[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#292122: /etc/apache-ssl/httpd.conf is modified without questions on upgrade

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Bjørn Mork wrote:
| Fabio Massimo Di Nitto <fabbione@fabbione.net> writes:
|
|
|>Ah hold on.. one more test please.. i forgot about the md5sum check.
|>
|>Put the old config in place and edit (very carefully!) /var/lib/ucf/hashfile
|>with the proper md5sum for /etc/apache-ssl/httpd.conf
|>and test the upgrade again.
|
|
|
| Yup, that's it:
|
| canardo:/etc/apache-ssl# md5sum -vc /var/lib/ucf/hashfile
| /etc/logrotate.d/clamav-daemon FAILED
| /etc/clamav/clamav.conf        md5sum: can't open /etc/clamav/clamav.conf
| /etc/papersize                 OK
| /etc/nagios/checkcommands.cfg  FAILED
| /etc/clamav/freshclam.conf     OK
| /etc/clamav/clamd.conf         OK
| /etc/fonts/local.conf          OK
| /etc/apache-ssl/modules.conf   OK
| /etc/sensors.conf              OK
| /etc/apache-ssl/httpd.conf     OK
| md5sum: 2 of 9 file(s) failed MD5 check
| canardo:/etc/apache-ssl# grep Port httpd.conf
| Port 80
| SSLCacheServerPort /var/run/gcache_port
| canardo:/etc/apache-ssl# apt-get dist-upgrade
| Reading Package Lists... Done
| Building Dependency Tree... Done
| Calculating Upgrade... Done
| The following packages will be upgraded:
|   apache-common apache-ssl apache-utils
| 3 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
| Need to get 0B/1599kB of archives.
| After unpacking 0B of additional disk space will be used.
| Do you want to continue? [Y/n]
| Preconfiguring packages ...
| (Reading database ... 61097 files and directories currently installed.)
| Preparing to replace apache-utils 1.3.33-2 (using .../apache-utils_1.3.33-3_i386.deb) ...
| Unpacking replacement apache-utils ...
| Preparing to replace apache-common 1.3.33-2 (using .../apache-common_1.3.33-3_i386.deb) ...
| Unpacking replacement apache-common ...
| Preparing to replace apache-ssl 1.3.33-2 (using .../apache-ssl_1.3.33-3_i386.deb) ...
| Stopping web server: apache-ssl.
| Stopping web server: apache-sslNo process in pidfile `/var/run/apache-ssl.pid' found running; none
killed.
| .
| Unpacking replacement apache-ssl ...
| Setting up apache-utils (1.3.33-3) ...
| Setting up apache-common (1.3.33-3) ...
|
| Setting up apache-ssl (1.3.33-3) ...
| Replacing config file /etc/apache-ssl/httpd.conf with new version
| Starting web server: apache-ssl[Tue Jan 25 11:46:24 2005] [warn] VirtualHost www.mork.no:443
overlaps with VirtualHost www.mork.no:443, the first has precedence, perhaps you need a
NameVirtualHost directive
| [Tue Jan 25 11:46:24 2005] [warn] VirtualHost www.mork.no:443 overlaps with VirtualHost
www.mork.no:443, the first has precedence, perhaps you need a NameVirtualHost directive
| [Tue Jan 25 11:46:24 2005] [warn] VirtualHost www.mork.no:443 overlaps with VirtualHost
www.mork.no:443, the first has precedence, perhaps you need a NameVirtualHost directive
| [Tue Jan 25 11:46:24 2005] [warn] VirtualHost www.mork.no:443 overlaps with VirtualHost
www.mork.no:443, the first has precedence, perhaps you need a NameVirtualHost directive
| [Tue Jan 25 11:46:24 2005] [warn] VirtualHost www.mork.no:443 overlaps with VirtualHost
www.mork.no:443, the first has precedence, perhaps you need a NameVirtualHost directive
| [Tue Jan 25 11:46:24 2005] [warn] VirtualHost www.mork.no:443 overlaps with VirtualHost
www.mork.no:443, the first has precedence, perhaps you need a NameVirtualHost directive
| [Tue Jan 25 11:46:24 2005] [warn] VirtualHost www.mork.no:443 overlaps with VirtualHost
www.mork.no:443, the first has precedence, perhaps you need a NameVirtualHost directive
| [Tue Jan 25 11:46:24 2005] [warn] NameVirtualHost www.mork.no:80 has no VirtualHosts
| .
|
| canardo:/etc/apache-ssl# grep Port httpd.conf
| Port 443
| SSLCacheServerPort /var/run/gcache_port
|
|
| Bjørn

All right, i know remember exactly what the problem was/is.
Basically older versions of apache-ssl had some problems
to work properly with the default port != 443 and that was somehow hardencoded in the
config manager for the port. We need to relax it and make it configurable as the other
apache flavours.

Thanks
Fabio

- --
Self-Service law:
The last available dish of the food you have decided to eat, will be
inevitably taken from the person in front of you.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFB9iXVhCzbekR3nhgRAra9AJ44glG+5S2hCvC+FMWzjRYZfw5KmgCgjuz3
6fTA42Y1MLY7uRt+sL/m7hk=
=kA29
-----END PGP SIGNATURE-----
Reply to: