| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
|
|
|
|
|
|
- Upgraded to Apache 1.3.27.
- Fixed internal error handling for CRL verification.
- Initialize OpenSSL ENGINE before initializing OpenSSL
to workaround problems with the PRNG.
- Also find "openssl" executable in "sbin" directories.
- Honor specified number of maximum bytes on SSLRandomSeed
if reading from EGD.
- Fixed generation of SSL_CLIENT_CERT_CHAIN_[0-9] variables.
|
|
discovered in version 1.3.26 including these security fixes:
- SECURITY: CAN-2002-0840 (cve.mitre.org)
Prevent a cross-site scripting vulnerability in the default
error page. The issue could only be exploited if the directive
UseCanonicalName is set to Off and a server is being run at
a domain that allows wildcard DNS. [Matthew Murphy]
- SECURITY CAN-2002-0843 (cve.mitre.org)
Fix some possible overflows in ab.c that could be exploited by
a malicious server. Reported by David Wagner. [Jim Jagielski]
- SECURITY CAN-2002-0839 (cve.mitre.org)
Add the new directive 'ShmemUIDisUser'. By default, Apache
will no longer set the uid/gid of SysV shared memory scoreboard
to User/Group, and it will therefore stay the uid/gid of
the parent Apache process. This is actually the way it should
be, however, some implementations may still require this, which
can be enabled by 'ShmemUIDisUser On'. Reported by iDefense.
[Jim Jagielski]
|
|
This is a stable branch of mozilla.
A select group of APIs have been marked "@FROZEN. Mozilla.org intends
to maintain API compatibility for this set until next major release.
This branch is targeted at the developer community and enables
the creation of Internet-based applications.
|
|
Changes with Apache 2.0.43
*) SECURITY: [CAN-2002-0840] HTML-escape the address produced by
ap_server_signature() against this cross-site scripting
vulnerability exposed by the directive 'UseCanonicalName Off'.
Also HTML-escape the SERVER_NAME environment variable for CGI
and SSI requests. It's safe to escape as only the '<', '>',
and '&' characters are affected, which won't appear in a valid
hostname. Reported by Matthew Murphy <mattmurphy@kc.rr.com>.
[Brian Pane]
*) Fix a core dump in mod_cache when it attemtped to store uncopyable
buckets. This happened, for instance, when a file to be cached
contained SSI tags to execute a CGI script (passed as a pipe
bucket). [Paul J. Reder]
*) Ensure that output already available is flushed to the network
when the content-length filter realizes that no new output will
be available for a while. This helps some streaming CGIs as
well as some other dynamically-generated content. [Jeff Trawick]
*) Fix a mutex problem in mod_ssl session cache support which
could lead to an infinite loop. PR 12705
[amund.elstad@ergo.no (Amund Elstad), Jeff Trawick]
*) SECURITY: Allow POST requests and CGI scripts to work when DAV
is enabled on the location. [Ryan Bloom]
*) Allow the UserDir directive to accept a list of directories.
This matches what Apache 1.3 does. Also add documentation for
this feature. [Jay Ball <jay@veggiespam.com>]
*) New Module: mod_logio. adds the ability to log bytes sent and
received. [Bojan Smojver <bojan@rexursive.com>]
*) SuExec needs to use the same default directory as the rest of
server, namely /usr/local/apache2.
[SangBeom han <sbhan@os.korea.ac.kr>]
*) Get mod_auth_ldap to retry connections on LDAP_SERVER_DOWN.
[Thomas Bennett <thomas.bennett@eds.com>, Graham Leggett]
*) Make sure the contents of the WWW-Authenticate header is
passed on a 4xx error by proxy. Previously all headers
were dropped, resulting in the browser being unable to
authenticate. [Dr Richard Reiner <rreiner@fscinternet.com>,
Richard Danielli <rdanielli@fscinternet.com>, Graham Wiseman
<gwiseman@fscinternet.com>, David Henderson
<dhenderson@fscinternet.com>]
*) Make mod_cache's CacheMaxStreamingBuffer directive work
properly for virtual hosts that override server-wide mod_cache
setttings. [Matthieu Estrade <estrade-m@ifrance.com>]
*) Add -p option to apxs to allow programs to be compiled with apxs.
[Justin Erenkrantz]
|
|
changes.
|
|
|
|
- Use __ELF__ to detect ELF
- Modify xpcom stuff for arm like m68k
|
|
|
|
|
|
|
|
|
|
|
|
|
|
---
Changes with Apache 2.0.42
*) mod_dav: Check for versioning hooks before using them.
[Greg Stein]
Changes with Apache 2.0.41
*) The protocol version (eg: HTTP/1.1) in the request line parsing
is now case insensitive. [Jim Jagielski]
*) Allow AddOutputFilterByType to add multiple filters per directive.
[Justin Erenkrantz]
*) Remove warnings with Sun's Forte compiler. [Justin Erenkrantz]
*) Fixed mod_disk_cache's generation of 304s
[Kris Verbeeck <Kris.Verbeeck@ubizen.com>]
*) Add support for using fnmatch patterns in the final path
segment of an Include statement (eg.. include /foo/bar/*.conf).
and remove the noise on stderr during config dir processing.
[Joe Orton <jorton@redhat.com>]
*) mod_cache: cache_storage.c. Add the hostname and any request
args to the key generated for caching. This provides a unique
key for each virtual host and for each request with unique
args. [Paul J. Reder, args code provided by Kris Verbeeck]
*) mod_cache: Do not cache responses to GET requests with query
URLs if the origin server does not explicitly provide an
Expires header on the response (RFC 2616 Section 13.9)
[Kris Verbeeck krisv@be.ubizen.com]
*) Fix memory leak in core_output_filter. [Justin Erenkrantz]
*) Update OpenSSL detection to work on Darwin.
[Sander Temme <sctemme@covalent.net>]
*) Update the xslt and css to give the documentation a more
modern style.
[André Malo <nd@perlig.de>, Gernot Winkler <greh@o3media.de>]
*) Fix some bucket memory leaks in the chunking code
[Joe Schaefer <joe+apache@sunstarsys.com>]
*) Add ModMimeUsePathInfo directive. [Justin Erenkrantz]
*) mod_cache: added support for caching streamed responses (proxy,
CGI, etc) with optional CacheMaxStreamingBuffer setting [Brian Pane]
*) Add image/x-icon to httpd.conf PR 10993.
[Ian Holsman, Peter Bieringer <pb@bieringer.de>]
*) Fix FileETags none operation. PR 12207.
[Justin Erenkrantz, Andrew Ho <andrew@tellme.com>]
*) Restored the experimental leader/followers MPM to working
condition and converted its thread synchronization from
mutexes to atomic CAS. [Brian Pane]
*) Fix Logic on non-html file removal in mod_deflate
[Kris Verbeeck <Kris.Verbeeck@ubizen.com>]
*) Fix "ab -g"'s truncated year: the last digit was cut off.
[Leon Brocard <acme@astray.com>]
*) mod_rewrite can now sets cookies in err_headers, uses the correct
expiry date, and can now set the path as well
PR 12132,12181,12172.
[Ian Holsman / Rob Cromwell <apachechangelog@robcromwell.com>]
*) The content-length filter no longer tries to buffer up
the entire output of a long-running request before sending
anything to the client. [Brian Pane]
*) Win32: Lower the default stack size from 1MB to 256K. This will
allow around 8000 threads to be started per child process.
'EDITBIN /STACK:size apache.exe' can be used to change this
value directly in the apache.exe executable.
[Bill Stoddard]
*) Win32: Implement ThreadLimit directive in the Windows MPM.
[Bill Stoddard]
*) Remove CacheOn config directive since it is set but never checked.
No sense wasting cycles on unused code. Besides, the only truly
bug free code is deleted code. :) [Paul J. Reder]
*) BufferLogs are now run-time enabled, and the log_config now has 2 new
callbacks to allow a 3rd party module to actually do the writing of the
log file [Ian Holsman]
*) Correct ISAPIReadAheadBuffer to default to 49152, per mod_isapi docs.
[André Malo, Astrid Keßler <kess@kess-net.de>]
*) Fix Segfault in mod_cache. [Kris Verbeeck <Kris.Verbeeck@ubizen.com>]
*) Fix a null pointer dereference in the merge_env_dir_configs
function of the mod_env module. PR 11791
[Paul J. Reder]
*) New option to ServerTokens 'maj[or]'. Only show the major version
Also Surfaced this directive in the standard config (default FULL)
[Ian Holsman]
*) Change mod_rewrite to use apr-util's dbm support for dbm rewrite
maps. The dbm type (e.g., ndbm, gdbm) can be specified on the
RewriteMap directive. PR 10644 [Jeff Trawick]
*) Fixed mod_rewrite's RewriteMap prg: support so that request/response
pairs will no longer get out of sync with each other. PR 9534
[Cliff Woolley]
*) Fixes required to get quoted and escaped command args working in
mod_ext_filter. PR 11793 [Paul J. Reder]
*) mod-proxy: handle proxied responses with no status lines
[JD Silvester <jsilves@uwo.ca>, Brett Huttley <brett@huttley.net>]
*) Fix bug where environment or command line arguments containing
non-ASCII-7 characters would cause the Win32 child process creation
to fail. PR 11854 [William Rowe]
*) Bug #11213.. make module loading error messages more informative
[Ian Darwin <Ian779@darwinsys.com>]
*) thread safety & proxy-ftp [Alexey Panchenko alexey@liwest.ru, Ian Holsman]
*) mod_disk_cache works much better. This module should still
be considered experimental. [Eric Prud'hommeaux]
*) Performance improvement for keepalive requests: when setting
aside a small file for potential concatenation with the next
response on the connection, set aside the file descriptor rather
than copying the file into the heap. [Brian Pane]
|
|
This should fix PR pkg/18494
|
|
Netscape 7 will not work otherwise.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
(XXX doesn't work well with our rot13'd files)
|
|
|
|
NS_INST variable to 'complete'. The 'complete' installation includes
the java plugin, which may be desirable for some people.
|
|
|
|
as discussed on pkgsrc-changes. Sorry everybody for the mess, this
(hopefully) was the last episode of netscape7's big PLIST/distinfo-shuffle
(aka 'why-cvs-really-should-have-a-mv-command').
|
|
keep distfiles for the different languages. Suggested by wiz.
|
|
|
|
a variable (PKG_LANG), adding and modifying PLISTs and distinfo's as necessary.
- Do not use the installer as the distfile, but the "real" distfile.
This increases the initial download time, but allows for building without
a network connection. As suggested by grant in PR pkg/18461
- Only try to pax over files from the linux-emul root if they were
created in there. This should address PR pkg/18461 by grant.
Bump PKGREVISION.
|
|
commit including various other PLISTs. Keeps this dir cleaner.
|
|
Changes:
NEW FEATURES
- Now support many Windows code pages in addition to ISO charsets.
- HTMLDOC now supports heading levels 1 to 15.
- HTMLDOC now allows the author to omit headings from
the TOC using the _HD_OMIT_TOC attribute.
- HTMLDOC now supports remote book files when running
from the command-line.
- HTMLDOC now supports hexadecimal character constants (ÿ)
- New --nup and NUMBER-UP options for PostScript and PDF output.
- HTMLDOC now logs HTML errors.
- HTMLDOC now supports the A3, B, Legal, and Tabloid size names.
- HTMLDOC now supports embedding of the base Type1 fonts
in PostScript and PDF output.
CHANGES
- HTMLDOC now calculates the resolution of the body
image using the printable width instead of the page width.
- HTMLDOC should now compile out-of-the-box using the Cygwin tools.
- HTMLDOC no longer inserts whitespace between text inside DIV elements.
- HTMLDOC now supports quoted usernames and passwords in URLs.
- HTMLDOC now defaults unknown colors to white for background colors and
black for foreground colors. This should make documents that use
non-standard color names still appear readable.
- The HTML parser now allows BODY to auto-close HEAD and visa-versa.
BUG FIXES
- HTMLDOC could crash when checking if a URL is already cached.
- HTMLDOC didn't adjust the top margin when changing the
page header if the comment didn't appear at the top of a page.
- HTMLDOC didn't initialize the right number of TOC headings.
- When using a logo image in the header, the header was
placed too low on the page.
- "make install" didn't work in the fonts directory.
- "€" didn't work, while "€" did: the
character name table was not sorted properly...
- Links didn't always point to the right page in PDF output.
- XRX comment output could crash HTMLDOC.
- Fixed-width columns in tables could be resized by HTMLDOC.
- When writing PostScript commands, some printers reset
their duplexing state when a new setpagedevice command
is received; we now cache the current duplex state and
change it only as needed.
- The MEDIA SIZE comment didn't adjust the printable
size for the current landscape setting.
- HTMLDOC placed the header one line too high.
- When continuing a chapter onto the next page, H3 and
higher headings would be indented the wrong amount.
- HTMLDOC wouldn't compile using GCC under HP-UX due to
a badly "fixed" system header file (vmtypes.h).
- Generating a book without a table-of-contents would
produce a bad PDF file.
- The Xerox XRX comments used the wrong units for the
media size, points instead of millimeters.
- IMG elements with links that use the ALIGN attribute
didn't get the links.
- Header and footer comments would interfere with the
top and bottom margin settings.
- Fixed a bug in the htmlReadFile() function which
caused user-provided title pages not to be displayed
in PS or PDF output.
- The table-of-contents would inherit the last media
settings in the document, but use the initial settings
when formatting.
|
|
* New config variable: annotate_options
* Make annotate work under mod_perl
* Output address only if it's set
* Fix annotate HTML output
* Escape file names in directory listings
* Mention cvs < 1.11 '-l' bug
|
|
* s/echo/@ECHO@/ for portability.
ok'd by seb.
|
|
|
|
Changes :
- Added URI::QueryParam module. It contains some
extra methods to manipulate the query form key/value pairs.
- Added support for the sip: and sips: URI scheme.
Contributed by Ryan Kereliuk <ryker@ryker.org>.
- use_buildlink2
- use perl5 module
|
|
Should I bump ap-ssl's PKG_REVISION, too?
|
|
problems when it is not enabled, notably mod_perl. Fixes pkg/18070
from myself, ok'd by wiz.
Bump PKGREVISION.
|
|
[which is an older version of the same source]. Remove it.
Noted by Andrew Brown in connection with PR 18280.
|
|
on Solaris. Patch by Julien T. Letessier.
|
|
Use perl5/module.mk
|
|
Use perl5/module.mk
|
|
|
|
before. Problem noted by Thomas Klausner. Bump pkgrev.
|
|
|
|
|
