You are viewing a plain text version of this content. The canonical link for it is here.

Posted to apache-bugdb@apache.org by "Lorenzo M.Catucci" <lo...@argon.roma2.infn.it> on 1998/02/05 14:46:37 UTC

config/1773: IdentityCheck directive not really allowed inside .htaccess

>Number:         1773
>Category:       config
>Synopsis:       IdentityCheck directive not really allowed inside .htaccess
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    apache
>State:          open
>Class:          sw-bug
>Submitter-Id:   apache
>Arrival-Date:   Thu Feb  5 05:50:00 PST 1998
>Last-Modified:
>Originator:     lorenzo@argon.roma2.infn.it
>Organization:
apache
>Release:        1.3b3
>Environment:
Linux argon 2.0.33 #1 Thu Dec 18 11:28:22 CET 1997 i586 unknown
>Description:
Even though the docs say:
>How-To-Repeat:

>Fix:

>Audit-Trail:
>Unformatted:
[In order for any reply to be added to the PR database, ]
[you need to include <ap...@Apache.Org> in the Cc line ]
[and leave the subject line UNCHANGED.  This is not done]
[automatically because of the potential for mail loops. ]


>>IdentityCheck directive
>>
>>Syntax: IdentityCheck boolean
>>Default: IdentityCheck off
>>Context: server config, virtual host, directory, .htaccess
>>Status: core

I can use the directive only inside a <Directory >...</Directory> section 
of access.conf. Here is what I get if I try using the directive inside the
following .htaccess file:

public_html/ident/.htaccess:
-------------------------------------------------------------------------
AddType application/x-httpd-cgi CGI
IdentityCheck On
-------------------------------------------------------------------------

error.log:
-------------------------------------------------------------------------
[Thu Feb  5 13:03:10 1998] [alert] (2)No such file or directory: 
 [...] public_html/ident/.htaccess: IdentityCheck not allowed here
-------------------------------------------------------------------------
Now, it seems the directory got enough privileges to add the cgi type, but
not to enable an ident... At the very least, I feel this as a shortcoming
in the docs, which states to the opposite of what happens, or refrains from
stating which options you need to be able to enable IdentityCheck on a 
granular, per-directory way.

Yours,

lorenzo m catucci

RE: config/1773: IdentityCheck directive not really allowed insi

Posted by Lars Eilebrecht <La...@unix-ag.org>.

According to Lorenzo M.Catucci:

>   [...] public_html/ident/.htaccess: IdentityCheck not allowed here
>  -------------------------------------------------------------------------
>  Now, it seems the directory got enough privileges to add the cgi type, but
>  not to enable an ident... At the very least, I feel this as a shortcoming
>  in the docs, which states to the opposite of what happens, or refrains from
>  stating which options you need to be able to enable IdentityCheck on a 
>  granular, per-directory way.

AFAIK IdentityCheck was never allowed inside .htaccess... I think the
doc should be fixed, should it?


ciao...
-- 
Lars Eilebrecht                         - Masochist: Windows programmer
sfx@unix-ag.org                                         with a smile.
http://www.si.unix-ag.org/~sfx/