Michael Barz
Michael Barz
I did this on @jvillafanez advice. Needs investigation.
``` --------------- On Debian based systems --------------- $ apache2ctl -t -D DUMP_MODULES OR $ apache2ctl -M --------------- On RHEL based systems --------------- $ apachectl -t -D DUMP_MODULES OR $ httpd...
are you admin user? you can create a config report from the webUI. excerpt from my test instance ```json "phpinfo": { "apache2handler": { "Apache Version": "Apache\/2.4.43 (Unix) OpenSSL\/1.1.1g PHP\/7.2.32", "Apache...
"Loaded Modules" @C0rby @martinackerl Pro tip 😄
There is a big difference 1) php on the cli is not using apache in between 2) generating the configreport via WebUI routes the request through apache.
Then we must conclude, that your owncloud is not served by apache. 🤷♂️
🤔 ` "server SAPI": "cgi-fcgi",` no mod_php That means that your apache is not using mod_php
@held-vitalij @martinackerl The change you are referring to was necessary to close an attack vector. It was reported to us by an external and we mitigated it. See advisory https://owncloud.com/security-advisories/cross-site-request-forgery-in-the-ocs-api/...
@ho4ho We officially support `mod_php` only because it is thread-safe. But many instances are using fcgi on their own risk.
> I have no clear reproducer for this, but I ran by accdent into this situation multiple times: we need that context, otherwise we cannot qualify