Bug#614421: marked as done (apache2: virtual host rewrite log has owner root and group root)

[owner@bugs.debian.org (Debian Bug Tracking System)]

Your message dated Mon, 21 Feb 2011 22:57:15 +0100
with message-id <201102212257.15653.sf@sfritsch.de>
and subject line Re: Bug#614421: apache2: virtual host rewrite log has owner root and group root
has caused the Debian Bug report #614421,
regarding apache2: virtual host rewrite log has owner root and group root
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
614421: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=614421
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: Debian Bug Tracking System <submit@bugs.debian.org>
• Subject: apache2: virtual host rewrite log has owner root and group root
• From: David Christensen <dpchrist@holgerdanske.com>
• Date: Mon, 21 Feb 2011 13:20:23 -0800
• Message-id: <[🔎] 20110221212023.3499.66905.reportbug@p43400e.holgerdanske.com>

Package: apache2.2-common
Version: 2.2.16-6
Severity: important

Please see debian-user mailing list thread for example and discussion:

http://lists.debian.org/debian-user/2011/02/msg02171.html



-- Package-specific info:
List of enabled modules from 'apache2 -M':
  alias auth_basic authn_file authz_default authz_groupfile
  authz_host authz_user autoindex cgid deflate dir env mime
  negotiation reqtimeout rewrite setenvif status

-- System Information:
Debian Release: 6.0
  APT prefers squeeze-updates
  APT policy: (500, 'squeeze-updates'), (500, 'stable')
Architecture: i386 (i686)

Kernel: Linux 2.6.32-5-686 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/dash

Versions of packages apache2 depends on:
ii  apache2-mpm-worker            2.2.16-6   Apache HTTP Server - high speed th
ii  apache2.2-common              2.2.16-6   Apache HTTP Server common files

apache2 recommends no packages.

apache2 suggests no packages.

Versions of packages apache2.2-common depends on:
ii  apache2-utils           2.2.16-6         utility programs for webservers
ii  apache2.2-bin           2.2.16-6         Apache HTTP Server common binary f
ii  libmagic1               5.04-5           File type determination library us
ii  lsb-base                3.2-23.2squeeze1 Linux Standard Base 3.2 init scrip
ii  mime-support            3.48-1           MIME files 'mime.types' & 'mailcap
ii  perl                    5.10.1-17        Larry Wall's Practical Extraction 
ii  procps                  1:3.2.8-9        /proc file system utilities

-- no debconf information

--- End Message ---

--- Begin Message ---

• To: David Christensen <dpchrist@holgerdanske.com>
• Cc: 614421-done@bugs.debian.org
• Subject: Re: Bug#614421: apache2: virtual host rewrite log has owner root and group root
• From: Stefan Fritsch <sf@sfritsch.de>
• Date: Mon, 21 Feb 2011 22:57:15 +0100
• Message-id: <201102212257.15653.sf@sfritsch.de>
• Reply-to: 614421@bugs.debian.org
• In-reply-to: <[🔎] 20110221212023.3499.66905.reportbug@p43400e.holgerdanske.com>
• References: <[🔎] 20110221212023.3499.66905.reportbug@p43400e.holgerdanske.com>

On Monday 21 February 2011, David Christensen wrote:
> Please see debian-user mailing list thread for example and
> discussion:
> 
> http://lists.debian.org/debian-user/2011/02/msg02171.html

Apache opens the logs as root before changing user. This is 
intentional and makes sense from a security point of view.

I don't know why your rewrite rules don't work, though. Maybe you 
should ask on the httpd-users list. See 
http://httpd.apache.org/lists.html

--- End Message ---