osdir.com


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug 57585] httpd fails to start if there is an IncludeOptional directive to a inexistent directory


https://bz.apache.org/bugzilla/show_bug.cgi?id=57585

--- Comment #3 from Luca Toscano <toscano.luca@xxxxxxxxx> ---
So I just noticed that
https://httpd.apache.org/docs/2.4/mod/core.html#includeoptional says:

"This directive allows inclusion of other configuration files from within the
server configuration files. It works identically to the Include directive, with
the exception that if wildcards do not match any file or directory, the
IncludeOptional directive will be silently ignored instead of causing an
error."

I was brought to this task since there is an outstanding bug in Debian for
mod_security in stretch:

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878920

Basically the maintainer of libapache2-mod_security added the following:

# Include OWASP ModSecurity CRS rules if installed
IncludeOptional /usr/share/modsecurity-crs/owasp-crs.load

This causes an error but something like the following does not:

# Include OWASP ModSecurity CRS rules if installed
IncludeOptional /usr/share/modsecurity-crs/owasp-crs*.load

I can see the value of this difference but is there any strong motivation to
error out on the former and not on the latter?

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: bugs-help@xxxxxxxxxxxxxxxx