Received: (qmail 3260 invoked by uid 2012); 12 Nov 1997 14:03:03 -0000 Message-Id: <19971112140303.3259.qmail@hyperreal.org> Date: 12 Nov 1997 14:03:03 -0000 From: Dominic Hulewicz Reply-To: dom@inta.net To: apbugs@hyperreal.org Subject: New style access control does not function as documented X-Send-Pr-Version: 3.2 >Number: 1403 >Category: mod_access >Synopsis: New style access control does not function as documented >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: closed >Class: duplicate >Submitter-Id: apache >Arrival-Date: Wed Nov 12 06:10:00 PST 1997 >Last-Modified: Wed Nov 12 07:00:13 PST 1997 >Originator: dom@inta.net >Organization: >Release: 1.3b2 >Environment: SunOS 4.1.4 sun4m gcc version 2.7.2 >Description: I have upgraded to 1.3b2 because I need the functionality of CIDR and netmask suffixes in the allow directives of access.conf. If I have a line such as "allow from 194.70.70.0/24" then accesses from a machine in that Class C network are correctly granted, but if I try the line "allow from 194.70.70." then accesses are denied with a 403 response. A line allowing a single IP address also fails unless I specify the network as well, i.e. "allow from 194.70.70.70/32" instead of "allow from 194.70.70.70". If I specify a hostname instead, e.g. "allow from panic.inta.net" then it does work as expected. >How-To-Repeat: >Fix: >Audit-Trail: State-Changed-From-To: open-closed State-Changed-By: coar State-Changed-When: Wed Nov 12 07:00:13 PST 1997 State-Changed-Why: [This is a standard response.] This issue has been reported before; please search the FAQ and the bug database. Thanks for using Apache! Class-Changed-From-To: sw-bug-duplicate Class-Changed-By: coar Class-Changed-When: Wed Nov 12 07:00:13 PST 1997 >Unformatted: