Your message dated Tue, 26 Aug 2025 12:10:51 +0200 with message-id <5090675.taCxCBeP46@debian-ei> and subject line Re: Bug#1112017: apache2: DLA-4270-1 regressions has caused the Debian Bug report #1112017, regarding apache2: DLA-4270-1 regressions to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact owner@bugs.debian.org immediately.) -- 1112017: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1112017 Debian Bug Tracking System Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: apache2: DLA-4270-1 regressions
- From: David Prévot <dprevot@evolix.fr>
- Date: Mon, 25 Aug 2025 09:35:17 +0200
- Message-id: <[🔎] 175610731764.478334.4344271740664491510.reportbug@basilic.evolix.net>
Package: apache2 Version: 2.4.65-1~deb11u1 Severity: important Hi, While upgrading apache2 on several hosts, we noticed regressions on some vhost option handling. One vhost contained: AllowOverride FileInfo Options=+SymLinksIfOwnerMatch Another one contained: AllowOverride AuthConfig Limit FileInfo Indexes Options=FilterDeclare Both servers failed to reload their configuration after apache2 upgrade because of the following failures. > root@[host]:~# apachectl configtest > AH00526: Syntax error on line 18 of /etc/apache2/sites-enabled/[vhost].conf: > Illegal option +SymLinksIfOwnerMatch > Action 'configtest' failed. > root@[host]:~# apachectl configtest > AH00526: Syntax error on line 18 of /etc/apache2/sites-enabled/[vhost].conf: > Illegal option FilterDeclare > Action 'configtest' failed. Regards, taffit
--- End Message ---
--- Begin Message ---
- To: David Prevot <dprevot@evolix.fr>
- Cc: David Prevot <dprevot@evolix.fr>, 1112017-done@bugs.debian.org
- Subject: Re: Bug#1112017: apache2: DLA-4270-1 regressions
- From: Bastien Roucaries <rouca@debian.org>
- Date: Tue, 26 Aug 2025 12:10:51 +0200
- Message-id: <5090675.taCxCBeP46@debian-ei>
- In-reply-to: <[🔎] 20250826090849.xohl5aeM@mx.evolix.fr>
- References: <[🔎] 175610731764.478334.4344271740664491510.reportbug@basilic.evolix.net> <[🔎] 7561168.ejJDZkT8p0@debian-ei> <[🔎] 20250826090849.xohl5aeM@mx.evolix.fr>
Le mardi 26 août 2025, 09:53:39 heure d’été d’Europe centrale David Prevot a écrit : > Hi, > > On 2025-08-26 00:13, Bastien Roucaries wrote: > > Le lundi 25 août 2025, 17:11:42 heure d’été d’Europe centrale Bastien Roucaries a écrit : > > > AllowOverride Options=+SymLinksIfOwnerMatch Options=FilterDeclare > > Could you also try without patch > > > > AllowOverride AuthConfig Limit FileInfo > > AllowOverrideList Options=SymLinksIfOwnerMatch Options=FilterDeclare > > Thanks for the input. I can confirm that both the patched version, and > the current bullseye-security version with the configuration change you > proposed are working (on my test instance). > > I have not checked if these options have been working lately, if they > were no-op for a while or just not needed (on the actual servers they > were used). I don’t know yet when or how I’ll manage to figure this out, > so feel free to close this bug report in the mean time (since it can be > considered as an admin mistake to use AllowOverride instead of > AllowOverrideList). Agreed, thanks to you rouca > > Thanks a lot for your detailed and prompt answers! > > Regards, >Attachment: signature.asc
Description: This is a digitally signed message part.
--- End Message ---