Thread: [mod-security-users] Apache 2, AddHandler
Brought to you by:
victorhora,
zimmerletw
From: <ge...@ne...> - 2005-03-17 16:29:28
|
Hi list, According with the user manual, if I use SecFilterEngine DynamicOnly y must modify: AddType application/x-httpd-php .php for: AddHandler application/x-httpd-php .php But.. in the httpd.conf that comes with RHEL3 (Apache 2) is not present AddType or AddHandler for php, is correct to add this directive? PHP is running as MODULE and working well without AddType. Regards, Geffrey |
From: Ivan R. <iv...@we...> - 2005-03-18 10:10:45
|
Geffrey Vel=E1squez wrote: > > But.. in the httpd.conf that comes with RHEL3 (Apache 2) is not present= =20 > AddType or AddHandler for php, is correct to add this directive? PHP is= =20 > running as MODULE and working well without AddType. That's (probably) because RHEL3 uses a version of PHP that integrates with Apache 2 using the filter mechanism. Look for "php" in httpd.conf and you'll find other directives. That means that you cannot rely on DynamicOnly settings. FYI, the filter integration method has been abandoned, and replaced with the "standard" handler method. So if you download a newer version of PHP you'll be able to get DynamicOnly to work. --=20 Ivan Ristic Apache Security (O'Reilly) - http://www.apachesecurity.net Open source web application firewall - http://www.modsecurity.org |
From: Code F. S. <sec...@co...> - 2005-03-18 22:26:10
|
Ivan Ristic wrote: > Geffrey Vel=E1squez wrote: > >> >> But.. in the httpd.conf that comes with RHEL3 (Apache 2) is not=20 >> present AddType or AddHandler for php, is correct to add this=20 >> directive? PHP is running as MODULE and working well without AddType. > > > That's (probably) because RHEL3 uses a version of PHP that integrates > with Apache 2 using the filter mechanism. Look for "php" in > httpd.conf and you'll find other directives. That means that you > cannot rely on DynamicOnly settings. > > FYI, the filter integration method has been abandoned, and replaced > with the "standard" handler method. So if you download a newer > version of PHP you'll be able to get DynamicOnly to work. > Thankfully it's not that bad. RHEL (and Fedora) have a=20 /etc/httpd/conf.d/ directory that holds a number of sub confs. In=20 httpd.conf you'll notice it will include all *.conf files in this=20 directory. This makes life a lot easier as you can store your=20 extensions/virtualhosts as seperate config files in here rather than a=20 monolithing httpd.conf. You will see one in there called php.conf which=20 contains the AddHandler line. All the best Daniel McNamara Code Fish Sys ADmin |
From:
<gve...@mi...> - 2005-03-18 22:39:46
|
Hi Daniel, This is exactly what I have in /etc/httpd/conf.d/php.ini and there is no AddHandler directive... maybe could be added? # # PHP is an HTML-embedded scripting language which attempts to make it # easy for developers to write dynamically generated webpages. # LoadModule php4_module modules/libphp4.so # # Cause the PHP interpreter handle files with a .php extension. # <Files *.php> SetOutputFilter PHP SetInputFilter PHP LimitRequestBody 524288 </Files> # # Add index.php to the list of files that will be served as directory # indexes. # DirectoryIndex index.php Code Fish Security wrote: > Ivan Ristic wrote: > >> Geffrey Velásquez wrote: >> >>> >>> But.. in the httpd.conf that comes with RHEL3 (Apache 2) is not >>> present AddType or AddHandler for php, is correct to add this >>> directive? PHP is running as MODULE and working well without AddType. >> >> >> >> That's (probably) because RHEL3 uses a version of PHP that integrates >> with Apache 2 using the filter mechanism. Look for "php" in >> httpd.conf and you'll find other directives. That means that you >> cannot rely on DynamicOnly settings. >> >> FYI, the filter integration method has been abandoned, and replaced >> with the "standard" handler method. So if you download a newer >> version of PHP you'll be able to get DynamicOnly to work. >> > Thankfully it's not that bad. RHEL (and Fedora) have a > /etc/httpd/conf.d/ directory that holds a number of sub confs. In > httpd.conf you'll notice it will include all *.conf files in this > directory. This makes life a lot easier as you can store your > extensions/virtualhosts as seperate config files in here rather than a > monolithing httpd.conf. You will see one in there called php.conf > which contains the AddHandler line. > > All the best > > Daniel McNamara > Code Fish Sys ADmin > > > ------------------------------------------------------- > SF email is sponsored by - The IT Product Guide > Read honest & candid reviews on hundreds of IT Products from real users. > Discover which products truly live up to the hype. Start reading now. > http://ads.osdn.com/?ad_ide95&alloc_id396&opÌk > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users |
From: Ivan R. <iv...@we...> - 2005-03-18 23:07:34
|
Geffrey Vel=E1squez [MINAG] wrote: >=20 > Hi Daniel, > This is exactly what I have in /etc/httpd/conf.d/php.ini and there is n= o=20 > AddHandler directive... maybe could be added? No, this: > # > # Cause the PHP interpreter handle files with a .php extension. > # > <Files *.php> > SetOutputFilter PHP > SetInputFilter PHP > LimitRequestBody 524288 > </Files> replaces the AddHandler/AddType functionality. --=20 Ivan Ristic Apache Security (O'Reilly) - http://www.apachesecurity.net Open source web application firewall - http://www.modsecurity.org |
From:
<gve...@mi...> - 2005-03-18 23:12:53
|
Thank you Ivan, I see right now that RHEL3 uses the Filter mechanism. Geffrey Ivan Ristic wrote: > Geffrey Velásquez [MINAG] wrote: > >> >> Hi Daniel, >> This is exactly what I have in /etc/httpd/conf.d/php.ini and there is >> no AddHandler directive... maybe could be added? > > > No, this: > >> # >> # Cause the PHP interpreter handle files with a .php extension. >> # >> <Files *.php> >> SetOutputFilter PHP >> SetInputFilter PHP >> LimitRequestBody 524288 >> </Files> > > > replaces the AddHandler/AddType functionality. > |