httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Joshua Slive <jsl...@gmail.com>
Subject Re: [users@httpd] "IncludesNoExec" complains "unable to include potential exec"
Date Mon, 04 Apr 2005 16:04:09 GMT
On Apr 4, 2005 11:43 AM, Deepak, R. <masatran@research.iiit.ac.in> wrote:
> I use ".ssi" as the extension for SSI files and use this option in
> ".htaccess":
>     AddOutputFilter INCLUDES .ssi
> Everything worked until two days ago, when the Linux installation was
> changed from SuSE to Fedora (Fedora Core 3). SSI virtual includes like:
>     <!--#include virtual="/~masatran/includes/header.en-us.xhtml.utf8.ssi"-->
> now print:
>     [an error occurred while processing this directive]
> 
> XML WARNING: These webpages are served as "application/xhtml+xml" to
> browsers which accept it. XML errors are unlike HTML errors; a XML document
> with an error causes only the error to be displayed. So, the source needs to
> be viewed.
> 
> Example webpage: <http://research.iiit.ac.in/~masatran/>. The first line is:
>     <!--#include virtual="/~masatran/includes/header.en-us.xhtml.utf8.ssi"-->
> 

If I remember correctly, apache considers anything with a mime-type
other than text/* to be a potentially "exec" and therefore disallows
it.  There was some talk about changing this, but I can't remember the
outcome.  Your only solution would be to hack mod_include to allow
application/xhtml+xml to be treated as a non-exectuable.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message