Bug 478535
| Summary: | TraceEnable not an option in current httpd | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 4 | Reporter: | Jim Perrin <james.l.perrin> |
| Component: | httpd | Assignee: | Joe Orton <jorton> |
| Status: | CLOSED ERRATA | QA Contact: | BaseOS QE <qe-baseos-auto> |
| Severity: | medium | Docs Contact: | |
| Priority: | low | ||
| Version: | 4.7 | CC: | fnadge, mhuth, ohudlick |
| Target Milestone: | rc | ||
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: |
Cause
Consequence:
Fix:
Result:
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2011-02-16 13:57:57 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Jim Perrin
2008-12-31 16:25:58 UTC
Note that we do not consider this issue to be a security flaw, see the NVD statement at the following link: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-2320 and see this article for more information: http://www.apacheweek.com/issues/03-01-24#news Right. I did not mean to make it seem as though this was a security issue, though I did paste the body of the cert announcement. I would like to see this enabled though, because a number of 'security' scanners which show this as a finding. It would be much better in my opinion to simply be able to use 'TraceEnable Off', as opposed to a modrewrite rule. OK, thanks for the feedback. This request was evaluated by Red Hat Product Management for inclusion, but this component is not scheduled to be updated in the current Red Hat Enterprise Linux release. If you would like this request to be reviewed for the next minor release, ask your support representative to set the next rhel-x.y flag to "?". This request was evaluated by Red Hat Product Management for inclusion, but this component is not scheduled to be updated in the current Red Hat Enterprise Linux release. If you would like this request to be reviewed for the next minor release, ask your support representative to set the next rhel-x.y flag to "?". What exactly do the duplicate comments here signify? Does this mean it's been pushed back 2 minor releases, or is update 8 on the way, and this won't be in it? Sorry about the confusion. This isn't currently scheduled to be fixed in 4.8, but has been proposed for inclusion in 4.9. (Can't guarantee it will be in 4.9 at this stage) Please be so kind and add a few key words to the technical note of this bugzilla entry using the following structure: Cause: Consequence: Fix: Result: Thanks
Technical note added. If any revisions are required, please edit the "Technical Notes" field
accordingly. All revisions will be proofread by the Engineering Content Services team.
New Contents:
Cause
Consequence:
Fix:
Result:
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2011-0237.html |