100%[========================================================================================================================================================================================>] 11,510 --.-K/s in 0s
error.log contains the bug line:
root@trusty-apache2-1529355:~# tail -n 1 /var/log/apache2/error.log
[Wed Jan 09 12:53:09.835097 2019] [authz_core:error] [pid 9272:tid 139970345383680] [client 127.0.0.1:34994] AH02305: no alias provider found for 'blacklisted-ips' (BUG?)
error.log contains the forbidden message instead of the bug one:
[Wed Jan 09 12:55:35.360992 2019] [authz_core:error] [pid 9834:tid 139771624998656] [client 127.0.0.1:35014] AH01630: client denied by server configuration: /var/www/html/
trusty verification
First, reproducing the bug.
Package used: apache2- 1529355: ~# apt-cache policy apache2 4.10-1ubuntu1. 1~ubuntu14. 04.2 0 br.archive. ubuntu. com/ubuntu/ trusty- backports/ main amd64 Packages br.archive. ubuntu. com/ubuntu/ trusty-updates/main amd64 Packages security. ubuntu. com/ubuntu/ trusty- security/ main amd64 Packages dpkg/status br.archive. ubuntu. com/ubuntu/ trusty/main amd64 Packages
root@trusty-
apache2:
Installed: 2.4.7-1ubuntu4.20
Candidate: 2.4.7-1ubuntu4.20
Version table:
2.
100 http://
*** 2.4.7-1ubuntu4.20 0
500 http://
500 http://
100 /var/lib/
2.4.7-1ubuntu4 0
500 http://
- wget works: apache2- 1529355: ~# wget localhost -O /dev/null localhost/ |127.0. 0.1|:80. .. connected.
root@trusty-
--2019-01-09 12:53:09-- http://
Resolving localhost (localhost)... 127.0.0.1
Connecting to localhost (localhost)
HTTP request sent, awaiting response... 200 OK
Length: 11510 (11K) [text/html]
Saving to: ‘/dev/null’
100%[== ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= ======= >] 11,510 --.-K/s in 0s
2019-01-09 12:53:09 (143 MB/s) - ‘/dev/null’ saved [11510/11510]
error.log contains the bug line: apache2- 1529355: ~# tail -n 1 /var/log/ apache2/ error.log
root@trusty-
[Wed Jan 09 12:53:09.835097 2019] [authz_core:error] [pid 9272:tid 139970345383680] [client 127.0.0.1:34994] AH02305: no alias provider found for 'blacklisted-ips' (BUG?)
access.log shows normal access: apache2- 1529355: ~# tail /var/log/ apache2/ access. log 2019:12: 53:09 +0000] "GET / HTTP/1.1" 200 11820 "-" "Wget/1.15 (linux-gnu)"
root@trusty-
127.0.0.1 - - [09/Jan/
Now with the updated package: apache2- 1529355: ~# apt-cache policy apache2 4.10-1ubuntu1. 1~ubuntu14. 04.2 0 br.archive. ubuntu. com/ubuntu/ trusty- backports/ main amd64 Packages br.archive. ubuntu. com/ubuntu/ trusty- proposed/ main amd64 Packages dpkg/status 4.7-1ubuntu4. 20 0 br.archive. ubuntu. com/ubuntu/ trusty-updates/main amd64 Packages security. ubuntu. com/ubuntu/ trusty- security/ main amd64 Packages br.archive. ubuntu. com/ubuntu/ trusty/main amd64 Packages
root@trusty-
apache2:
Installed: 2.4.7-1ubuntu4.21
Candidate: 2.4.7-1ubuntu4.21
Version table:
2.
100 http://
*** 2.4.7-1ubuntu4.21 0
500 http://
100 /var/lib/
2.
500 http://
500 http://
2.4.7-1ubuntu4 0
500 http://
- wget fails, correctly: apache2- 1529355: ~# wget localhost -O /dev/null localhost/ |127.0. 0.1|:80. .. connected.
root@trusty-
--2019-01-09 12:55:35-- http://
Resolving localhost (localhost)... 127.0.0.1
Connecting to localhost (localhost)
HTTP request sent, awaiting response... 403 Forbidden
2019-01-09 12:55:35 ERROR 403: Forbidden.
error.log contains the forbidden message instead of the bug one:
[Wed Jan 09 12:55:35.360992 2019] [authz_core:error] [pid 9834:tid 139771624998656] [client 127.0.0.1:35014] AH01630: client denied by server configuration: /var/www/html/
access.log confirms the 403: apache2- 1529355: ~# tail /var/log/ apache2/ access. log -n 1 2019:12: 55:35 +0000] "GET / HTTP/1.1" 403 492 "-" "Wget/1.15 (linux-gnu)"
root@trusty-
127.0.0.1 - - [09/Jan/
Trusty verification succeeded.