Ubuntu
libapache-mod-evasive package

Unusable on Ubuntu Hardy when /tmp is not writable

Bug #379318 reported by Paul Drain
22
This bug affects 4 people
Affects Status Importance Assigned to Milestone
libapache-mod-evasive (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

Using 1.10.1-1 on Hardy with a secured /tmp directory on a shared hosting provider, this module gives me:

[crit] [client x.x.x.x] mod_evasive: Could not open logfile /tmp/dos-x.x.x.x: Permission denied.

This happens when the directory is either protected by a kernel patch (eg. grsecurity) or when it is simply "chattr +s /tmp" 'd

Revision history for this message
Paul Drain (pd) wrote :

This, unfortunately also happens when the /tmp directory is simply unwritable by the www-data user.

Attached is a patch which moves the default log creation directory to /var/cache/apache2, which is actually owned by the www-data user.

Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in libapache-mod-evasive (Ubuntu):
status: New → Confirmed
Revision history for this message
Christian Reis (kiko) wrote :

This is the correct fix for this issue, incidentally. And because the failure mode is a bit confusing, a reminder that you can use

   sudo -u www-data touch <doslogdir>/.test

to verify the directory permissions are correctly set up.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.