Le 27/03/2012 18:18, Joe Orton a écrit : > Yup - the default config in the f18 httpd does load mod_access_compat, > and I don't see a problem with shipping like that. > > It would be good to convert webapps over for f18, having said that.
It seems that mod_access_compat doesn't really work as expected. From my first test, it allow to reduce the default right not to increase it. I Will take phpMyAdmin for example, stock config. By default, access is denied. So even with <Directory /usr/share/phpMyAdmin/> order deny,allow deny from all allow from 127.0.0.1 allow from ::1 </Directory> I got an "access denied" (from authz_core) [authz_core:error] [pid 10848] [client ::1:59237] AH01630: client denied by server configuration: /usr/share/phpMyAdmin/, referer: http://localhost/ After adding a trivial default access with <Directory /> Require all granted </Directory> phpMyAdmin works, and mod_access_compat allow to protect some folders Example, with <Directory /usr/share/phpMyAdmin/setup/lib> Order Deny,Allow Deny from All Allow from None </Directory> I got the expected "access denied" (from access_compat) [access_compat:error] [pid 11130] [client ::1:59330] AH01797: client denied by server configuration: /usr/share/phpMyAdmin/setup/lib/common.inc.php So I mainly see 2 options 1/ allow default access seems really uggly... 2/ fix all web app in fedora 18 just a big job... Perhaps there is another solution... any idea ? Regards, Remi -- devel mailing list devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/devel
