> Please check the "Run-Time Configuration Changes" section on the Apache upgrade guide[1]. [1] - http://httpd.apache.org/docs/trunk/upgrading.html In your case, the correct change would be: <Files phpsysinfo.ini> Require all denied </Files> If you want to allow access from localhost, then your change is correct.
right, this didff works : n22unst4 ~ # diff .htaccess /var/www/localhost/htdocs/phpsysinfo/.htaccess 2,3c2 < order deny,allow < deny from all --- > Require all denied FWIW I informed upstream a while ago but upstream wasn't too much interested.
(In reply to Toralf Förster from comment #5) > right, this didff works : > > n22unst4 ~ # diff .htaccess /var/www/localhost/htdocs/phpsysinfo/.htaccess > 2,3c2 > < order deny,allow > < deny from all > --- > > Require all denied Please use unified diffs. Probably the best thing to do would be to point people at a wiki page documenting this like jmbsvicetto recommended and/or check if apache is installed and warn if so.
(In reply to Toralf Förster from comment #2) [...] > https://httpd.apache.org/docs/current/mod/mod_access_compat.html [...] This seems to be not a way one should waste time on: "Note The directives provided by mod_access_compat have been deprecated by the new authz refactoring. Please see mod_authz_host."
*** This bug has been marked as a duplicate of bug 454572 ***