summaryrefslogtreecommitdiff
path: root/www/apache6
AgeCommit message (Collapse)AuthorFilesLines
2004-02-18Include "../../mk/compiler.mk" to get the value of CC_VERSION beforejlam1-1/+3
testing it.
2004-02-09USE_GCC[23], USE_SUNPRO, and USE_MIPSPRO are all deprecated.jlam1-2/+2
2003-11-02Update PLIST for apache6-1.3.29.cube1-2/+5
2003-11-02Update apache6 to 1.3.29 + ipv6 patch.cube6-125/+9
Major changes since 1.3.28: Security vulnerabilities * CAN-2003-0542 (cve.mitre.org) Fix buffer overflows in mod_alias and mod_rewrite which occurred if one configured a regular expression with more than 9 captures. Bugs fixed The following noteworthy bugs were found in Apache 1.3.28 (or earlier) and have been fixed in Apache 1.3.29: * Within ap_bclose(), ap_pclosesocket() is now called * consistently for sockets and ap_pclosef() for files. Also, closesocket() is used consistenly to close socket fd's. The previous confusion between socket and file fd's would cause problems with some applications now that we proactively close fd's to prevent leakage. * Fixed mod_usertrack to not get false positive matches on the user-tracking cookie's name. * Prevent creation of subprocess Zombies when using CGI wrappers such as suEXEC and cgiwrap.
2003-10-29Import security fix from 1.3.29 distribution for a buffer overflow incube6-3/+119
mod_rewrite and mod_alias, referenced CAN-2003-0542. Bump PKGREVISION.
2003-10-18Whitespace fixescjep1-2/+2
2003-10-11bump PKGREVISIONs after bump of expat BUILDLINK_DEPENDS.grant1-1/+2
2003-09-19Revert version 1.81, as the mods it contained weren't necessary.agc1-6/+1
2003-09-17get rid of USE_GCC2/3 in pkg Makefiles, and set GCC_REQD orgrant1-1/+6
USE_PKGSRC_GCC as appropriate, as this is handled by compiler.mk now.
2003-09-13new v6 patch (small bug fix)itojun2-5/+7
2003-09-12upgrade to 1.3.28 + IPv6 patch.itojun4-36/+39
This version of Apache is principally a security and bug fix release. Of particular note is that 1.3.28 addresses and fixes the following issues: CAN-2003-0460 (cve.mitre.org) (rotatelogs bug), VU#379828 (infinite loop potential), and file descriptor leakage .
2003-07-30fix cut and pasto introduced in rev 1.66 (USE_DB185).grant1-1/+3
2003-07-17s/netbsd.org/NetBSD.org/grant1-3/+3
2003-06-06replace ${WHOLE_ARCHIVE_FLAG} -lgcc ${NO_WHOLE_ARCHIVE_FLAG} by justdrochner1-2/+2
${LINK_ALL_LIBGCC_HACK}
2003-06-02Use tech-pkg@ in favor of packages@ as MAINTAINER for orphaned packages.jschauma1-2/+2
Should anybody feel like they could be the maintainer for any of thewe packages, please adjust.
2003-05-31tidy up logic for adding libgcc and libgcc_s. no functional change.grant1-7/+7
2003-05-31for consistency, use WHOLE_ARCHIVE_FLAG instead ofgrant1-2/+2
-Wl,--whole-archive.
2003-05-31drop some unnecessary parensgrant1-2/+2
2003-05-31link against shared libgcc_s when built with gcc3 so Apache modulesgrant1-2/+10
can resolve the required symbols.
2003-04-15be quiet in all targets except post-install.grant1-6/+6
2003-03-14(1) Publicly export the value of _OPSYS_RPATH_NAME as RPATH_FLAG;jlam1-2/+2
Makefiles simply need to use this value often, for better or for worse. (2) Create a new variable FIX_RPATH that lists variables that should be cleansed of -R or -rpath values if ${_USE_RPATH} is "no". By default, FIX_RPATH contains LIBS, X11_LDFLAGS, and LDFLAGS, and additional variables may be appended from package Makefiles.
2003-02-23Use MASTER_SITE_APACHE.jmmv1-3/+3
2003-01-28Instead of including bsd.pkg.install.mk directly in a package Makefile,jlam1-2/+2
have it be automatically included by bsd.pkg.mk if USE_PKGINSTALL is set to "YES". This enforces the requirement that bsd.pkg.install.mk be included at the end of a package Makefile. Idea suggested by Julio M. Merino Vidal <jmmv at menta.net>.
2002-12-22Revert to previous behavior and use db1 functions in libc if they aregrant1-4/+10
present, rather than installing databases/db (affects NetBSD, Linux, Darwin and possibly others). As suggested by Kimmo Suominen.
2002-12-19- Tidy up conditional use of databases/db/buildlink2.mk.grant1-6/+10
- Add libmm support as per apache pkg. Bump PKGREVISION.
2002-12-07Replace IGNORE with PKG_FAIL_REASON or PKG_SKIP_REASON as appropriate.schmonz1-2/+2
2002-11-19As per discussion in pkg/18854, remove support for apache_start.conf asjlam1-19/+6
the precedence of the contents of this file changes depending on whether it's started at boot time or started manually, and it's not really necessary to add the extra complexity since it's valid (and easier) to just set apache_start in /etc/rc.conf.
2002-11-19Pullup revisions 1.114 and 1.115 from www/apache/Makefile:martti1-3/+3
Use "${NONBINMODE}" instead of mode "0" so that "pkg_admin check" still works for a normal user. Also invoke "chmod" only once because fork() and exec() is expensive on certain platforms.
2002-11-18Fix chmod (PR#19093 by Adrian Portelli). Bump PKGREVISION.martti1-3/+4
2002-11-15Updated apache6 to 1.3.27nb1martti1-1/+2
chmod 0 libexec/cgi-bin/{printenv,test-cgi} (to make nessus happy).
2002-11-15chmod 0 libexec/cgi-bin/{printenv,test-cgi} (to make nessus happy).martti1-1/+2
2002-10-14Only set apache_start to "start" if it's not already set.lukem1-3/+3
Previously, if apache_start was set in /etc/rc.conf and /etc/rc.d/apache was loaded as part of the /etc/rc start sequence, apache_start's value would be overridden by "apache_start=start" in this script, because /etc/rc.conf would have already been loaded and load_rc_config() would not reload it again. This problem would not have been seen if /etc/rc.d/apache was started manually, or /etc/rc.conf.d/apache or @PKG_SYSCONFDIR@/apache_start.conf was used to set apache_start. (I am using /etc/rc.conf, and was wondering why apache wasn't starting with ssl support at boot, but worked after a manual restart...)
2002-10-06Update "apache6" package to version 1.3.27. This version fixes many bugstron3-12/+13
discovered in version 1.3.26 including these security fixes: - SECURITY: CAN-2002-0840 (cve.mitre.org) Prevent a cross-site scripting vulnerability in the default error page. The issue could only be exploited if the directive UseCanonicalName is set to Off and a server is being run at a domain that allows wildcard DNS. [Matthew Murphy] - SECURITY CAN-2002-0843 (cve.mitre.org) Fix some possible overflows in ab.c that could be exploited by a malicious server. Reported by David Wagner. [Jim Jagielski] - SECURITY CAN-2002-0839 (cve.mitre.org) Add the new directive 'ShmemUIDisUser'. By default, Apache will no longer set the uid/gid of SysV shared memory scoreboard to User/Group, and it will therefore stay the uid/gid of the parent Apache process. This is actually the way it should be, however, some implementations may still require this, which can be enabled by 'ShmemUIDisUser On'. Reported by iDefense. [Jim Jagielski]
2002-09-26Explicitly turn on large file support, as some Apache modules havegrant1-2/+6
problems when it is not enabled, notably mod_perl. Fixes pkg/18070 from myself, ok'd by wiz. Bump PKGREVISION.
2002-09-20Make these scripts more portable by taking advantage of automatic rc.dgrant1-2/+2
script handling and using @RCD_SCRIPTS_SHELL@. as discussed with jlam.
2002-09-19Take advantage of the auto-generation and installation of rc.d scripts.jlam1-3/+1
2002-08-25Merge packages from the buildlink2 branch back into the main trunk thatjlam5-9/+10
have been converted to USE_BUILDLINK2.
2002-08-01Crank libmm dependency versions and dependent pkg revisions.mycroft1-2/+2
2002-07-30Update apache packages with some common changes:wiz3-15/+42
Give Apache a user and group by default, not only with suexec. The variables for this have changed from APACHE_SUEXEC_USER and APACHE_SUEXEC_GROUP to APACHE_USER and APACHE_GROUP. Mention 'Apache' in COMMENT. Use variables for the version number instead of copying it around. Bump PKGREVISION. For apache{,6}: Change paths to /var/httpd instead of /var/spool/httpd. Honour STRIPFLAG. Add --without-confadjust as configure argument. Enable the 'define' module. For apache: Enable proxy module on NOPIC platforms. Some of these changes are based on pkg/17469 by Greg A. Woods, some on comments by Johnny Lam. Reviewed by Johnny Lam.
2002-07-07Provide the common rc.d directive "reload" as an alias for "apachectl graceful",tv1-3/+6
which reloads the server without killing transfers in progress.
2002-06-21correct wrong use of MASTER_SITES (should be PATCH_SITES).itojun1-2/+2
From: Dawid Szymanski <dawszy@tgr.lubin.edu.pl>
2002-06-20don't chown share/httpd blindly. sync w/ www/apacheitojun1-2/+1
2002-06-20enable mod_so for use with php. From: Dawid Szymanski <dawszy@tgr.lubin.edu.pl>itojun1-2/+4
2002-06-20apache with IPv6 patch, for 1.3.26.itojun4-61/+84
proxy module was disabled as the IPv6 patch for the module is broken.
2002-02-26Add back ability to change the value of "apache_start" from /etc/rc.confjlam1-7/+24
that was lost in the previous commit. "${apache_start}" is the subcommand sent to apachectl to control how httpd is started. It's value may be overridden in: @PKG_SYSCONFDIR@/apache_start.conf /etc/rc.conf /etc/rc.conf.d/apache, in order of increasing precedence. Its possible values are "start" and "startssl", and defaults to "start".
2002-02-05Solaris' test binary (test/[) doesn't grok "-e". Replace with "-f".jlam1-3/+3
Noted by Stoned Elipot <seb@netbsd.org> in private email.
2002-01-01Fix installation so that existing config files are preserved when buildingjlam2-29/+4
from source instead of installing from a binary package (problem noted in private email by George Coulouris <george@coulouris.org>.
2001-12-26Vastly simplify this script by using /etc/rc.subr. Provide minimal startjlam1-62/+17
functionality on pre-1.5 platforms, as apachectl may always be used instead for the full control interface.
2001-12-26(1) Create new variable "APACHE_SUEXEC_CONFIGURE_ARGS" that may containjlam1-10/+13
--suexec-* configure options that are passed directly to the Apache configure script. This may be used to tune the suEXEC configuration in more restrictive ways, e.g. --suexec-uidmin=1000. This solution is more open-ended than the fix proposed in pkg/14973. Also, we don't duplicate all of the options from the Apache configure script in pkgsrc bsd.pkg.defaults.mk. This closes pkg/14973 by Eric Schnoebelen <eric@cirr.com> (2) For namespace consistency, deprecate APACHE_USER in favor of APACHE_SUEXEC_USER. Move APACHE_USER into bsd.pkg.obsolete.mk. (3) Create the suEXEC user when the functionality is enabled in the server so that CGI scripts will work properly. This closes pkg/14903 by Wojciech Puchar <wojtek@3miasto.net>
2001-12-02bsd.pkg.install.mk calls the INSTALL script at the right timesjlam1-2/+1
automatically, so no need to do it ourselves.