Received: (qmail 85511 invoked by uid 501); 13 Mar 2002 08:26:41 -0000 Message-Id: <20020313082641.85510.qmail@apache.org> Date: 13 Mar 2002 08:26:41 -0000 From: Romus Reply-To: romus@slonko.pl To: submit@bugz.apache.org Subject: Directory named .htaccess is treated as file .htaccess X-Send-Pr-Version: 3.110 >Number: 10158 >Category: mod_access >Synopsis: Directory named .htaccess is treated as file .htaccess >Confidential: no >Severity: non-critical >Priority: medium >Responsible: apache >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Wed Mar 13 00:30:00 PST 2002 >Closed-Date: >Last-Modified: >Originator: romus@slonko.pl >Release: 1.3.20 >Organization: apache >Environment: Windows 2000 Professional, PHP 4.0.6 >Description: If directory named .htaccess is created in directory with AllowOverride AuthConfig. ----------------------------------------------------------------------------- Error logs: [Wed Mar 13 08:53:24 2002] [crit] [client 195.205.113.85] (13)Permission denied: f:/1_modyfikowane/.htaccess pcfg_openfile: unable to check htaccess file, ensure it is readable ------------------------------------------------------------------------------- Access logs: 195.205.113.85 - - [13/Mar/2002:08:53:26 +0100] "GET /style.css HTTP/1.1" 403 280 195.205.113.85 - - [13/Mar/2002:08:53:26 +0100] "GET /teleton%20new/intro.htm HTTP/1.1" 403 292 195.205.113.85 - - [13/Mar/2002:08:53:35 +0100] "GET /teleton%20new/main.htm HTTP/1.1" 403 291 195.205.113.85 - - [13/Mar/2002:08:53:37 +0100] "GET / HTTP/1.1" 403 271 ------------------------------------------------------------------------------ httpd.conf: ..... AliasMatch "^/([^/]+)/(.*)" "f:/1_modyfikowane/$1/www/$2" Options ExecCGI MultiViews AllowOverride AuthConfig Order allow,deny Allow from all AliasMatch "^/([^/\.]+)" "f:/1_modyfikowane/$1/www" Options ExecCGI MultiViews AllowOverride AuthConfig Order allow,deny Allow from all AliasMatch "^/" "f:/1_modyfikowane/" Options ExecCGI MultiViews AllowOverride AuthConfig Order allow,deny Allow from all ..... >How-To-Repeat: Create such directory? >Fix: Mayby it's not worth to fix, because of speed issue with additional stat() calls, but this might interfer with .htaccess files. >Release-Note: >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, you need] [to include in the Cc line and make sure the] [subject line starts with the report component and number, with ] [or without any 'Re:' prefixes (such as "general/1098:" or ] ["Re: general/1098:"). If the subject doesn't match this ] [pattern, your message will be misfiled and ignored. The ] ["apbugs" address is not added to the Cc line of messages from ] [the database automatically because of the potential for mail ] [loops. If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request from a ] [developer. Reply only with text; DO NOT SEND ATTACHMENTS! ]