Skip to main content

PM83409: Cookie values containing an '=' are incorrectly logged.


Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as program error.

Error description

  • Only a portion of a logged cookie value is written to the log
if it contains an '=' character.

Local fix

  •  
    • 
  
 
  
Problem summary
 
  
     
   
  • ****************************************************************
* USERS AFFECTED:  Users of IBM HTTP Server 6.1.0.45 who log   *
*                  cookie values that contain an equal sign    *
*                  '=' character. Other versions of IHS are    *
*                  not affected.                               *
****************************************************************
* PROBLEM DESCRIPTION: Logged cookie values are partial if     *
*                      they contain a '=' character.           *
****************************************************************
* RECOMMENDATION:  Apply this fix if you use %{cookie_name}C   *
*                  syntax to log cookie values.                *
****************************************************************
When logging a cookie value that contains an equal sign '='
character, the part of the cookie starting at the '='
character and following it is not written to the log.

     
    • 
  
 
  
Problem conclusion
 
  
     
   
  • The mod_log_config.so module was updated to correctly log
cookie values that contain a '=' character.

This fix is targeted for IBM HTTP Server fix pack:
 - 6.1.0.47

     
    • 
  
 
  
Temporary fix
 
  
     
   
  •  
    • 
  
 
  
Comments
 
  
     
   
  •  
    • 
  
 
  
APAR Information
 
  
 
   
     
    
  • APAR number
    PM83409
    •  
    
  • Reported component name
    IBM HTTP SERVER
    •  
    
  • Reported component ID
    5724J0801
    •  
    
  • Reported release
    610
    •  
    
  • Status
    CLOSED PER
    •  
    
  • PE
    NoPE
    •  
    
  • HIPER
    NoHIPER
    •  
    
  • Special Attention
    NoSpecatt
    •  
    
  • Submitted date
    2013-02-21
    •  
    
  • Closed date
    2013-02-28
    •  
    
  • Last modified date
    2013-05-17
    •  
   
 
  
 
  
     
   
  • APAR is sysrouted FROM one or more of the following:
     
    •  
   
  • APAR is sysrouted TO one or more of the following:
     
    •  
  
 
  
Fix information
 
  
     
   
  • Fixed component name
    IBM HTTP SERVER
    •  
   
  • Fixed component ID
    5724J0801
    •  
  
 
  
Applicable component levels
 
  
     
   
  • R61A PSY
       UP
    •  
   
  • R61H PSY
       UP
    •  
   
  • R61I PSY
       UP
    •  
   
  • R61P PSY
       UP
    •  
   
  • R61S PSY
       UP
    •  
   
  • R61W PSY
       UP
    •  
   
  • R61Z PSY
       UP
    •  
  
 
 
 

 









Rate this page:



(0 users)Average rating 





















	
	
	
	
	









	



























Copyright and trademark information



	
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide.  Other product and service names might be trademarks of IBM or other companies.  A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.































Rate this page:






(0 users)Average rating









Add comments














Document information





	
IBM HTTP Server


	
Runtime


	




	
Software version:

	610

	





	
Reference #:

PM83409






Modified date:

2013-05-17








Translate my page














































 



Content navigation