Summary: | Group line in AuthGroupFile cannot contain more than 8192 characters (including EOL) | ||
---|---|---|---|
Product: | Apache httpd-2 | Reporter: | Björn Wiberg <bjorn.wiberg> |
Component: | Other Modules | Assignee: | Apache HTTPD Bugs Mailing List <bugs> |
Status: | RESOLVED FIXED | ||
Severity: | normal | Keywords: | FixedInTrunk |
Priority: | P2 | ||
Version: | 2.2.4 | ||
Target Milestone: | --- | ||
Hardware: | PC | ||
OS: | Linux | ||
Attachments: |
Example AuthGroupFile
Example .htaccess file |
Description
Björn Wiberg
2007-08-10 05:04:02 UTC
Created attachment 20636 [details]
Example AuthGroupFile
The user "test" will be considered a user of the group "okgroup", but not of
the group "brokengroup", due to line lengths.
Created attachment 20637 [details]
Example .htaccess file
Adjust the path to the user and group files.
Try adding "okgroup" to the list of allowed groups (and not).
Notice the difference (let in vs not let in).
True - the line length is limited by the value in include/httpd.h near line 310 /** The length of a Huge string */ #define HUGE_STRING_LEN 8192 This line-length limit applies to user files, group files, config files, log lines, mod_ssl passphrases, and many other things in Apache. Changing it for all of them seems disruptive. A site with a unique requirement could change the value in httpd.h and re-build Apache. Should this really be fixed? Very large group lists may be better handled by DBM or DBD than extra long lines in a flat file. fixed in 2.4.1 |