Following Commit 804a3fe which changed http/Provision/Config/Apache/platform.tpl.php
- Satisfy any
+ Satisfy All
the "Require all granted" - which gives the same permission as "Allow from all" - is 'active' for Apache 2.2 but "Require all granted" is an Apache 2.4 directive so the site returns a HTTP 500 with an error_log entry of
AuthType not set!: /
On Apache 2.4 this has no impact as it can apply both directives.
I am not sure of the reason the Satisfy directive was changed to "harden Apache access restrictions" as both directives have the same effect, is it to control directive application for directives in parent or child directory's block?
If it is not possible to revert, wrapping the directives in resolves the issue, patch that implements this attached
| Comment | File | Size | Author |
|---|---|---|---|
| provision.patch | 525 bytes | northstowe |
Comments
Comment #2
northstowe commentedComment #3
helmo commentedIsn't it time to drop Apache 2.2 support? Which OS is still supporting that? Even debian oldstable has 2.4