|blue_lizard||in http://phpfi.com/215076 you have an simple script that fails too|
pctony: you are right i also dont understand that and thats the reason i search for help here
btw i am on an up to date debian sid system
|fajita||pctony: vras is a special dish of stirfried tit with noodls|
|otaku42||i'm running apache http 2.2.3 with mod-security 2.0.1. one of the features of mod-security is to deny incoming requests that match defined rules with a definable error number (such as 404).|
i want to make use of not (IMO) yet assigned error numbers (for example 430) along with custom error pages to explain users why their request has been denied.
now the problem: if i use error number 430, the client gets a "500 internal server error" instead. but error number 419 (for example) works as expected.
without digging into the sources of mod-security and httpd it seems to me that httpd limits the acceptable range for error numbers.
|et||don't do that, use standard response codes and explain why they happened in the request body|
|otaku42||et: well, my problem is that the only way i currently see to distinct between the various reasons is by using different error codes.|
|et||otaku42: if you use other error codes than 400-417 you are leaving http|
|otaku42||et: in theory, mod-security allows to set environment variables, but i failed to use that for my purposes so far|
hmm... i could try to use mod_include for that purpose...
yango: what's 419's original meaning?
|et||it doesn't have one|
400-417 are defined
403 is what mod_security ought to emit (http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.4.4)
|otaku42||et: anything that generally speaks against using 402? i use that for cases where comment spammers try to post spam to my site (see also: http://madwifi.org/wiki/FightingTracSpam )|
et: the standard says it's reserved...
|et||otaku42: the standard says "The server understood the request, but is refusing to fulfill it." is 403|
et, yango: thx, will give the idea of using mod_include to provide distinct descriptions, rather than using different error numbers.
I have got a problem. I want apache to forward a user to a different web page according to the group that user is from
is it possible to do this in apache?
e.g.if the user authenticates and belongs to admin group, then forward him to directory: /var/www/html/admin
e.g.if the user authenticates and belongs to guest group, then forward him to directory: /var/www/html/guest
is it tough, should i give up??
|Roobarb-Work||jeremy_g: I'm not aware of a way for apache to check gid/uid in that fashion|
|yango||jeremy_g: I think you could pull something up with REMOTE_USER var, mod_rewrite and mod_authnz_external|
but it would be ugly