From owner-freebsd-ports Fri Jun 12 16:50:38 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id QAA17666 for freebsd-ports-outgoing; Fri, 12 Jun 1998 16:50:38 -0700 (PDT) (envelope-from owner-freebsd-ports@FreeBSD.ORG) Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA17615 for ; Fri, 12 Jun 1998 16:50:30 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.8.8/8.8.5) id QAA23674; Fri, 12 Jun 1998 16:50:01 -0700 (PDT) Date: Fri, 12 Jun 1998 16:50:01 -0700 (PDT) Message-Id: <199806122350.QAA23674@freefall.freebsd.org> To: freebsd-ports@FreeBSD.ORG From: "Scot W. Hetzel" Subject: Re: ports/6915: Apache-FP for apache v1.3.0 Reply-To: "Scot W. Hetzel" Sender: owner-freebsd-ports@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The following reply was made to PR ports/6915; it has been noted by GNATS. From: "Scot W. Hetzel" To: Cc: Subject: Re: ports/6915: Apache-FP for apache v1.3.0 Date: Fri, 12 Jun 1998 18:44:52 -0500 A problem was found with the Apache-Fp port for the Apache v1.3 server. When trying to access user webs with either a web browser or by FrontPage, access would be denied by the apache server. The default access.conf file doesn't allow Symbolic links to be followed thus preventing users webs located in /home/user1/public_html from being accessed because /home is a symbolic link to /usr/home. The attached patch corrects this problem, and updates the port to follow the Apache13 port. Scot W. Hetzel NOTE: This problem will also affect the Apache13 port. diff -ruN apache-fp.130.orig/Makefile apache-fp.130/Makefile --- apache-fp.130.orig/Makefile Mon Jun 8 12:01:09 1998 +++ apache-fp.130/Makefile Fri Jun 12 16:32:33 1998 @@ -40,6 +40,7 @@ --datadir=${PREFIX}/www \ --proxycachedir=${PREFIX}/www/proxy \ --libexecdir=${PREFIX}/libexec/apache \ + --disable-rule=STATUS \ --enable-shared=remain \ --enable-module=most \ --enable-module=auth_db \ @@ -48,7 +49,7 @@ --enable-module=frontpage CONFIGURE_ENV= \ -OPTIM='-DDOCUMENT_LOCATION=\\"'${PREFIX}'/www/data/\\" \ +OPTIM='-DBUFFERED_LOGS -DDOCUMENT_LOCATION=\\"'${PREFIX}'/www/data/\\" \ -DDEFAULT_PATH=\\"/bin:/usr/bin:'${PREFIX}'/bin\\"' MAN1= ab.1 apachectl.1 dbmmanage.1 htdigest.1 htpasswd.1 diff -ruN apache-fp.130.orig/patches/patch-ab apache-fp.130/patches/patch-ab --- apache-fp.130.orig/patches/patch-ab Sat Jun 6 13:00:39 1998 +++ apache-fp.130/patches/patch-ab Fri Jun 12 15:13:18 1998 @@ -1,18 +1,20 @@ *** Makefile.tmpl.orig Tue May 12 06:52:11 1998 ---- Makefile.tmpl Sat Jun 6 13:00:13 1998 +--- Makefile.tmpl Fri Jun 12 15:12:28 1998 *************** -*** 161,167 **** +*** 160,167 **** + -DUID_MIN=$(suexec_uidmin) \ -DGID_MIN=$(suexec_gidmin) \ -DUSERDIR_SUFFIX=\"$(suexec_userdir)\" \ - -DLOG_EXEC=\"$(logfiledir)/suexec_log\" \ +! -DLOG_EXEC=\"$(logfiledir)/suexec_log\" \ ! -DDOC_ROOT=\"$(datadir)/htdocs\" \ -DSAFE_PATH=\"$(suexec_safepath)\" \ ' \ suexec; \ ---- 161,167 ---- +--- 160,167 ---- + -DUID_MIN=$(suexec_uidmin) \ -DGID_MIN=$(suexec_gidmin) \ -DUSERDIR_SUFFIX=\"$(suexec_userdir)\" \ - -DLOG_EXEC=\"$(logfiledir)/suexec_log\" \ +! -DLOG_EXEC=\"$(logfiledir)/httpd-suexec.log\" \ ! -DDOC_ROOT=\"$(datadir)/data\" \ -DSAFE_PATH=\"$(suexec_safepath)\" \ ' \ diff -ruN apache-fp.130.orig/patches/patch-fl apache-fp.130/patches/patch-fl --- apache-fp.130.orig/patches/patch-fl Sat Jun 6 10:24:38 1998 +++ apache-fp.130/patches/patch-fl Fri Jun 12 16:05:52 1998 @@ -1,7 +1,24 @@ *** conf/access.conf-dist.orig Thu May 28 20:27:49 1998 ---- conf/access.conf-dist Sat Jun 6 10:22:54 1998 +--- conf/access.conf-dist Fri Jun 12 15:08:46 1998 *************** -*** 39,45 **** +*** 14,20 **** + # permissions. + + +! Options None + AllowOverride None + + +--- 14,20 ---- + # permissions. + + +! Options FollowSymLinks + AllowOverride None + + +*************** +*** 39,51 **** # override. Can also be "All", or any combination of "Options", "FileInfo", # "AuthConfig", and "Limit" @@ -9,7 +26,13 @@ # Controls who can get stuff from this server. ---- 39,45 ---- + order allow,deny + allow from all + + + + # @@ServerRoot@@/cgi-bin should be changed to whatever your ScriptAliased +--- 39,63 ---- # override. Can also be "All", or any combination of "Options", "FileInfo", # "AuthConfig", and "Limit" @@ -17,20 +40,21 @@ # Controls who can get stuff from this server. -*************** -*** 52,58 **** - # CGI directory exists, if you have that configured. - - -! AllowOverride None - Options None - + order allow,deny + allow from all ---- 52,58 ---- - # CGI directory exists, if you have that configured. - - -! AllowOverride All - Options None ++ ++ ++ # We need to allow exection of the FrontPage CGI program in user home directories. ++ ++ ++ Options ExecCGI ++ AllowOverride All ++ ++ ++ ++ Options ExecCGI ++ AllowOverride All + # @@ServerRoot@@/cgi-bin should be changed to whatever your ScriptAliased To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message