Age | Commit message (Collapse) | Author | Files | Lines |
|
Upstream changes:
New in version 1.27:
Fixed bug that prevented binary CGI results from working. This bug was introduced in 1.23. Noticed and diagnosed by Qipeng Zhang.
New in version 1.26:
Long-standing bug on FreeBSD using http but not https. Files were getting truncated at 1MB. This was due to improper usage of sendfile(2), and not testing the http path since I only use mini_httpd for https. Since Linux has a completely different sendfile(2) call, it was not affected. And since https does not use sendfile(2), it also was not affected.
New in version 1.25:
Improvements to the FreeBSD startup script. (Craig Leres)
Improvement to SSL support.
New in version 1.24:
Disable SSLv2 to prevent DROWN attack.
Fix binary POST request reading. (Erik Waling)
New in version 1.23:
Fixed CVE-2015-1548, a buffer overflow via snprintf.
New in version 1.22:
Don't do TCP_NOPUSH on SSL connections. It doesn't help and causes problems.
Use memmove() for self-overlapping string copies instead of strcpy().
|
|
|
|
|
|
Problems found locating distfiles:
Package haskell-cgi: missing distfile haskell-cgi-20001206.tar.gz
Package nginx: missing distfile array-var-nginx-module-0.04.tar.gz
Package nginx: missing distfile encrypted-session-nginx-module-0.04.tar.gz
Package nginx: missing distfile headers-more-nginx-module-0.261.tar.gz
Package nginx: missing distfile nginx_http_push_module-0.692.tar.gz
Package nginx: missing distfile set-misc-nginx-module-0.29.tar.gz
Package nginx-devel: missing distfile echo-nginx-module-0.58.tar.gz
Package nginx-devel: missing distfile form-input-nginx-module-0.11.tar.gz
Package nginx-devel: missing distfile lua-nginx-module-0.9.16.tar.gz
Package nginx-devel: missing distfile nginx_http_push_module-0.692.tar.gz
Package nginx-devel: missing distfile set-misc-nginx-module-0.29.tar.gz
Package php-owncloud: missing distfile owncloud-8.2.0.tar.bz2
Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden). All existing
SHA1 digests retained for now as an audit trail.
|
|
|
|
previous releases.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
on packages that are affected by the switch from the openssl 0.9.7
branch to the 0.9.8 branch. ok jlam@
|
|
* None of the source files seems to reference any function in libutil, so
remove it from the libraries linked into mini_httpd and mhtpasswd.
* Make this work on Solaris by linking mini_httpd with the usual
"-lnsl -lsocket" dance.
Bump PKGREVISION to 4 due to changed library linkage in the installed
binaries.
|
|
|
|
|
|
Reported to mini_httpd developers. Patch is found various
places on internet.
|
|
|
|
|
|
|
|
example MAKE_ENV+=FOO=${BAR} is changed to MAKE_ENV+=FOO=${BAR:Q}. Some
other changes are outlined in
http://mail-index.netbsd.org/tech-pkg/2005/12/02/0034.html
|
|
Thank you, Bruce, for previously maintaining these.
|
|
of the author's mail address in comments and README file).
|
|
|
|
|
|
|
|
as suggested by Georg Schwarz in PR pkg/27203.
|
|
in the process. (More information on tech-pkg.)
Bump PKGREVISION and BUILDLINK_DEPENDS of all packages using libtool and
installing .la files.
Bump PKGREVISION (only) of all packages depending directly on the above
via a buildlink3 include.
|
|
|
|
Buildlink files: RECOMMENDED version changed to current version.
|
|
Bruce J.A. Nourish for pkgsrc-wip.
mini_httpd is a small HTTP server. Its performance is not great, but for
low or medium traffic sites it's quite adequate. It implements all the
basic features of an HTTP server, including:
* GET, HEAD, and POST methods.
* CGI.
* Basic authentication.
* Security against ".." filename snooping.
* The common MIME types.
* Trailing-slash redirection.
* index.html, index.htm, index.cgi
* Directory listings.
* Multihoming / virtual hosting.
* Standard logging.
* Custom error pages.
It can also be configured to do SSL/HTTPS and IPv6.
|