[OT] mod_csrf module addition causes lighttpd to terminate
Added by sreebel over 6 years ago
I used the mod_csrf build and configured the same. But, when I try to disable "csrf.require-user" then lighttpd terminates with the following message,
- stack smashing detected ***: lighttpd terminated
Error log last line,
(mod_csrf.c.492) old/invalid csrf token: sending new token
Need help on this issue
Replies (2)
RE: [OT] mod_csrf module addition causes lighttpd to terminate - Added by gstrauss over 6 years ago
Sorry, mod_csrf.c is not part of the official lighttpd, and this question therefore belongs elsewhere. It sounds like a bug in mod_csrf.c, so you might look in the code to see if you can find it, and then report it to wherever you obtained mod_csrf.c
RE: [OT] mod_csrf module addition causes lighttpd to terminate - Added by sreebel over 6 years ago
Yes, It does not belong to official release. But, I used https://github.com/lighttpd/lighttpd1.4/pull/13/commits which has mod_csrf module included. Hence, thought of getting some clarity.