Apache 2.2 Bug

Todays issue did hit the apache 2.2 webserver while handling range requests. Range requests, according to HTTP 1.1 are not bad at all as they were used for resuming downloads in example. But where an overly wide range is requested from the server things lead to a crash in the server, which isn’t great at all. But sadly there is no official patch yet. As a workaround you may use mod_rewrite to prevent worst:


RewriteEngine On
RewriteCond %{REQUEST_METHOD} ^(HEAD|GET) [NC]
RewriteCond %{HTTP:Range} ([0-9]*-[0-9]*)(\s*,\s*[0-9]*-[0-9]*)+
RewriteRule .* - [F]

This small config block only acts on getting range requests rewriting them so they do no harm.

Author:

2 thoughts on “Apache 2.2 Bug”

  • Jau, habs schon in der Mailinglist mitverfolgt (da gings ja eine Weile hin und her). Werd mich wohl auch mal drum kümmern müssen :)

  • Jetzt ist wenigstens der Fix schön langsam verteilt und man kann die Hacks schön langsam entfernen, mit denen man die Kisten wieder dicht gekriegt hat…

Leave a Reply

Your email address will not be published. Required fields are marked *