Infinite loop since apache upgrade to 2.4.62
41 views
Skip to first unread message
Fabrice Le Dorze
Sep 1, 2024, 7:17:28 AM9/1/24
to Thruk
On Debian bookworm, Thruk is not morking anymore since Apache was upgraded to 2.4.62 :
Redirect loop detected (
http://localhost/thruk/cgi-bin/login.cgi?nocookie&nocookie)
In a browser, it says:
https://<FQDN>/thruk/cgi-bin/login.cgi?nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie
https://<FQDN>/thruk/cgi-bin/login.cgi?nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie
The default vhost is :
<VirtualHost *:80>
# The ServerName directive sets the request scheme, hostname and port that
# the server uses to identify itself. This is used when creating
# redirection URLs. In the context of virtual hosts, the ServerName
# specifies what hostname must appear in the request's Host: header to
# match this virtual host. For the default virtual host (this file) this
# value is not decisive as it is used as a last resort host regardless.
# However, you must set it for any further virtual host explicitly.
#ServerName www.example.com
ServerAdmin webmaster@localhost
DocumentRoot /var/www/html
# Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
# error, crit, alert, emerg.
# It is also possible to configure the loglevel for particular
# modules, e.g.
#LogLevel info ssl:warn
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
# For most configuration files from conf-available/, which are
# enabled or disabled at a global level, it is possible to
# include a line for only one particular virtual host. For example the
# following line enables the CGI configuration for this host only
# after it has been globally disabled with "a2disconf".
#Include conf-available/serve-cgi-bin.conf
Include /usr/share/thruk/thruk_cookie_auth.include
</VirtualHost>
Any idea what I should do ?
# The ServerName directive sets the request scheme, hostname and port that
# the server uses to identify itself. This is used when creating
# redirection URLs. In the context of virtual hosts, the ServerName
# specifies what hostname must appear in the request's Host: header to
# match this virtual host. For the default virtual host (this file) this
# value is not decisive as it is used as a last resort host regardless.
# However, you must set it for any further virtual host explicitly.
#ServerName www.example.com
ServerAdmin webmaster@localhost
DocumentRoot /var/www/html
# Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
# error, crit, alert, emerg.
# It is also possible to configure the loglevel for particular
# modules, e.g.
#LogLevel info ssl:warn
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
# For most configuration files from conf-available/, which are
# enabled or disabled at a global level, it is possible to
# include a line for only one particular virtual host. For example the
# following line enables the CGI configuration for this host only
# after it has been globally disabled with "a2disconf".
#Include conf-available/serve-cgi-bin.conf
Include /usr/share/thruk/thruk_cookie_auth.include
</VirtualHost>
Any idea what I should do ?
Fabrice Le Dorze
Sep 1, 2024, 7:49:32 AM9/1/24
to Thruk
I forgot the thruk version : 3.16-1
Sven Nierlein
Sep 3, 2024, 4:04:57 AM9/3/24
to th...@googlegroups.com, Fabrice Le Dorze
Hi,
there is an issue for this already: https://github.com/sni/Thruk/issues/1392
The workaround is to add the UNC flag or to update to the latest nightly build.
Cheers,
Sven
On 9/1/24 13:49, Fabrice Le Dorze wrote:
>
> I forgot the thruk version : 3.16-1
> Le dimanche 1 septembre 2024 à 13:17:28 UTC+2, Fabrice Le Dorze a écrit :
>
> On Debian bookworm, Thruk is not morking anymore since Apache was upgraded to 2.4.62 :
> w3m http://localhost/thruk <http://localhost/thruk>
> Redirect loop detected ( http://localhost/thruk/cgi-bin/login.cgi?nocookie&nocookie <http://localhost/thruk/cgi-bin/login.cgi?nocookie&nocookie>)
> You received this message because you are subscribed to the Google Groups "Thruk" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to thruk+un...@googlegroups.com <mailto:thruk+un...@googlegroups.com>.
> To view this discussion on the web visit https://groups.google.com/d/msgid/thruk/d6804560-74c8-4b1f-8836-921550de281cn%40googlegroups.com <https://groups.google.com/d/msgid/thruk/d6804560-74c8-4b1f-8836-921550de281cn%40googlegroups.com?utm_medium=email&utm_source=footer>.
there is an issue for this already: https://github.com/sni/Thruk/issues/1392
The workaround is to add the UNC flag or to update to the latest nightly build.
Cheers,
Sven
On 9/1/24 13:49, Fabrice Le Dorze wrote:
>
> I forgot the thruk version : 3.16-1
> Le dimanche 1 septembre 2024 à 13:17:28 UTC+2, Fabrice Le Dorze a écrit :
>
> On Debian bookworm, Thruk is not morking anymore since Apache was upgraded to 2.4.62 :
> Redirect loop detected ( http://localhost/thruk/cgi-bin/login.cgi?nocookie&nocookie <http://localhost/thruk/cgi-bin/login.cgi?nocookie&nocookie>)
>
> In a browser, it says:
> https://<FQDN>/thruk/cgi-bin/login.cgi?nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie
>
> The default vhost is :
>
> <VirtualHost *:80>
> # The ServerName directive sets the request scheme, hostname and port that
> # the server uses to identify itself. This is used when creating
> # redirection URLs. In the context of virtual hosts, the ServerName
> # specifies what hostname must appear in the request's Host: header to
> # match this virtual host. For the default virtual host (this file) this
> # value is not decisive as it is used as a last resort host regardless.
> # However, you must set it for any further virtual host explicitly.
> #ServerName www.example.com <http://www.example.com>
> In a browser, it says:
> https://<FQDN>/thruk/cgi-bin/login.cgi?nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie&nocookie
>
> The default vhost is :
>
> <VirtualHost *:80>
> # The ServerName directive sets the request scheme, hostname and port that
> # the server uses to identify itself. This is used when creating
> # redirection URLs. In the context of virtual hosts, the ServerName
> # specifies what hostname must appear in the request's Host: header to
> # match this virtual host. For the default virtual host (this file) this
> # value is not decisive as it is used as a last resort host regardless.
> # However, you must set it for any further virtual host explicitly.
>
> ServerAdmin webmaster@localhost
> DocumentRoot /var/www/html
>
> # Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
> # error, crit, alert, emerg.
> # It is also possible to configure the loglevel for particular
> # modules, e.g.
> #LogLevel info ssl:warn
>
> ErrorLog ${APACHE_LOG_DIR}/error.log
> CustomLog ${APACHE_LOG_DIR}/access.log combined
>
> # For most configuration files from conf-available/, which are
> # enabled or disabled at a global level, it is possible to
> # include a line for only one particular virtual host. For example the
> # following line enables the CGI configuration for this host only
> # after it has been globally disabled with "a2disconf".
> #Include conf-available/serve-cgi-bin.conf
>
> Include /usr/share/thruk/thruk_cookie_auth.include
> </VirtualHost>
>
> Any idea what I should do ?
>
> --
> ServerAdmin webmaster@localhost
> DocumentRoot /var/www/html
>
> # Available loglevels: trace8, ..., trace1, debug, info, notice, warn,
> # error, crit, alert, emerg.
> # It is also possible to configure the loglevel for particular
> # modules, e.g.
> #LogLevel info ssl:warn
>
> ErrorLog ${APACHE_LOG_DIR}/error.log
> CustomLog ${APACHE_LOG_DIR}/access.log combined
>
> # For most configuration files from conf-available/, which are
> # enabled or disabled at a global level, it is possible to
> # include a line for only one particular virtual host. For example the
> # following line enables the CGI configuration for this host only
> # after it has been globally disabled with "a2disconf".
> #Include conf-available/serve-cgi-bin.conf
>
> Include /usr/share/thruk/thruk_cookie_auth.include
> </VirtualHost>
>
> Any idea what I should do ?
>
> You received this message because you are subscribed to the Google Groups "Thruk" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to thruk+un...@googlegroups.com <mailto:thruk+un...@googlegroups.com>.
> To view this discussion on the web visit https://groups.google.com/d/msgid/thruk/d6804560-74c8-4b1f-8836-921550de281cn%40googlegroups.com <https://groups.google.com/d/msgid/thruk/d6804560-74c8-4b1f-8836-921550de281cn%40googlegroups.com?utm_medium=email&utm_source=footer>.
Yu Lok Lam
Sep 3, 2024, 4:09:22 PM9/3/24
to th...@googlegroups.com
Hi Fabrice,
In your /etc/httpd.conf.d directory, did you disable the "thruk_cookie_auth_vhost.conf" file?
4 -rw-r--r--. 1 root root 110 Jul 2 2022 thruk_cookie_auth_vhost.conf.disabled
-Yu Lok
--
You received this message because you are subscribed to the Google Groups "Thruk" group.
To unsubscribe from this group and stop receiving emails from it, send an email to thruk+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/thruk/d6804560-74c8-4b1f-8836-921550de281cn%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages