Your message dated Thu, 11 Aug 2016 22:05:35 +0000 with message-id <E1bXy6Z-00052w-N2@franck.debian.org> and subject line Bug#794933: fixed in apache2 2.4.23-3 has caused the Debian Bug report #794933, regarding apache2-suexec-custom: prompting due to modified conffiles which were not modified by the user: /etc/apache2/conf-available/security.conf to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact owner@bugs.debian.org immediately.) -- 794933: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=794933 Debian Bug Tracking System Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: apache2-suexec-custom: prompting due to modified conffiles which were not modified by the user: /etc/apache2/conf-available/security.conf
- From: Andreas Beckmann <anbe@debian.org>
- Date: Sat, 08 Aug 2015 11:38:14 +0200
- Message-id: <20150808093814.32010.34089.reportbug@zam581.zam.kfa-juelich.de>
Package: apache2-suexec-custom Version: 2.4.16-1 Severity: serious User: debian-qa@lists.debian.org Usertags: piuparts Hi, during a test with piuparts I noticed your package failed the piuparts upgrade test because dpkg detected a conffile as being modified and then prompted the user for an action. As there is no user input, this fails. But this is not the real problem, the real problem is that this prompt shows up in the first place, as there was nobody modifying this conffile at all, the package has just been installed and upgraded... This is a violation of policy 10.7.3, see https://www.debian.org/doc/debian-policy/ch-files.html#s10.7.3, which says "[These scripts handling conffiles] must not ask unnecessary questions (particularly during upgrades), and must otherwise be good citizens." https://wiki.debian.org/DpkgConffileHandling should help with figuring out how to do this properly. In https://lists.debian.org/debian-devel/2009/08/msg00675.html and followups it has been agreed that these bugs are to be filed with severity serious. >From the attached log (scroll to the bottom...): Setting up apache2 (2.4.16-1) ... Configuration file '/etc/apache2/conf-available/security.conf' ==> Modified (by you or by a script) since installation. ==> Package distributor has shipped an updated version. What would you like to do about it ? Your options are: Y or I : install the package maintainer's version N or O : keep your currently-installed version D : show the differences between the versions Z : start a shell to examine the situation The default action is to keep your current version. *** security.conf (Y/I/N/O/D/Z) [default=N] ? dpkg: error processing package apache2 (--configure): end of file on stdin at conffile prompt This was observed while doing a wheezy -> jessie -> stretch upgrade test. I did not see such behavior while testing the other apache packages. cheers, AndreasAttachment: apache2-suexec-custom_2.4.16-1.log.gz
Description: application/gzip
--- End Message ---
--- Begin Message ---
- To: 794933-close@bugs.debian.org
- Subject: Bug#794933: fixed in apache2 2.4.23-3
- From: Stefan Fritsch <sf@debian.org>
- Date: Thu, 11 Aug 2016 22:05:35 +0000
- Message-id: <E1bXy6Z-00052w-N2@franck.debian.org>
Source: apache2 Source-Version: 2.4.23-3 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 794933@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch <sf@debian.org> (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmaster@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 11 Aug 2016 21:40:35 +0200 Source: apache2 Binary: apache2 apache2-data apache2-bin apache2-utils apache2-suexec-pristine apache2-suexec-custom apache2-doc apache2-dev apache2-dbg Architecture: source amd64 all Version: 2.4.23-3 Distribution: unstable Urgency: low Maintainer: Debian Apache Maintainers <debian-apache@lists.debian.org> Changed-By: Stefan Fritsch <sf@debian.org> Description: apache2 - Apache HTTP Server apache2-bin - Apache HTTP Server (modules and other binary files) apache2-data - Apache HTTP Server (common files) apache2-dbg - Apache debugging symbols apache2-dev - Apache HTTP Server (development headers) apache2-doc - Apache HTTP Server (on-site documentation) apache2-suexec-custom - Apache HTTP Server configurable suexec program for mod_suexec apache2-suexec-pristine - Apache HTTP Server standard suexec program for mod_suexec apache2-utils - Apache HTTP Server (utility programs for web servers) Closes: 784290 794933 799630 827446 Changes: apache2 (2.4.23-3) unstable; urgency=low . * Fix conffiles that may have got the wrong content during upgrade from wheezy to early jessie versions. Closes: #794933 * Also restore re-introduced *.load files for mod_ident, mod_imagemap, and mod_cern_meta. These may have gone missing due to dpkg thinking they still belong to apache2.2-common. Reported by Markus Waldeck. * apache2-maintscript-helper: Make apache2_switch_mpm do nothing if the local admin has disabled the requested mpm manually. Closes: #827446, #799630 * Make mod_proxy_html depend on mod_xml2enc. * dh_apache2: Make versioned recommends on apache2 less strict. There is no advantage in recommending the current version. Closes: #784290 Checksums-Sha1: 58568a13870e28feb978754604f6816a510db12d 2713 apache2_2.4.23-3.dsc 0a86e4e8e81e1d1b86adbcaa672d14147880b03e 351956 apache2_2.4.23-3.debian.tar.xz ae8223f0e0d68ba44f607d11a9bccc73417c92e0 1150722 apache2-bin_2.4.23-3_amd64.deb c8955d602ae6760e704052d6e4f3545165ee362c 162460 apache2-data_2.4.23-3_all.deb b8699ded88befbb71ff2b557c58fd6e59a93b5ce 2422350 apache2-dbg_2.4.23-3_amd64.deb 9db29327a545649f969e74b4c653544b328cc3f0 305652 apache2-dev_2.4.23-3_amd64.deb 2c85207338bd1713b2dfbb9ccaabbca888f1d942 3752342 apache2-doc_2.4.23-3_all.deb fb1f4f70160e09ebfa21206fac48bceca3ff75ae 148496 apache2-suexec-custom_2.4.23-3_amd64.deb eace07f8a211044aed11b2979a912bc13755d4ba 146942 apache2-suexec-pristine_2.4.23-3_amd64.deb c0c7485659b268f279400dad02523021b5baa48a 210670 apache2-utils_2.4.23-3_amd64.deb 7d106c625a16e385d57322f8e0fc0034536a55cc 227264 apache2_2.4.23-3_amd64.deb Checksums-Sha256: 714467ae00fa362637e1752fdabadee44c065e9dc01d6585bae3786c62619bd5 2713 apache2_2.4.23-3.dsc 7232d88305f71f79d710df2349463bbb14f7a09b4c9478344ff3f45684c0364f 351956 apache2_2.4.23-3.debian.tar.xz 5aa892f1ba96da715ba37fb73fb82eb0d6e32aed15cfa293e722af907d7498d4 1150722 apache2-bin_2.4.23-3_amd64.deb cf819ec33215535adea77e05f30696354a8b7d66a6af27b7da74e72caf10c17d 162460 apache2-data_2.4.23-3_all.deb 79c661ee5c17048c23f43d8a370e98739321dc6cdf8b70bba9bb6826498faf83 2422350 apache2-dbg_2.4.23-3_amd64.deb 9d951d40edb3fddef37efd40126d428800874bdad739d12e6366d8401ea29174 305652 apache2-dev_2.4.23-3_amd64.deb bf2d8162a7cbd7d175561061e03c4b88ef6e794f5c5ade06674f29cadf0c4e29 3752342 apache2-doc_2.4.23-3_all.deb 6b4f44bb6c79260956396f24074f4856453dbd5b1c3d2fdf6efec4dc1f0fbc55 148496 apache2-suexec-custom_2.4.23-3_amd64.deb a65f75a366feac3d846e1d37ce9e229d086027a24954812b4b52869e6f4a2bfd 146942 apache2-suexec-pristine_2.4.23-3_amd64.deb 45a95181dff3316e6b9920adc539b4d8614ef41df23fe161b30d3c5e35529115 210670 apache2-utils_2.4.23-3_amd64.deb 6df8d0a1e356e351f0b432cee462eb80c2819bbceaec20c709aa4f0941a8b155 227264 apache2_2.4.23-3_amd64.deb Files: 3d484f42f4d43fcc03a694945628dd7b 2713 httpd optional apache2_2.4.23-3.dsc 7df8ee69ed90da44b34fef8fab4421be 351956 httpd optional apache2_2.4.23-3.debian.tar.xz 45c6745b518ad3cff03d07d214cb87a6 1150722 httpd optional apache2-bin_2.4.23-3_amd64.deb 1ab0a362cc597ae8b85cb4153eeb023d 162460 httpd optional apache2-data_2.4.23-3_all.deb e9851125ee601a2e06dd43900b50c40c 2422350 debug extra apache2-dbg_2.4.23-3_amd64.deb 1ed67ff8994b9249954a7cf4eba7e958 305652 httpd optional apache2-dev_2.4.23-3_amd64.deb cd9ca8390da66df2ba468a0f9f5a36df 3752342 doc optional apache2-doc_2.4.23-3_all.deb 5763036de896a335bea0cf9d0b1e04f6 148496 httpd extra apache2-suexec-custom_2.4.23-3_amd64.deb 135f4a9c48d76deaefcf0510110933d5 146942 httpd optional apache2-suexec-pristine_2.4.23-3_amd64.deb 23466578e5b8bd79fad42d06740bb35d 210670 httpd optional apache2-utils_2.4.23-3_amd64.deb db9753d981a694ac7eb9918d24faf696 227264 httpd optional apache2_2.4.23-3_amd64.deb -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJXrNrpAAoJEMaHXzVBzv3gvE8P/19+OEjoEEior/8PrmlOoMPZ 5qsqq4lNlV2TLRPSV5KbECMYrrnxKBepOROcv/87fl8/MUtEYgIWznOpsKuIrHlN aNk+2SBnMIztqovPu+zpcdz4FfUNeo+lItWLuG65Ic7oxuTgyXLZVqhI8G2sUlcy 8nhVYDcWGtYWR1jJAEYxQNT5Y5bxU2Xzx0KaxJ2K5x4hMJm3O1HklNztaFk+sdlH QDvbmo0af6cz3xCZ7EaovjVZXMTdJr81RnRtB2yC1FSCM3/49VhXx4oKQzad14Fu Yn2/Wq8LIEzmUENCAIC/QsUurWbli8DeEg40JqTmPTE3IuOLgROCg5C/lB3RfYBT TQQsbta2jZKoH905P0Whhck0kM1cJ50HYE5vfEEHoJ89jTI+fuePrKXhvh4B7BfW OAVCkMi0ijljzEfktoniX32gMM2w0cVv/5q1Jm2nn/tHIh/EHMj50VDctmSQ4qbW pvaeGbPNB+861kM+smhHnRK86BPn+z/lxMe57J3IH4T6cbLcoeKfLGhQDbXGyqF7 Pccaq+JNZ3FX1wG5SGbewbrDHFf2PuUNJs3oqy9c0HyhAhXXiWt7HkUNjFjW14xt Uyh4fo4OSOQH2OwEyE2NTAT6vByNYg1cHw6nzfaG1u1W48QSkht99s3EtEkpffOR FqwbseIDm6UZLCrRy4p6 =GY1b -----END PGP SIGNATURE-----
--- End Message ---