Bug#1112017: apache2: DLA-4270-1 regressions

To: Bastien Roucaries <rouca@debian.org>
Cc: David Prevot <dprevot@evolix.fr>, 1112017@bugs.debian.org
Subject: Bug#1112017: apache2: DLA-4270-1 regressions
From: David Prevot <dprevot@evolix.fr>
Date: Tue, 26 Aug 2025 09:53:39 +0200
Message-id: <[🔎] 20250826090849.xohl5aeM@mx.evolix.fr>
Reply-to: David Prevot <dprevot@evolix.fr>, 1112017@bugs.debian.org
In-reply-to: <[🔎] 7561168.ejJDZkT8p0@debian-ei>
References: <[🔎] 175610731764.478334.4344271740664491510.reportbug@basilic.evolix.net> <[🔎] 20250825100824.hah4aiHi@mx.evolix.fr> <[🔎] 9191784.MhkbZ0Pkbq@debian-ei> <[🔎] 7561168.ejJDZkT8p0@debian-ei> <[🔎] 175610731764.478334.4344271740664491510.reportbug@basilic.evolix.net>

Hi,

On 2025-08-26 00:13, Bastien Roucaries wrote:
> Le lundi 25 août 2025, 17:11:42 heure d’été d’Europe centrale Bastien Roucaries a écrit :
> > AllowOverride  Options=+SymLinksIfOwnerMatch Options=FilterDeclare 
> Could you also try without patch
> 
> AllowOverride AuthConfig Limit FileInfo
> AllowOverrideList Options=SymLinksIfOwnerMatch Options=FilterDeclare

Thanks for the input. I can confirm that both the patched version, and
the current bullseye-security version with the configuration change you
proposed are working (on my test instance).

I have not checked if these options have been working lately, if they
were no-op for a while or just not needed (on the actual servers they
were used). I don’t know yet when or how I’ll manage to figure this out,
so feel free to close this bug report in the mean time (since it can be
considered as an admin mistake to use AllowOverride instead of
AllowOverrideList).

Thanks a lot for your detailed and prompt answers!

Regards,
-- 
David Prévot
Evolix - Hébergement et Infogérance Open Source
Marseille (37 rue Guibal, Pôle Média, 13003) / Paris / Montréal
http://evolix.com | mastodon.evolix.org/@evolix | http://blog.evolix.com

Reply to:

References:
- Bug#1112017: apache2: DLA-4270-1 regressions
  - From: David Prévot <dprevot@evolix.fr>
- Bug#1112017: apache2: DLA-4270-1 regressions
  - From: David Prevot <dprevot@evolix.fr>
- Bug#1112017: apache2: DLA-4270-1 regressions
  - From: Bastien Roucaries <rouca@debian.org>
- Bug#1112017: apache2: DLA-4270-1 regressions
  - From: Bastien Roucaries <rouca@debian.org>

Prev by Date: Bug#1112017: apache2: DLA-4270-1 regressions
Next by Date: Bug#1112017: marked as done (apache2: DLA-4270-1 regressions)
Previous by thread: Bug#1112017: apache2: DLA-4270-1 regressions
Next by thread: Bug#1112017: marked as done (apache2: DLA-4270-1 regressions)
Index(es):
- Date
- Thread