[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#977930: marked as done (APT https proxy incorrectly rewrites the HOST header)



Your message dated Wed, 23 Dec 2020 10:32:14 +0100
with message-id <20201223101935.GA910321@debian.org>
and subject line Re: Bug#977930: APT https proxy incorrectly rewrites the HOST header
has caused the Debian Bug report #977930,
regarding APT https proxy incorrectly rewrites the HOST header
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
977930: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977930
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---

Package: Apt

Version: 1.8.2.2

 

When using APT to get packages from a https site and using a proxy APT replaces the host header with the proxy's name and port

 

This means any proxy configured to reject an invalid host header, will reject the connection.

 

This bug has been fixed in the downstream ubuntu APT package version 1.8.3 as discussed below

https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1838771

 

However, Debian has not included this fix in its repository

 

 

Chris Hamono

 

Senior Application Analyst and Developer

eGovernment Team, Office for Digital Government

Level 2, Wakefield House, 30 Wakefield St, Adelaide SA 5000

Ph: (08) 8463 7606

chris.hamono@sa.gov.au

 

E-mail is the electronic equivalent of a postcard. If it has to remain private choose another medium.

 


--- End Message ---
--- Begin Message ---
Version: 1.8.3

On Wed, Dec 23, 2020 at 01:27:26AM +0000, Hamono, Chris (DPC) wrote:
> Package: Apt
> 
> Version: 1.8.2.2
> 
> When using APT to get packages from a https site and using a proxy APT replaces the host header with the proxy's name and port
> 
> This means any proxy configured to reject an invalid host header, will reject the connection.
> 
> This bug has been fixed in the downstream ubuntu APT package version 1.8.3 as discussed below
> https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1838771
> 
> However, Debian has not included this fix in its repository

1.8.3 was in fact synced from Debian, so this has been fixed,
and hence I'm closing this bug.

stable was supposed to get 1.8.3 (and later 1.8.4, see 934300),
but that proposal was clearly derailled with useless questions
during a busy time frame.

Whether I can reconcile this at some point is a different question,
I'd love to merge 1.8.2.2 back into 1.8.4 to create a new 1.8.5
release for stable. But chances are I do the work, open the bug
tracking it, then don't hear for months, and get pinged a few
weeks before a point release to do additional work, and things
don't work out in the end.

In any case, the fix has been released, and this bug won't
retroactively appear on the changelog, so keeping it open is not going
to help anyone.

-- 
debian developer - deb.li/jak | jak-linux.org - free software dev
ubuntu core developer                              i speak de, en

--- End Message ---

Reply to: