Bug#1120857: proxy_connect.conf: behaviour of `AllowCONNECT 0` is not ensured

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#1120857: proxy_connect.conf: behaviour of `AllowCONNECT 0` is not ensured
From: Christoph Anton Mitterer <calestyo@scientia.org>
Date: Mon, 17 Nov 2025 16:47:12 +0100
Message-id: <[🔎] 176339443293.395741.10237287446177461838.reportbug@heisenberg.scientia.org>
Reply-to: Christoph Anton Mitterer <calestyo@scientia.org>, 1120857@bugs.debian.org

Package: apache2
Version: 2.4.65-2
Severity: normal


Hey.

I've had noticed that you've introduced the setting of
  AllowCONNECT 0
per default,... and further that upstream doesn't document that as disabling
CONNECT, as it's used by Debian.

It simply works because nothing has port 0 (not sure whether one could do some local
packet mangling to get something to use port 0).

So I've opened a ticket:
  https://bz.apache.org/bugzilla/show_bug.cgi?id=69879
asking whether this could be made offcial by documenting it.

Response was howver rather that they would prefer some patch that introduces
a `none` keyword.

In particular it shall be noted, that some earlier upstream feature request
already tried to get the behaviour of 0 being the wildcard and thus alowing
*any* ports (but wasn't merged).


So this is primarily a heads up, that the current behaviour of 0 is
rather just an implementation detail and not really guaranteed.


Cheers,
Chris.

Reply to:

Prev by Date: Emlékeztető: Új vízszámlát állítottak ki: 5024131890
Next by Date: Emlékeztető: Új vízszámlát állítottak ki: 5024131890
Previous by thread: Emlékeztető: Új vízszámlát állítottak ki: 5024131890
Index(es):
- Date
- Thread