Univention Bugzilla – Bug 42296
convert 2.2 apache configs to 2.4
Last modified: 2017-04-04 18:28:53 CEST
See Bug #42196. We have to check all apache configs for 2.4 compatibility. * conf.d no longer supported, move config to conf-available, active/deactivate config in postint/prerm * Options directives like "Options ExecCGI" are no loner supported (add +) * Access control? see http://httpd.apache.org/docs/current/upgrading.html check at least: * univention-nagios * univention-ad-connector * univention-novnc
* sites in sites-available must have the suffix .conf
base/univention-maintenance/.htaccess:Order allow,deny base/univention-system-activation/conffiles/etc/apache2/sites-available/univention-system-activation: Order allow,deny base/univention-system-activation/conffiles/etc/apache2/sites-available/univention-system-activation: Order allow,deny base/univention-system-activation/conffiles/etc/apache2/sites-available/univention-system-activation: Order allow,deny saml/univention-saml/conffiles/etc/apache2/sites-available/univention-saml.conf: Order allow,deny services/univention-apache/conffiles/etc/apache2/conf-available/ucs.conf: Order allow,deny services/univention-apache/conffiles/etc/apache2/mods-available/proxy.conf: print ' Order allow,deny' services/univention-net-installer/univention-net-installer: Order allow,deny services/univention-printserver/conffiles/etc/cups/cups-access-limit.conf: print '\t\tOrder deny,allow' services/univention-printserver/conffiles/etc/cups/cupsd.conf:#BrowseOrder allow,deny services/univention-printserver/conffiles/etc/cups/cupsd.conf:#BrowseOrder deny,allow services/univention-printserver/debian/univention-printserver.postinst: cups/policy/default/limit/1/Order="deny,allow" \ services/univention-printserver/debian/univention-printserver.postinst: cups/policy/default/limit/2/Order="deny,allow" \ services/univention-printserver/debian/univention-printserver.postinst: cups/policy/default/limit/3/Order="deny,allow"
Broken symbolic links (due to missing suffix '.conf'): # find /etc/apache2 -xtype l -printf '%p %l\n' /etc/apache2/sites-enabled/univention-saml ../sites-available/univention-saml /etc/apache2/sites-enabled/univention-management-console ../sites-available/univention-management-console
univention-ad-connector: * removed apache config univention-novnc * moved apache config to conf-available univention-nagios * removed old update code in postinst * enable/disable nagios3 apache2-maintscript-helper * old conf /etc/apache2/conf.d/nagios3.conf is removed by nagios3-cgi.postinst univention-system-activation * renamed, fixed /etc/apache2/sites-available/univention-system-activation.conf
There was one missing: univention-nagios (10.0.1-1): r76665 | Bug #42296: fix apache configuration syntax
base/univention-doc/conffiles/etc/apache2/sites-available/univention-doc is not migrated: missing renaming into .conf.
The following file is also not migrated: ./base/univention-debmirror/conffiles/etc/apache2/sites-available: univention-repository What about this one, is it a apache config? ./services/univention-radius/conffiles/etc/freeradius/sites-available: default inner-tunnel
(In reply to Florian Best from comment #6) > base/univention-doc/conffiles/etc/apache2/sites-available/univention-doc is > not migrated: missing renaming into .conf. done (In reply to Florian Best from comment #7) > The following file is also not migrated: > ./base/univention-debmirror/conffiles/etc/apache2/sites-available: > univention-repository done > > What about this one, is it a apache config? > ./services/univention-radius/conffiles/etc/freeradius/sites-available: > default inner-tunnel no, these are freeradius configs
Tests: OK, looks good. Changelog: OK
The univention-debmirror apache config has been renamed but I don't have access: [Wed Mar 29 21:03:35.494994 2017] [authz_core:error] [pid 2606] [client 10.201.45.1:53500] AH01630: client denied by server configuration: /var/lib/univention-repository/mirror "Require all granted" fixed it.
(In reply to Stefan Gohmann from comment #10) > The univention-debmirror apache config has been renamed but I don't have > access: > > [Wed Mar 29 21:03:35.494994 2017] [authz_core:error] [pid 2606] [client > 10.201.45.1:53500] AH01630: client denied by server configuration: > /var/lib/univention-repository/mirror > > "Require all granted" fixed it. univention-debmirror r78495
(In reply to Felix Botner from comment #11) > (In reply to Stefan Gohmann from comment #10) > > The univention-debmirror apache config has been renamed but I don't have > > access: > > > > [Wed Mar 29 21:03:35.494994 2017] [authz_core:error] [pid 2606] [client > > 10.201.45.1:53500] AH01630: client denied by server configuration: > > /var/lib/univention-repository/mirror > > > > "Require all granted" fixed it. > > univention-debmirror r78495 OK
UCS 4.2 has been released: https://docs.software-univention.de/release-notes-4.2-0-en.html https://docs.software-univention.de/release-notes-4.2-0-de.html If this error occurs again, please use "Clone This Bug".