Le 27/03/2012 18:18, Joe Orton a écrit :
Yup - the default config in the f18 httpd does load
mod_access_compat,
and I don't see a problem with shipping like that.
It would be good to convert webapps over for f18, having said that.
It seems that mod_access_compat doesn't really work as expected.
From my first test, it allow to reduce the default right not to
increase it.
I Will take phpMyAdmin for example, stock config.
By default, access is denied.
So even with
<Directory /usr/share/phpMyAdmin/>
order deny,allow
deny from all
allow from 127.0.0.1
allow from ::1
</Directory>
I got an "access denied" (from authz_core)
[authz_core:error] [pid 10848] [client ::1:59237] AH01630: client denied
by server configuration: /usr/share/phpMyAdmin/, referer:
http://localhost/
After adding a trivial default access with
<Directory />
Require all granted
</Directory>
phpMyAdmin works, and mod_access_compat allow to protect some folders
Example, with
<Directory /usr/share/phpMyAdmin/setup/lib>
Order Deny,Allow
Deny from All
Allow from None
</Directory>
I got the expected "access denied" (from access_compat)
[access_compat:error] [pid 11130] [client ::1:59330] AH01797: client
denied by server configuration:
/usr/share/phpMyAdmin/setup/lib/common.inc.php
So I mainly see 2 options
1/ allow default access
seems really uggly...
2/ fix all web app in fedora 18
just a big job...
Perhaps there is another solution... any idea ?
Regards,
Remi