Tim wrote:
On Mon, 2007-08-27 at 14:20 -0400, Todd Zullinger wrote:
> 2) Apache rules use "Allow from localhost", but seem to fail with
> the default hosts file that specifies localhost.localdomain as the
> canonical hostname. Using allow from 127.0.0.1 worked out better
> for me, and seems to be what the other web app packages I have
> installed use.
I'm not a user of Mantis, but I do use Apache a lot. I've never had
any problems with it using "localhost". The normal /etc/hosts file
lists the Linuxism "localhost.localdomain" and has the standard
'localhost" as an alias, that's good enough for Apache. You'd have
to have some real name resolution problems for that to fail.
I'm not sure what I've got wrong then. If I change /etc/hosts to:
127.0.0.1 localhost localhost.localdomain
it works. If localhost.localdomain is the canonical name in
/etc/hosts, I get denied.
I added a localhost.localdomain zone to my local DNS and things still
wouldn't work. (I'd previously only had a localhost zone.)
Commenting out the localhost entry in /etc/hosts didn't work either.
Care to test this out and let me know if it's just me (and Charles)
with this problem? I created /etc/httpd/conf.d/test.conf with the
following content:
Alias /tmp /tmp
<Directory /tmp>
Options Indexes
Order deny,allow
Deny from all
#Allow from 127.0.0.1
#Allow from localhost
#Allow from localhost.
#Allow from localhost.localdomain
</Directory>
In /etc/hosts:
127.0.0.1 localhost.localdomain localhost
I am able to browse to
http://localhost/tmp/ with either the 127.0.0.1
or localhost.localdomain allow lines uncommented. Neither the
localhost nor localhost. allowed me to access the URL.
--
Todd OpenPGP -> KeyID: 0xBEAF0CE3 | URL:
www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
The average woman would rather be beautiful than smart because the
average man can see better than he can think.