diff options
65 files changed, 2135 insertions, 0 deletions
diff --git a/debian/NEWS b/debian/NEWS new file mode 100644 index 0000000..69c120b --- /dev/null +++ b/debian/NEWS @@ -0,0 +1,46 @@ +lighttpd (1.4.31-4) unstable; urgency=high + + The default Debian configuration file for PHP invoked from FastCGI was + vulnerable to local symlink attacks and race conditions when an attacker + manages to control the PHP socket file (/tmp/php.socket up to 1.4.31-3) + before the web server started. Possibly the web server could have been + tricked to use a forged PHP. + + The problem lies in the configuration, thus this update will fix the problem + only if you did not modify the file /etc/lighttpd/conf-available/15-fastcgi-php.conf + If you did, dpkg will not overwrite your changes. Please make sure to set + + "socket" => "/var/run/lighttpd/php.socket" + + yourself in that case. + + -- Arno Töll <arno@debian.org> Thu, 14 Mar 2013 01:57:42 +0100 + +lighttpd (1.4.30-1) unstable; urgency=medium + + This releases includes an option to force Lighttpd to honor the cipher order + in ssl.cipher-list. This mitigates the effects of a SSL CBC attack commonly + referred to as "BEAST attack". See [1] and CVE-2011-3389 for more details. + + To minimze the risk of this attack it is recommended either to disable all CBC + ciphers (beware: this will break reasonably old clients or those who support + CBC ciphers only), or pursue clients to use safe ciphers where possible at + least. To do so, set + + ssl.cipher-list = "ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM" + ssl.honor-cipher-order = "enable" + + in your /etc/lighttpd/conf-available/10-ssl.conf file or on any SSL enabled + host you configured. If you did not change this file previously, this upgrade + will update it automatically. + + [1] http://blog.ivanristic.com/2011/10/mitigating-the-beast-attack-on-tls.html + + -- Arno Töll <debian@toell.net> Sun, 18 Dec 2011 20:26:50 +0100 + +lighttpd (1.4.23-1) unstable; urgency=low + + spawn-fcgi is now separate package. Please install "spawn-fcgi" package if + you need it. + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Thu, 09 Jul 2009 15:53:14 +0200 diff --git a/debian/changelog b/debian/changelog new file mode 100644 index 0000000..5e52e90 --- /dev/null +++ b/debian/changelog @@ -0,0 +1,878 @@ +lighttpd (1.4.32-1) UNRELEASED; urgency=low + + * Drop the connection-dos.patch - merged upstream. + * Fix "mod_extforward missing configuration file": ship requested + configuration file (Closes: #697304) + * Remove access.conf, an obsolete conffiles as we should have done since + 2010 (Closes: #703215) + * Push debhelper's compat mode to 9, the use of maintscript helper requires + 8.1 so we had to push the debhelper b-d anyway. + + -- Arno Töll <arno@debian.org> Sun, 17 Mar 2013 19:29:34 +0100 + +lighttpd (1.4.31-4) unstable; urgency=high + + * CVE-2013-1427: Switch the socket path for PHP when using FastCGI. /tmp is + world-writable which may cause security implications if an attacker + manages to control /tmp/php.socket before the web server (re-)starts. + * Switch VCS to git + * Push standards version (no changes) + + -- Arno Töll <arno@debian.org> Thu, 14 Mar 2013 02:20:07 +0100 + +lighttpd (1.4.31-3) unstable; urgency=high + + * Fix "configuration files refer to wrong path for documentation" + by merging a patch supplied by Denis Laxalde <denis@laxalde.org> + (Closes: #676641) + * CVE-2012-5533: Fix Denial Of Service attacks against Lighttpd by sending + faulty Connection headers + + -- Arno Töll <arno@debian.org> Wed, 21 Nov 2012 14:42:32 +0100 + +lighttpd (1.4.31-1) unstable; urgency=low + + * New upstream release + * Be more careful when removing dangling symlinks, as introduced in 1.4.30-1. + Under some configurations the postrm script could fail previously. + * Change the use-ipv6.pl script to read the default listening port as a + command line argument, fall back to the old default behavior otherwise + (Closes: #632723, #642604). Thanks to Sebastian Pipping to accidentally + give a hint how to fix this old problem by driving by. + * Push standards version to 3.9.3.1 - no further changes + * Fix "[lighttpd] "ldap" lowercase in extended description" by fixing the + typo (Closes: #670206) + * Update my maintainer address + + -- Arno Töll <arno@debian.org> Fri, 01 Jun 2012 23:46:05 +0200 + +lighttpd (1.4.30-1) unstable; urgency=medium + + * New upstream release + + Fix integer overflow (CVE-2011-4362) (Closes: #652726) + + Fix attack vector as disclosed by the SSL BEAST attack (related: + CVE-2011-3389). Note: If you are upgrading from an older version you need + to change your configuration to mitigate effects of the attack. See the + corresponding NEWS file for details. + + Count SSL renegotiations to prevent client renegotiations + * Urgency set to medium due to security updates. + * Adapt to dpkg 1.16.1 API changes regarding build flags. This enables + hardening build flags. This means, lighttpd is now being built with + -fstack-protector and other security related build flags. + * Add dpkg-dev (>= 1.16.1~) to build-depends to make sure our buildflags are + properly supported. That's guaranteed for Testing, but might be helpful to + know for backporters. + * Fix "Doesn't remove /etc/lighttpd on purge" by removing dangling symlinks + /only/. This does not entirely fix the problem of the maintainer, but we can + not simply remove all files in /etc/lighttpd as other packages or the user + himself might have left configuration files back (Closes: #642494) + * Fix "please include systemd service file" Support systemd as alternative to + sysvinit, ship systemd and tempfiles.d configuration files. Thanks to + Michael Stapelberg for providing the required files (Closes: #652442) + + -- Arno Töll <debian@toell.net> Tue, 20 Dec 2011 11:36:09 +0100 + +lighttpd (1.4.29-1) unstable; urgency=low + + * New upstream release + * Fix "lighty-enable-mod should return non-zero on fail" Update script to + leave with appropriate exit status (Closes: #629638) + * Remove the following patches: + + silence-errors.diff - applied upstream + + patches/ssl-fix.patch - applied upstream + * Add `debian/source/options' to make dpkg-source ignore glitches done by + upstream's Makefile in `src/mod_ssi_exprparser.c' and `src/configparser.c' + * Run maintainer scripts with `set -e' + + + -- Arno Töll <debian@toell.net> Mon, 04 Jul 2011 17:30:11 +0200 + +lighttpd (1.4.28-5) unstable; urgency=low + + * Build with sbuilder to avoid linking to non-existed packages. + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Tue, 26 Apr 2011 15:05:06 +0200 + +lighttpd (1.4.28-4) unstable; urgency=low + + [ Krzysztof Krzyżaniak (eloy) ] + * Add Arno Töll to Uploaders + + [ Arno Töll ] + * Fix "leaves dangling alternatives on upgrade" add preinst script which + removes the dangling symlink (Closes: #614716) + * Fix "/etc/lighttpd/conf-available/15-fastcgi-php.conf: fastcgi-php + file missing a required directive" add a dependency based recursive module + enable system in lighty-enable-mod (Closes: #600050) + * Fix "binNMU for openssl 1.0.0 broke SSL support" backport fix from upstream + to avoid name clashes between OpenSSL and Lighty's MD5 implementation + (Closes: #622733) + + -- Arno Töll <debian@toell.net> Sat, 09 Apr 2011 13:22:45 -0400 + +lighttpd (1.4.28-3) unstable; urgency=low + + [ Krzysztof Krzyżaniak (eloy) ] + * Updated debian/control and debian/copyright files + * fix for debhelper-overrides-need-versioned-build-depends (>= 7.0.50~) + * debian/compat: increased to 8 + + [ Olaf van der Spek] + * Don't fail install if server fails to start (closes: #383425) + * Fix index-file.names typo (closes: #609890) + + -- Olaf van der Spek <olafvdspek@gmail.com> Mon, 03 Jan 2011 22:56:38 +0100 + +lighttpd (1.4.28-2) unstable; urgency=medium + + [ Olaf van der Spek ] + * Use relative instead of absolute links for conf-enabled (closes: #541645) + * Fix /doc/ for IPv6 (closes: #512583) + + [ Krzysztof Krzyżaniak (eloy) ] + * Added patch patches/silence-errors.diff (closes: #601177) + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Fri, 12 Nov 2010 12:08:48 +0100 + +lighttpd (1.4.28-1) unstable; urgency=low + + [ Olaf van der Spek ] + * New upstream release (closes: 521235, 572031, 564556) + * Add check_syntax() from Ubuntu (closes: 589200) + + -- Thijs Kinkhorst <thijs@debian.org> Mon, 30 Aug 2010 20:53:18 +0200 + +lighttpd (1.4.26-3) unstable; urgency=low + + * Ack for NMU, fix for SSL incompatibility (closes: #572031) + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Thu, 03 Jun 2010 21:22:24 +0200 + +lighttpd (1.4.26-2) unstable; urgency=low + + [ Krzysztof Krzyżaniak (eloy) ] + * Switch to dpkg-source 3.0 (quilt) format + * debian/control: + + removed Franz Pletz from Uploaders, he's MIA (closes: #579366) + + change dependency from libmysqlclient15-dev to more general + libmysqlclient-dev + + [ Olaf van der Spek ] + * take conf dir as an optional parameter (closes: 489854) + * don't try to make /var/run/lighttpd when invoked with status + (closes: 538662) + * split FastCGI PHP conf from FastCGI conf (closes: 515699) + * reduce max-procs from 2 to 1 (closes: 456200) + * move debian doc handling into it's own file + * set default vhost dir to /srv/<host>/htdocs (closes: 471054) + * use delaycompress instead of copytruncate for logrotate (closes: 563626) + * don't wait for old process to stop before starting new one for reload + (closes: 504315) + * use reopen-logs for logrotate (closes: 504319) + * add no-www.conf (for use with evhost and simple-vhost, closes: 471055) + * move evhost conf into it's own file + + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Tue, 01 Jun 2010 17:08:42 +0200 + +lighttpd (1.4.26-1) unstable; urgency=low + + * New upstream release (closes: #568735) + * Use provided patch from Andres Rodriguez <andreserl@ubuntu.com> + to implement status action in init.d script (closes: #539955) + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Tue, 09 Feb 2010 18:02:13 +0100 + +lighttpd (1.4.25-2) unstable; urgency=low + + * Change behaviour of use-ipv6.pl script (closes: #560837) + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Mon, 30 Nov 2009 14:23:03 +0100 + +lighttpd (1.4.25-1) unstable; urgency=low + + * New upstream release (closes: #558045) + * debian/watch: updated + * debian/control: Section field changed to web + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Mon, 30 Nov 2009 14:03:15 +0100 + +lighttpd (1.4.24-1) unstable; urgency=low + + * New upstream release (closes: #530892) (closes: #538135) (closes: #482601) + (closes: #541428) + * debian/control: + + Standards-Version: 3.8.3 + * debian/init.d renamed to debian/lighttpd.init + * Added $syslog to LSB header in init script (closes: #545576) + (Jeremy Lal <kapouer@melix.org>) + * debian/init.d: force-reload moved to reload section (closes: #538661) + (Peter Eisentraut <petere@debian.org>) + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Fri, 30 Oct 2009 17:37:29 +0100 + +lighttpd (1.4.23-3) unstable; urgency=low + + * debian/rules: make sure that scripts have proper rights + (closes: #536668), (closes: #536681), (closes: #536688) (closes: #536668) + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Mon, 13 Jul 2009 11:17:09 +0200 + +lighttpd (1.4.23-2) unstable; urgency=low + + * Add lighttpd.docs with README & NEWS file + * New upstream closes wishlist bugs (closes: #535065) (closes: #515777) + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Fri, 10 Jul 2009 11:11:15 +0200 + +lighttpd (1.4.23-1) unstable; urgency=low + + * New upstream release + * spawn-fcgi is now separate package, recommends it debian/control + * Update Standards-Version to 3.8.2 without changes + * Remove cdbs, patchutils from Build-Depends, debian/rules uses + debhelper 7 scripts + * lighttpd.logrotate apply patch (closes: #535523) + from Ubuntu (Daniel Hahler, https://launchpad.net/bugs/393792) + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Thu, 09 Jul 2009 11:24:16 +0200 + +lighttpd (1.4.22-1) unstable; urgency=low + + * New upstream release (closes: #520124) (closes: #516897) (closes: #441173) + * debian/control: Update to Standards-Version 3.8.1 (no changes so far), + debhelper dependency updated to 7, utfize my name, satisfy lintian + * Remove all patches, all fixed upstream but rewrite_redirect_decode_url + Do NOT use rewrite/redirect to protect specific urls. + + -- Krzysztof Krzyżaniak (eloy) <eloy@debian.org> Wed, 18 Mar 2009 11:19:55 +0100 + +lighttpd (1.4.19-5) unstable; urgency=high + + * Remove the alias.url stanza from 10-cgi.conf (Closes: #499334). + * Add patches for lighttpd security 2008-05 to 2008-07 (no CVE yet): + + patches/lighttpd-1.4.x_request_header_memleak.patch + + patches/lighttpd-1.4.x_rewrite_redirect_decode_url.patch + + patches/lighttpd-1.4.x_userdir_lowercase.patch + * Urgency set to high for security fix. + + -- Pierre Habouzit <madcoder@debian.org> Sat, 27 Sep 2008 12:00:47 +0200 + +lighttpd (1.4.19-4) unstable; urgency=high + + * Make debian/use-ipv6.pl executable in debian/rules, thanks to Marco d'Itri + for finding about this inexcusable mistake. + + -- Pierre Habouzit <madcoder@debian.org> Mon, 12 May 2008 17:12:28 +0200 + +lighttpd (1.4.19-3) unstable; urgency=medium + + * Fix /var/cache/lighttpd/uploads permissions in postinst (Closes: 476870). + * Update patches/ssl-connection-errors.patch using upstream r2144, thanks to + upstream for noticing. + * cherokee and lighttpd both provide spawn-fcgi, fix that using alternatives + (Closes: 479501): + + add spawn-fcgi.lighttpd.1 shamelessly stolen from cherokee packaging + (thanks Gunnar). + + install spawn-fcgi as spawn-fcgi.lighttpd. + + install master alternatives on spawn-fcgi.lighttpd and + spawn-fcgi.lighttd.1. + + add Conflict against cherokee <= 0.6.1-1. + * Quote "dangerous" bits of conf-available/10-cgi.conf (Closes: 479276). + + -- Pierre Habouzit <madcoder@debian.org> Tue, 06 May 2008 20:01:37 +0200 + +lighttpd (1.4.19-2) unstable; urgency=low + + * Add patches/ssl-connection-errors.patch for CVE-2008-1531 + (Closes: 475438). + * Test for /var/cache/lighttpd/compress in lighttpd.cron.daily to avoid + spurious errors for uninstalled and not purged lighttpd's + (Closes: 472175). + + * Add handling of /var/cache/lighttpd/uploads (Closes: 408521): + + add it in lighttpd.dirs. + + add it as a server.upload-dirs in lighttpd.conf. + + purge it daily in lighttpd.cron.daily. + + * Fix typo in lighttpd.preinst causing failure to update 05-auth symlink + properly (Closes: 472119). + + * init.d: stopping an already stopped lighttpd, or starting an already + running one should not fail (Closes: 472122). + + * Use $HTTP["remoteip"] =~ "127.0.0.1" in configuration snipplets so that it + works when ipv6 is enabled by default too (Closes: 473510). + + * Use perl to detect if the host has ipv6, and generate the server.use-ipv6 + snipplet on the fly instead of forcing it to true (Closes: 473053). + + -- Pierre Habouzit <madcoder@debian.org> Sun, 13 Apr 2008 13:20:40 +0200 + +lighttpd (1.4.19-1~bpo40+1) etch-backports; urgency=low + + * Rebuild for etch-backports. + + -- Pierre Habouzit <madcoder@debian.org> Thu, 20 Mar 2008 00:41:49 +0100 + +lighttpd (1.4.19-1) unstable; urgency=low + + * New upstream release. + + * debian/control: + + add Build-Depends upon quilt, remove dpatch. + + Bump Standards-Version to 3.7.3 (no changes required). + + Move Homepage pseudo-headers as real headers. + + * debian/patches: + + migrate to quilt. + + remove 05_fdevent_fix.patch (merged upstream). + + remove 06_mod_cgi_vuln_fix.patch (merged upstream). + + refresh the rest of the series. + + * debian/lighty-enable-mod: + + Reindent and remove trailing spaces. + + don't fail to remove a module that is already removed. + Patch from Michal Čihař (Closes: 448682). + + Allow full stops in module names (Closes: 462199). + + * debian/lighttpd.conf: + + enable ipv6 by default (Closes: 448054). + + remove mod_status stanza, create conf-available/10-status.conf with it. + + * debian/lighttpd.cron.daily: new file, cleanup compressed cache. + Thanks to Michal Čihař (Closes: 445224). + + * be sure mod_auth is loaded first (Closes: 419176): + + add debian/lighttpd.preinst to rename 10-auth.conf into 05-auth.conf + automagically (when it's a sane thing to do). + + Document all that in NEWS.Debian. + + debian/lighttpd.install: add 10-status.conf and 05-auth.conf. + + * debian/lighttpd.postinst: + + chmod'ing /var/cache/lighttpd recursively is useless and too long. Just + chmod the base directory, content is likely to be only created by + lighty anyways. (Closes: 468297). + + * debian/init.d: + + Add $remote_fs and $network (instead of networking) to + Required-{Start,Stop}. + + Add fam to Should-{Start,Stop} (Closes: 461180). + + * debian/lighttpd.links: add symlinks on lighty-* so that lighttpd-* + commands exists as well (Closes: 435131). + + -- Pierre Habouzit <madcoder@debian.org> Sun, 16 Mar 2008 12:01:41 +0100 + +lighttpd (1.4.18-4) unstable; urgency=high + + * The “I HATE DPATCH”-release. + * Add patches for real as dpatch-edit-patch is stupid enough for not doing + it by itself (Closes: 463368, 469307). + + -- Pierre Habouzit <madcoder@debian.org> Tue, 11 Mar 2008 10:07:35 +0100 + +lighttpd (1.4.18-3) unstable; urgency=high + + * Force use of deprecated ldap interfaces (Closes: 463368), + thanks to Dann Frazier (patches/ldap-deprecated.dpatch). + * Add sample configuration for the mod_rrdtool (Closes: 462907). + * add patches/06_mod_cgi_vuln_fix.dpatch to fix CVE-2008-1111 + (Closes: 469307). + * Remove spurious mkdir in debian/rules (Closes: 448160). + * Bump urgency for RC bug fixes. + + -- Pierre Habouzit <madcoder@debian.org> Sat, 08 Mar 2008 17:30:03 +0100 + +lighttpd (1.4.18-2) unstable; urgency=high + + * Move the aliases on /doc/ and /images/ mandated by policy at the end to + circumvent #445459. + * Add patches/05_fdevent_fix.dpatch to fix possible remote DoS + (Closes: 466663). + * bump urgency for security fix. + + -- Pierre Habouzit <madcoder@debian.org> Wed, 27 Feb 2008 16:56:16 +0100 + +lighttpd (1.4.18-1) unstable; urgency=low + + * New upstream release, fixes CVE-2007-4727 (closes: #441787) + * lighttpd-angel is installed but not used yet + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 11 Sep 2007 12:45:11 +0200 + +lighttpd (1.4.17-1) unstable; urgency=low + + * New upstream release + * patches/05_mysql_autoreconnect.dpatch - dropped, fixed in upstream + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 04 Sep 2007 12:19:01 +0200 + +lighttpd (1.4.16-5~bpo40+2) etch-backports; urgency=low + + * Rebuild in an etch chroot *doh*. + + -- Pierre Habouzit <madcoder@debian.org> Tue, 28 Aug 2007 11:37:38 +0200 + +lighttpd (1.4.16-5~bpo40+1) etch-backports; urgency=low + + * Rebuild for Etch backports. + + -- Pierre Habouzit <madcoder@debian.org> Fri, 24 Aug 2007 10:12:10 +0200 + +lighttpd (1.4.16-5) unstable; urgency=low + + * debian/control: Drop conflict with gamin as it appears it was not the + issue. (Closes: #438058). For real this time. + + -- Pierre Habouzit <madcoder@debian.org> Sun, 19 Aug 2007 12:22:32 +0200 + +lighttpd (1.4.16-4) unstable; urgency=low + + * debian/control: Drop conflict with gamin as it appears it was not the + issue. (Closes: #438058). + * src/mod_mysql_vhost.c: Enable mysql auto-connect mode, as it's not default + in mysql 5.x anymore. (Closes: #428677). + + -- Pierre Habouzit <madcoder@debian.org> Sat, 18 Aug 2007 10:27:22 +0200 + +lighttpd (1.4.16-3) unstable; urgency=high + + * Urgency set to high due to RC bug fix. + * debian/lighttpd.logrotate: fix stupid typo (closes: #437341). + * debian/control: add Conflict against gamin, to avoid #437307. + + -- Pierre Habouzit <madcoder@debian.org> Wed, 15 Aug 2007 09:46:48 +0200 + +lighttpd (1.4.16-2) unstable; urgency=low + + * patches/04_ldap_build_filter_fix.dpatch: add patch from Peter Colberg to + fix first LDAP search that fails because of the filter being + uninitialized. (closes: #419661) + * Enable fam support (closes: #407820): + + debian/rules: add --enable-fam configure flag. + + debian/control: add libfam-dev to Build-Depends, and also wrap + build-dependencies to make diff more understandable. + * Enable support for kerberos (with openssl): + + debian/rules; add --enable-kerberos5 configure flag. + + debian/control: add libkrb5-dev to the Build-Depends. + * lighttpd.logrotate: redirect stderr to /dev/null as well to prevent + defunct processes (presumably due to full unread pipes/buffers) + (closes: #419992). + * debian/control: replace lighttpd dependency on perl with + libterm-readline-perl-perl as Readline.pm is needed for lighty-enable-mod + (closes: #435077). + * debian/control: + + Add myself to uploaders (closes: #401575). + + Drop Recommands on php5-cgi, there is absolutely no reason to have it, + or we would have to recommend ruby, python, lua, perl, .... and every + $language on earth to be fair. (closes: #435587). + * debian/conf-available/10-webdav.conf: add default configuration for webdav. + (closes: #406641). + * debian/conf-enabled: remove directory, it is already installed through + lighttpd.dirs. + * lighttpd.postinst, lighttpd.postrm, init.d: be sure there is a + /var/run/lighttpd owned by www-data:www-data, helpful to store locks and + things like that. + + -- Pierre Habouzit <madcoder@debian.org> Fri, 03 Aug 2007 10:06:15 +0200 + +lighttpd (1.4.16-1) unstable; urgency=low + + * New upstream release (closes: #434546) + * Acknowledge NMU by Pierre Habouzit for CVE-2007-2841 (closes: #428368) + * Added static-file.exclude-extensions section to lighttpd.conf (closes: #408374) + * Fixed description of conf-available/10-fastcgi.conf (closes: #430469) + * Added mod_extforward to debian/lighttpd.install (closes: #434717) + * config.guess taken from upstream (closes: #419664) + * turn on compression (closes: #397514) + * debian/control: XS-Vcs-Svn header added + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Fri, 27 Jul 2007 10:32:51 +0200 + +lighttpd (1.4.15-1.1) unstable; urgency=low + + * Non-maintainer upload. + * add patches/04_wrapping_headers_bugfix.dpatch to fix crash with wrapping + headers (Closes: 428368). + + -- Pierre Habouzit <madcoder@debian.org> Fri, 20 Jul 2007 11:04:07 +0200 + +lighttpd (1.4.15-1) unstable; urgency=low + + * New upstream release (closes: #419131) + * 01_mod_fastcgi_missing_cleanup.dpatch is now in upstream so it's removed from + patches + * 04_pidfile_bugfix.dpatch is now in upstream so it's removed from patches + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Fri, 06 Apr 2007 11:24:54 +0200 + +lighttpd (1.4.13-10) unstable; urgency=medium + + * 03_ldap_leak_bugfix.dpatch added from yann@pleiades.fr.eu.org (Yann Rouillard) + (closes: #413917) + * Lowered priority of index.lighttpd.html (closes: #397492) + * We don't need now check md5 sum of index.html since we provide our own + index.lighttpd.html (closes: #407794) + * 04_pidfile_bugfix.dpatch by Chris Webb <chris@arachsys.com> added - some fixes + with graceful restart + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Thu, 8 Mar 2007 22:18:42 +0100 + +lighttpd (1.4.13-9) unstable; urgency=low + + * debian/lighttpd.default - removed, it is not ready yet. We'll back after + etch release (closes: #406021) + * debian/index.html.md5 - fixed path to file (full path to index.html) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 2 Jan 2007 14:24:42 +0100 + +lighttpd (1.4.13-8) unstable; urgency=medium + + * Typo fixed in debian/lighttpd.postinst (closes: #405123) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 2 Jan 2007 13:23:25 +0100 + +lighttpd (1.4.13-7) unstable; urgency=low + + [ Franz Pletz ] + * debian/conf-available/10-cgi.conf: + + match /cgi-bin/ only at the beginning of a path + + convert match for host == localhost to remoteip == 127.0.0.1 like in + lighttpd.conf; due to bugs in mod_alias, the cgi-bin, doc and images + aliases didn't work anymore + * debian/lighttpd.logrotate + + use reload instead of force-reload for graceful restart + (closes: #398169, #380080) + * added debian/patches/01_mod_fastcgi_missing_cleanup.dpatch + + source: http://trac.lighttpd.net/trac/ticket/910 + + fixes memleak in mod_fastcgi (closes: #400167) + * added debian/patches/02_fastcgi_detach.dpatch + + disconnect stderr/stdout from the terminal (closes: #368670) + + point them either to errorlog or /dev/null + * debian/control: added myself to Uploaders + * Don't touch /var/www/index.html, create /var/www/index.lighttpd.html + instead (closes: #397492) + + debian/lighttpd.postinst: copy to /var/www/index.lighttpd.html + + debian/lighttpd.conf: add index.lighttpd.html as first index-filename + + [ Krzysztof Krzyzaniak (eloy) ] + * Typo fixed in index.html (closes: #403620) + + -- Franz Pletz <fpletz@franz-pletz.org> Fri, 8 Dec 2006 16:15:27 +0100 + +lighttpd (1.4.13-6) unstable; urgency=low + + * debian/lighttpd.postinst: change only permission for /var/log/lighttpd/ + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 4 Dec 2006 16:34:11 +0100 + +lighttpd (1.4.13-5) unstable; urgency=low + + * debian/control: + + perl added to dependencies (closes: #396629) + * debian/conf-available/10-fastcgi.conf: + + /usr/bin/php4-cgi changed to /usr/bin/php-cgi (closes: #397142) + * debian/lighttpd.postinst: fix permission of /var/log/lighttpd + (closes: #398834) + * debian/lighty-enable-mod - fixed bug with undefined values (closes: #397493) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Thu, 9 Nov 2006 12:18:25 +0100 + +lighttpd (1.4.13-4) unstable; urgency=low + + * fixed config file for logrotote (reload action changed to force-reload) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Thu, 26 Oct 2006 11:36:13 +0200 + +lighttpd (1.4.13-3) unstable; urgency=low + + * debian/control: libxml2-dev added to Build-Depends (closes: #394882) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 24 Oct 2006 13:31:27 +0200 + +lighttpd (1.4.13-2) unstable; urgency=medium + + * Patch from Pierre Habouzit <madcoder@debian.org> to init.d applied + (closes: #380080) + * Patch from Adrian Friendli <adi@koalatux.ch> to lighttpd.conf applied + (closes: #392890) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 16 Oct 2006 11:14:28 +0200 + +lighttpd (1.4.13-1) unstable; urgency=low + + * New upstream release + * mod_webdav as separate lighttpd-mod-webdav package + * Compiled with --with-webdav-locks, added uuid-dev to Build-Depends + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 10 Oct 2006 10:26:54 +0200 + +lighttpd (1.4.13~r1385-1) unstable; urgency=low + + * New upstream release + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 9 Oct 2006 10:28:32 +0200 + +lighttpd (1.4.13~r1370-1) unstable; urgency=low + + * New upstream release (closes: #390877) (closes: #389911) + * Compiled with --with-attr param (closes: #389712) + * dropped 01-lua5.1.dpatch, issue fixed by upstream + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Thu, 5 Oct 2006 10:08:19 +0200 + +lighttpd (1.4.12-1) unstable; urgency=low + + * New upstream release + * fixes in debian/lighttpd.install (closes: #377802) + * mod_cml is deprecated from now on and it will be removed in 1.5.0 + mod_magnet provides the same functionality and more with a + cleaner syntax and in a more generic form + * added separate module for mod_magnet (closes: #389578) + * changed dependency from lua-5.0 to lua-5.1 + * added patch patches/01-lua5.1.dpatch + * added pkg-config to Build-Depends + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 12 Sep 2006 19:17:41 +0200 + +lighttpd (1.4.12~20060907-1) unstable; urgency=low + + * New upstream release + * Removed debian/patches/01_use_bin_sh.dpatch - fixed in upstream + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Thu, 7 Sep 2006 14:50:47 +0200 + +lighttpd (1.4.12~20060901-1) unstable; urgency=low + + * New upstream release + * Removed debian/patches/02_ssl_fix.dpatch - it's now fixed in upstream + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 4 Sep 2006 11:07:42 +0200 + +lighttpd (1.4.11-8) UNRELEASED; urgency=low + + * debian/lighttpd.dirs: + + usr/lib/cgi-bin added + * debian/conf-available/10-cgi.conf + + proper configuration for localhost as well (again Bug#345554) + * debian/lighttpd.conf: + + server.bind commented out as in default configuration (closes: #380267) + * debian/patches/02_ssl_fix.dpatch - added fix for ssl connection with POST + request (http://trac.lighttpd.net/trac/ticket/607), thanks to + RISKO Gergely <risko@debian.org> (closes: #381455) + * debian/lighttpd.logrotate - some values changes (now rotate weekly + and keep 12 logfiles) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 28 Aug 2006 13:06:25 +0200 + +lighttpd (1.4.11-7) unstable; urgency=low + + * debian/create-mime.assign.pl - catchup error when /etc/mime.types is not + readable (closes: #375347) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 27 Jun 2006 20:19:57 +0200 + +lighttpd (1.4.11-6) unstable; urgency=low + + * debian/control: + - Recommends: Changed to alternative: php4-cgi | php5-cgi (closes: #368215) + * include-conf-enabled.pl script changed according to patch from + Tobias Gruetzmacher <tobias@portfolio16.de> (closes: #368352) + * debian/lighttpd.conf: removed global for local aliases (/images/, /doc/) + (closes: #366801) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 23 May 2006 16:48:36 +0200 + +lighttpd (1.4.11-5) unstable; urgency=low + + * debian/init.d: + - --oknodo added to section "stop" to close finally #35979 + - --retry 30 added to section "reload", to prevents problems with + logrotating (closes: #366366) + * debian/control: + Standards-Version: increased to 3.7.2 without additional changes + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Wed, 10 May 2006 14:26:04 +0200 + +lighttpd (1.4.11-4) unstable; urgency=low + + [ Krzysztof Krzyzaniak (eloy) ] + * debian/init.d: + - "exit 1" after failed actions removed (closes: #359792) + * debian/conf-available/10-fastcgi.conf updated (closes: #362827) + thanks to Joerg Rieger <a.mailinglists#lumrix.net> + + [ Torsten Marek ] + * Change my email address to shlomme@debian.org + * Remove --background from the start action, since it + breaks the error checking of start-stop-daemon. + The behaviour described in #355865 is not reproducable + any more. + * make reload action in initscript more well-behaved + + -- Torsten Marek <shlomme@debian.org> Sun, 9 Apr 2006 15:51:51 +0200 + +lighttpd (1.4.11-3) unstable; urgency=low + + * debian/lighttpd.conf - added dir-listing.encoding = "utf-8", suggested + by Silvestre Zabala <silvestre(at)zabala.name> (closes: #359100) + * debian/lighttpd.install - fix bug with installing *.conf files + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 27 Mar 2006 09:50:55 +0200 + +lighttpd (1.4.11-2) unstable; urgency=low + + * Provide debian/conf-available/10-ssl.conf, (closes: #355868) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Fri, 24 Mar 2006 13:53:54 +0100 + +lighttpd (1.4.11-1) unstable; urgency=low + + * New upstream release (closes: #356496) + * init.d script - added --background to "start" (thanks goes to + Marcello Nuccio <marcenuc@cicaia160.unimo.it>) (closes: #355865) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Fri, 10 Mar 2006 09:51:10 +0100 + +lighttpd (1.4.10-6) unstable; urgency=low + + * Patch from <tobias@portfolio16.de> on lighty-enable-mod + (closes: #355773) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Wed, 8 Mar 2006 11:17:07 +0100 + +lighttpd (1.4.10-5) unstable; urgency=low + + [ Krzysztof Krzyzaniak (eloy) ] + * debian/control - libmysqlclient14-dev have to be removede because is not + available in debian/sid + + [ Torsten Marek ] + * debian/rules - build with support for LUA, libmemcache and GDBM + * debian/lighttpd.install - install mod_evasive into lighttpd package + * debian/control - own packages for mod_trigger_b4_dl and mod_cml + * debian/control - small fixes + * debian/conf-available/10-ssi.conf - comment out link to web documentation + + -- Torsten Marek <shlomme@gmx.net> Mon, 6 Mar 2006 12:07:29 +0100 + +lighttpd (1.4.10-4) unstable; urgency=low + + * bugfix release + * Fixed bug with 10-fastcgi.conf, (closes: #353964) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Thu, 23 Feb 2006 16:14:42 +0100 + +lighttpd (1.4.10-3) unstable; urgency=low + + * lighttpd.conf - changed configuration for /images/ & /doc/ handling + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Tue, 14 Feb 2006 09:57:15 +0100 + +lighttpd (1.4.10-2) unstable; urgency=low + + * debian/control - libmysqlclient14-dev added as alternative (will be easier for + backports.org) + * lighty-enable-mod script fixed - files with dash were skipped, thanks + to Silvester Zabala for patch (closes: #352577) + * install doc/lighttpd.conf as example (closes: #344961) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 13 Feb 2006 12:58:54 +0100 + +lighttpd (1.4.10-1) unstable; urgency=low + + * New upstream release + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Wed, 8 Feb 2006 16:02:16 +0100 + +lighttpd (1.4.9-5) unstable; urgency=low + + * Properly fixed bug with overwritting index.html (closes: #349676) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 30 Jan 2006 10:17:57 +0100 + +lighttpd (1.4.9-4) unstable; urgency=low + + [ Krzysztof Krzyzaniak (eloy) ] + * Fixed bug with 10-userdir.conf, (closes: #349821) + * index.html is not replaced when md5 string desn't match (closes: #349676) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Wed, 25 Jan 2006 16:33:34 +0100 + +lighttpd (1.4.9-3) unstable; urgency=low + + [ Torsten Marek ] + * Added some configuration examples from upstream sample + configuration + * Implement "reload" init.d action with graceful restart, + taken from http://trac.lighttpd.net/trac/ticket/267 (Closes: #346038) + * ssi, auth, fastcgi, proxy and simple-vhost are now in separte + config files + * Put path to plugin documentation into every config snippet + * Build against libmysqlclient15 + + -- Torsten Marek <shlomme@gmx.net> Sat, 21 Jan 2006 15:16:01 +0100 + +lighttpd (1.4.9-2) unstable; urgency=low + + [ Krzysztof Krzyzaniak (eloy) ] + * mod_alias enabled by default - removed conf-avaiable/00-alias.conf + * Added handling of http://localhost/doc/ & http://localhost/images/ + (closes: #348823) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Thu, 19 Jan 2006 12:39:04 +0100 + +lighttpd (1.4.9-1) unstable; urgency=low + + * New upstream release + * Closing bug from not uploaded release 1.4.8-5, (closes: #347737) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 16 Jan 2006 20:06:39 +0100 + +lighttpd (1.4.8-5) unstable; urgency=low + + * create /var/www directory (closes: #347737), default /var/www/index.html + added (based on apache2 index.html file). + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Thu, 12 Jan 2006 16:54:32 +0100 + +lighttpd (1.4.8-4) unstable; urgency=low + + * fixed permissions and directories (closes: #347565) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Wed, 11 Jan 2006 17:15:12 +0100 + +lighttpd (1.4.8-3) unstable; urgency=low + + * New configuration layout (closes: #345554) (closes: #344959), + read /etc/lighttpd/conf-available/README + - conf-available directory for all templates + - conf-enabled directory for enabled modules + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Mon, 9 Jan 2006 13:49:34 +0100 + +lighttpd (1.4.8-2) unstable; urgency=low + + [ Krzysztof Krzyzaniak (eloy) ] + * debian/control: lsb-base dependency narrowed to (>= 3.0-3) + * create-mime.assign.pl set as executable (closes: #344938) + + -- Krzysztof Krzyzaniak (eloy) <eloy@debian.org> Wed, 28 Dec 2005 12:40:55 +0100 + +lighttpd (1.4.8-1) unstable; urgency=low + + * New upstream version (closes: #304271) + * Does not rely on $SHELL to execute external commands + + -- Torsten Marek <shlomme@gmx.net> Sat, 26 Nov 2005 11:48:51 +0100 + +lighttpd (1.4.7-1) unstable; urgency=low + + * New upstream version, Initial debian version + * Better debian/rules file + * Split mysql vhost module into separate package + * Create separate package for documentation + * Create a better init script + + -- Torsten Marek <shlomme@gmx.net> Sat, 5 Nov 2005 18:56:53 +0100 diff --git a/debian/compat b/debian/compat new file mode 100644 index 0000000..ec63514 --- /dev/null +++ b/debian/compat @@ -0,0 +1 @@ +9 diff --git a/debian/conf-available/05-auth.conf b/debian/conf-available/05-auth.conf new file mode 100644 index 0000000..6c14e47 --- /dev/null +++ b/debian/conf-available/05-auth.conf @@ -0,0 +1,25 @@ +# /usr/share/doc/lighttpd/authentication.txt.gz + +server.modules += ( "mod_auth" ) + +# auth.backend = "plain" +# auth.backend.plain.userfile = "lighttpd.user" +# auth.backend.plain.groupfile = "lighttpd.group" + +# auth.backend.ldap.hostname = "localhost" +# auth.backend.ldap.base-dn = "dc=my-domain,dc=com" +# auth.backend.ldap.filter = "(uid=$)" + +# auth.require = ( "/server-status" => +# ( +# "method" => "digest", +# "realm" => "download archiv", +# "require" => "group=www|user=jan|host=192.168.2.10" +# ), +# "/server-info" => +# ( +# "method" => "digest", +# "realm" => "download archiv", +# "require" => "group=www|user=jan|host=192.168.2.10" +# ) +# ) diff --git a/debian/conf-available/10-accesslog.conf b/debian/conf-available/10-accesslog.conf new file mode 100644 index 0000000..552a762 --- /dev/null +++ b/debian/conf-available/10-accesslog.conf @@ -0,0 +1,3 @@ +server.modules += ( "mod_accesslog" ) + +accesslog.filename = "/var/log/lighttpd/access.log" diff --git a/debian/conf-available/10-cgi.conf b/debian/conf-available/10-cgi.conf new file mode 100644 index 0000000..1e93a11 --- /dev/null +++ b/debian/conf-available/10-cgi.conf @@ -0,0 +1,15 @@ +# /usr/share/doc/lighttpd/cgi.txt + +server.modules += ( "mod_cgi" ) + +$HTTP["url"] =~ "^/cgi-bin/" { + cgi.assign = ( "" => "" ) +} + +## Warning this represents a security risk, as it allow to execute any file +## with a .pl/.py even outside of /usr/lib/cgi-bin. +# +#cgi.assign = ( +# ".pl" => "/usr/bin/perl", +# ".py" => "/usr/bin/python", +#) diff --git a/debian/conf-available/10-dir-listing.conf b/debian/conf-available/10-dir-listing.conf new file mode 100644 index 0000000..10e32e8 --- /dev/null +++ b/debian/conf-available/10-dir-listing.conf @@ -0,0 +1,2 @@ +dir-listing.encoding = "utf-8" +server.dir-listing = "enable" diff --git a/debian/conf-available/10-evasive.conf b/debian/conf-available/10-evasive.conf new file mode 100644 index 0000000..6c61733 --- /dev/null +++ b/debian/conf-available/10-evasive.conf @@ -0,0 +1 @@ +server.modules += ( "mod_evasive" ) diff --git a/debian/conf-available/10-evhost.conf b/debian/conf-available/10-evhost.conf new file mode 100644 index 0000000..2c33448 --- /dev/null +++ b/debian/conf-available/10-evhost.conf @@ -0,0 +1,5 @@ +# http://redmine.lighttpd.net/wiki/1/Docs:ModEVhost + +server.modules += ( "mod_evhost" ) + +evhost.path-pattern = "/srv/%_/htdocs" diff --git a/debian/conf-available/10-expire.conf b/debian/conf-available/10-expire.conf new file mode 100644 index 0000000..634236a --- /dev/null +++ b/debian/conf-available/10-expire.conf @@ -0,0 +1,3 @@ +# http://redmine.lighttpd.net/projects/lighttpd/wiki/Docs:ModExpire + +server.modules += ( "mod_expire" ) diff --git a/debian/conf-available/10-fastcgi.conf b/debian/conf-available/10-fastcgi.conf new file mode 100644 index 0000000..7862ed9 --- /dev/null +++ b/debian/conf-available/10-fastcgi.conf @@ -0,0 +1,4 @@ +# /usr/share/doc/lighttpd/fastcgi.txt.gz +# http://redmine.lighttpd.net/projects/lighttpd/wiki/Docs:ConfigurationOptions#mod_fastcgi-fastcgi + +server.modules += ( "mod_fastcgi" ) diff --git a/debian/conf-available/10-flv-streaming.conf b/debian/conf-available/10-flv-streaming.conf new file mode 100644 index 0000000..d8317c0 --- /dev/null +++ b/debian/conf-available/10-flv-streaming.conf @@ -0,0 +1 @@ +server.modules += ( "mod_flv_streaming" ) diff --git a/debian/conf-available/10-no-www.conf b/debian/conf-available/10-no-www.conf new file mode 100644 index 0000000..09b163c --- /dev/null +++ b/debian/conf-available/10-no-www.conf @@ -0,0 +1,3 @@ +$HTTP["host"] =~ "^www\.(.*)" { + url.redirect = ( "^/(.*)" => "http://%1/$1" ) +} diff --git a/debian/conf-available/10-proxy.conf b/debian/conf-available/10-proxy.conf new file mode 100644 index 0000000..1e95945 --- /dev/null +++ b/debian/conf-available/10-proxy.conf @@ -0,0 +1,25 @@ +# /usr/share/doc/lighttpd/proxy.txt + +server.modules += ( "mod_proxy" ) + +## Balance algorithm, possible values are: "hash", "round-robin" or "fair" (default) +# proxy.balance = "hash" + + +## Redirect all queries to files ending with ".php" to 192.168.0.101:80 +#proxy.server = ( ".php" => +# ( +# ( "host" => "192.168.0.101", +# "port" => 80 +# ) +# ) +# ) + +## Redirect all connections on www.example.com to 10.0.0.1{0,1,2,3} +#$HTTP["host"] == "www.example.com" { +# proxy.balance = "hash" +# proxy.server = ( "" => ( ( "host" => "10.0.0.10" ), +# ( "host" => "10.0.0.11" ), +# ( "host" => "10.0.0.12" ), +# ( "host" => "10.0.0.13" ) ) ) +#} diff --git a/debian/conf-available/10-rrdtool.conf b/debian/conf-available/10-rrdtool.conf new file mode 100644 index 0000000..0a49c98 --- /dev/null +++ b/debian/conf-available/10-rrdtool.conf @@ -0,0 +1,10 @@ +# /usr/share/doc/lighttpd/rrdtool.txt + +server.modules += ( "mod_rrdtool" ) + +## path to the rrdtool binary +rrdtool.binary = "/usr/bin/rrdtool" + +## file to store the rrd database, will be created by lighttpd +rrdtool.db-name = "/var/www/lighttpd.rrd" + diff --git a/debian/conf-available/10-simple-vhost.conf b/debian/conf-available/10-simple-vhost.conf new file mode 100644 index 0000000..7dfa1ca --- /dev/null +++ b/debian/conf-available/10-simple-vhost.conf @@ -0,0 +1,11 @@ +# /usr/share/doc/lighttpd/simple-vhost.txt + +server.modules += ( "mod_simple_vhost" ) + +## The document root of a virtual host is document-root = +## simple-vhost.server-root + $HTTP["host"] + simple-vhost.document-root +simple-vhost.server-root = "/srv" +simple-vhost.document-root = "htdocs" + +## the default host if no host is sent +simple-vhost.default-host = "www.example.com" diff --git a/debian/conf-available/10-ssi.conf b/debian/conf-available/10-ssi.conf new file mode 100644 index 0000000..55d2aba --- /dev/null +++ b/debian/conf-available/10-ssi.conf @@ -0,0 +1,5 @@ +# /usr/share/doc/lighttpd/ssi.txt + +server.modules += ( "mod_ssi" ) + +ssi.extension = ( ".shtml" ) diff --git a/debian/conf-available/10-ssl.conf b/debian/conf-available/10-ssl.conf new file mode 100644 index 0000000..6bb602a --- /dev/null +++ b/debian/conf-available/10-ssl.conf @@ -0,0 +1,9 @@ +# /usr/share/doc/lighttpd/ssl.txt + +$SERVER["socket"] == "0.0.0.0:443" { + ssl.engine = "enable" + ssl.pemfile = "/etc/lighttpd/server.pem" + + ssl.cipher-list = "ECDHE-RSA-AES256-SHA384:AES256-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH:!AESGCM" + ssl.honor-cipher-order = "enable" +} diff --git a/debian/conf-available/10-status.conf b/debian/conf-available/10-status.conf new file mode 100644 index 0000000..2859372 --- /dev/null +++ b/debian/conf-available/10-status.conf @@ -0,0 +1,15 @@ +# /usr/share/doc/lighttpd/status.txt +# http://trac.lighttpd.net/trac/wiki/Docs%3AModStatus + +server.modules += ( "mod_status" ) + +# status.status-url = "/server-status" + +# status.config-url = "/server-config" + +## relative URL for a plain-text page containing the internal statistics +# status.statistics-url = "/server-statistics" + +## add JavaScript which allows client-side sorting for the connection overview +## default: enable +# status.enable-sort = "disable" diff --git a/debian/conf-available/10-userdir.conf b/debian/conf-available/10-userdir.conf new file mode 100644 index 0000000..3507eaf --- /dev/null +++ b/debian/conf-available/10-userdir.conf @@ -0,0 +1,13 @@ +## The userdir module provides a simple way to link user-based directories into +## the global namespace of the webserver. +## +# /usr/share/doc/lighttpd/userdir.txt + +server.modules += ( "mod_userdir" ) + +## the subdirectory of a user's home dir which should be accessible +## under http://$host/~$user +userdir.path = "public_html" + +## The users whose home directories should not be accessible +userdir.exclude-user = ( "root", "postmaster" ) diff --git a/debian/conf-available/10-usertrack.conf b/debian/conf-available/10-usertrack.conf new file mode 100644 index 0000000..018b5f4 --- /dev/null +++ b/debian/conf-available/10-usertrack.conf @@ -0,0 +1 @@ +server.modules += ( "mod_usertrack" ) diff --git a/debian/conf-available/11-extforward.conf b/debian/conf-available/11-extforward.conf new file mode 100644 index 0000000..cf06e82 --- /dev/null +++ b/debian/conf-available/11-extforward.conf @@ -0,0 +1,6 @@ +# -*- depends: accesslog -*- + +server.modules += ( "mod_extforward" ) + +# extforward.headers = ("X-Cluster-Client-Ip") +# extforward.forwarder = ("10.0.0.232" => "trust") diff --git a/debian/conf-available/15-fastcgi-php.conf b/debian/conf-available/15-fastcgi-php.conf new file mode 100644 index 0000000..cea11c2 --- /dev/null +++ b/debian/conf-available/15-fastcgi-php.conf @@ -0,0 +1,20 @@ +# -*- depends: fastcgi -*- +# /usr/share/doc/lighttpd/fastcgi.txt.gz +# http://redmine.lighttpd.net/projects/lighttpd/wiki/Docs:ConfigurationOptions#mod_fastcgi-fastcgi + +## Start an FastCGI server for php (needs the php5-cgi package) +fastcgi.server += ( ".php" => + (( + "bin-path" => "/usr/bin/php-cgi", + "socket" => "/var/run/lighttpd/php.socket", + "max-procs" => 1, + "bin-environment" => ( + "PHP_FCGI_CHILDREN" => "4", + "PHP_FCGI_MAX_REQUESTS" => "10000" + ), + "bin-copy-environment" => ( + "PATH", "SHELL", "USER" + ), + "broken-scriptfilename" => "enable" + )) +) diff --git a/debian/conf-available/90-debian-doc.conf b/debian/conf-available/90-debian-doc.conf new file mode 100644 index 0000000..0eb4cc2 --- /dev/null +++ b/debian/conf-available/90-debian-doc.conf @@ -0,0 +1,15 @@ +#### handle Debian Policy Manual, Section 11.5. urls +## by default allow them only from localhost +$HTTP["remoteip"] =~ "^127\.0\.0\.1$|^::1$" { + alias.url += ( + "/cgi-bin/" => "/usr/lib/cgi-bin/", + "/doc/" => "/usr/share/doc/", + "/images/" => "/usr/share/images/" + ) + $HTTP["url"] =~ "^/doc/|^/images/" { + dir-listing.activate = "enable" + } + $HTTP["url"] =~ "^/cgi-bin/" { + cgi.assign = ( "" => "" ) + } +} diff --git a/debian/conf-available/README b/debian/conf-available/README new file mode 100644 index 0000000..08679f7 --- /dev/null +++ b/debian/conf-available/README @@ -0,0 +1,22 @@ +ligghttpd Configuration under Debian GNU/Linux +============================================== + +Files and Directories in /etc/lighttpd: +--------------------------------------- + +lighttpd.conf: + main configuration file + +conf-available/ + This directory contains a series of .conf files. These files contain + configuration directives necessary to load and run webserver modules. + If you want to create your own files they names should be + build as nn-name.conf where "nn" is two digit number (number + is used to find order for loading files) + +conf-enabled/ + To actually enable a module for lighttpd, it is necessary to create a + symlink in this directory to the .conf file in conf-available/. + +Enabling and disabling modules could be done by provided +/usr/sbin/lighty-enable-mod and /usr/sbin/lighty-disable-mod scripts. diff --git a/debian/conf-available2/10-cml.conf b/debian/conf-available2/10-cml.conf new file mode 100644 index 0000000..9ff3903 --- /dev/null +++ b/debian/conf-available2/10-cml.conf @@ -0,0 +1,21 @@ +## CML is a Meta language to describe the dependencies of a page +## at one side and building a page from its fragments on the +## other side using LUA. +## +## /usr/share/doc/lighttpd/cml.txt + +server.modules += ( "mod_cml" ) + +## the extension for file with cache information. With .cml, +## the cache info file for index.html is index.cml +cml.extension = ".cml" + +index-file.names += ( "index" + cml.extension ) + +## the memcached used by mod_cml +# cml.memcache-hosts = ( "127.0.0.1:11211" ) + +## a cml file that is executed for each request +# cml.power-magnet = "/var/www/power-magnet.cml" + + diff --git a/debian/conf-available2/10-magnet.conf b/debian/conf-available2/10-magnet.conf new file mode 100644 index 0000000..9f166c6 --- /dev/null +++ b/debian/conf-available2/10-magnet.conf @@ -0,0 +1,4 @@ +# /usr/share/doc/lighttpd/magnet.txt.gz +# http://trac.lighttpd.net/trac/wiki/Docs%3AModMagnet + +server.modules += ( "mod_magnet" ) diff --git a/debian/conf-available2/10-trigger-b4-dl.conf b/debian/conf-available2/10-trigger-b4-dl.conf new file mode 100644 index 0000000..f145ff2 --- /dev/null +++ b/debian/conf-available2/10-trigger-b4-dl.conf @@ -0,0 +1,22 @@ +## A module to prevent deep-linking from other sites. +## +# /usr/share/doc/lighttpd/trigger-b4-dl.html + +server.modules += ( "mod_trigger_b4_dl" ) + +## guarded download URL, direct access is denied +#trigger-before-download.download-url = "^/download/" + +## trigger URL to allow downloads from <download-url> +#trigger-before-download.trigger-url = "^/trigger/" + +## if access to a file is denied, the user is redirected to this URL +#trigger-before-download.deny-url = "/var/www/deny.html" + +## access to granted for <timeout> seconds after the trigger +#trigger-before-download.trigger-timeout = 10 + +## storage of trigger information. If both destinations are provided, +## the GDBM file takes precedence. +#trigger-before-download.gdbm-filename = "/var/www/data/trigger.db" +#trigger-before-download.memcache-hosts = ( "127.0.0.1:11211" ) diff --git a/debian/conf-available2/10-webdav.conf b/debian/conf-available2/10-webdav.conf new file mode 100644 index 0000000..7d4897f --- /dev/null +++ b/debian/conf-available2/10-webdav.conf @@ -0,0 +1,13 @@ +## WebDAV stands for Web-based Distributed Authoring and Versioning. +## The term also refers to the set of extensions to the HTTP protocol that +## the group defined which allows users to collaboratively edit and manage +## files on remote web servers. +## +# /usr/share/doc/lighttpd/webdav.txt +# http://trac.lighttpd.net/trac/wiki/Docs%3AModWebDAV + +server.modules += ( "mod_webdav" ) + +## The full path to the file you would like to use as your db file. This +## is required for webdav props and locks. +webdav.sqlite-db-name = "/var/run/lighttpd/lighttpd.webdav_lock.db" diff --git a/debian/control b/debian/control new file mode 100644 index 0000000..10881fe --- /dev/null +++ b/debian/control @@ -0,0 +1,105 @@ +Source: lighttpd +Section: httpd +Priority: optional +Maintainer: Debian lighttpd maintainers <pkg-lighttpd-maintainers@lists.alioth.debian.org> +Uploaders: Krzysztof Krzyżaniak (eloy) <eloy@debian.org>, + Olaf van der Spek <olafvdspek@gmail.com>, + Arno Töll <arno@debian.org> +Homepage: http://lighttpd.net/ +Build-Depends: debhelper (>= 9), mime-support, libssl-dev, + zlib1g-dev, libbz2-dev, libattr1-dev, libpcre3-dev, libmysqlclient-dev, + libfam-dev, libldap2-dev, libfcgi-dev, libgdbm-dev, libmemcache-dev, + liblua5.1-0-dev, pkg-config, uuid-dev, libsqlite3-dev, + libxml2-dev, libkrb5-dev, perl, dpkg-dev (>= 1.16.1~) +Vcs-Git: git://git.debian.org/git/pkg-lighttpd/lighttpd.git +Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-lighttpd/lighttpd.git +Standards-Version: 3.9.4 + +Package: lighttpd +Architecture: any +# Omitting this triggers a Lintian error +# That's a false positive these days +Pre-Depends: ${misc:Pre-Depends} +Depends: ${shlibs:Depends}, ${misc:Depends}, ${perl:Depends}, + lsb-base (>= 3.2-14) | systemd (>= 29.1), mime-support, + libterm-readline-perl-perl +Provides: httpd, httpd-cgi +Suggests: openssl, rrdtool, apache2-utils +Recommends: spawn-fcgi +Description: fast webserver with minimal memory footprint + lighttpd is a small webserver and fast webserver developed with + security in mind and a lot of features. + It has support for + * CGI, FastCGI and SSI + * virtual hosts + * URL rewriting + * authentication (plain files, htpasswd, LDAP) + * transparent content compression + * conditional configuration + * HTTP proxying + and configuration is straight-forward and easy. + +Package: lighttpd-doc +Architecture: all +Section: doc +Depends: ${misc:Depends} +Suggests: lighttpd +Description: documentation for lighttpd + This package contains all documentation files for lighttpd. + +Package: lighttpd-mod-mysql-vhost +Architecture: any +Depends: lighttpd (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} +Description: MySQL-based virtual host configuration for lighttpd + This package contains the myqsl_vhost module for lighttpd. With + this module, it is possible to write the configuration for virtual + hosts into a MySQL table instead of including it in the lighttpd + configuration file. + +Package: lighttpd-mod-trigger-b4-dl +Architecture: any +Depends: lighttpd (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} +Replaces: lighttpd (<< 1.4.10-5) +Recommends: memcached +Description: anti-deep-linking module for lighttpd + The trigger-b4-dl module for lighttpd can prevent deep linking + from other sites by requiring users to visit a trigger URL to + be able to download certain files. + +Package: lighttpd-mod-cml +Architecture: any +Depends: lighttpd (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} +Recommends: memcached +Description: cache meta language module for lighttpd + With the cache meta language, it is possible to describe to the + dependencies of a cached file to its source files/scripts. For the + cache files, the scripting language LUA is used. + . + THIS MODULE IS OBSOLETED AND WILL BE REMOVED IN LIGHTTPD 2.0. + USE mod_magnet INSTEAD. + +Package: lighttpd-mod-magnet +Architecture: any +Depends: lighttpd (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} +Description: control the request handling module for lighttpd + mod_magnet can attract a request in several stages in the request-handling. + either at the same level as mod_rewrite, before any parsing of the URL is done + or at a later stage, when the doc-root is known and the physical-path is + already setup + +Package: lighttpd-mod-webdav +Architecture: any +Depends: lighttpd (= ${binary:Version}), ${shlibs:Depends}, ${misc:Depends} +Description: WebDAV module for lighttpd + The WebDAV module is a very minimalistic implementation of RFC 2518. + Minimalistic means that not all operations are implemented yet. + . + Currently supports: + GET + POST + HEAD + PROPFIND + OPTIONS + MKCOL + DELETE + PUT diff --git a/debian/copyright b/debian/copyright new file mode 100644 index 0000000..1355df3 --- /dev/null +++ b/debian/copyright @@ -0,0 +1,92 @@ +This package was debianized by Vincent Wagelaar <vincent@ricardis.tudelft.nl> on +Wed, 24 Mar 2004 08:20:58 +0100. + +It was downloaded from http://www.incremental.de/products/lighttpd/download/ + +Upstream Author: Jan Kneschke <jan@kneschke.de> + +Copyright: + +Copyright (c) 2004, Jan Kneschke, incremental + All rights reserved. + +Redistribution and use in source and binary forms, with or without +modification, are permitted provided that the following conditions are met: + +- Redistributions of source code must retain the above copyright notice, this + list of conditions and the following disclaimer. + +- Redistributions in binary form must reproduce the above copyright notice, + this list of conditions and the following disclaimer in the documentation + and/or other materials provided with the distribution. + +- Neither the name of the 'incremental' nor the names of its contributors may + be used to endorse or promote products derived from this software without + specific prior written permission. + +THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" +AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE +IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE +ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE +LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR +CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF +SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS +INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN +CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) +ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF +THE POSSIBILITY OF SUCH DAMAGE. + +src/fastcgi.h +Copyright (c) 1995-1996 Open Market, Inc + +This FastCGI application library source and object code (the +"Software") and its documentation (the "Documentation") are +copyrighted by Open Market, Inc ("Open Market"). The following terms +apply to all files associated with the Software and Documentation +unless explicitly disclaimed in individual files. + +Open Market permits you to use, copy, modify, distribute, and license +this Software and the Documentation for any purpose, provided that +existing copyright notices are retained in all copies and that this +notice is included verbatim in any distributions. No written +agreement, license, or royalty fee is required for any of the +authorized uses. Modifications to this Software and Documentation may +be copyrighted by their authors and need not follow the licensing +terms described here. If modifications to this Software and +Documentation have new licensing terms, the new terms must be clearly +indicated on the first page of each file where they apply. + +OPEN MARKET MAKES NO EXPRESS OR IMPLIED WARRANTY WITH RESPECT TO THE +SOFTWARE OR THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION ANY +WARRANTY OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. IN +NO EVENT SHALL OPEN MARKET BE LIABLE TO YOU OR ANY THIRD PARTY FOR ANY +DAMAGES ARISING FROM OR RELATING TO THIS SOFTWARE OR THE +DOCUMENTATION, INCLUDING, WITHOUT LIMITATION, ANY INDIRECT, SPECIAL OR +CONSEQUENTIAL DAMAGES OR SIMILAR DAMAGES, INCLUDING LOST PROFITS OR +LOST DATA, EVEN IF OPEN MARKET HAS BEEN ADVISED OF THE POSSIBILITY OF +SUCH DAMAGES. THE SOFTWARE AND DOCUMENTATION ARE PROVIDED "AS IS". +OPEN MARKET HAS NO LIABILITY IN CONTRACT, TORT, NEGLIGENCE OR +OTHERWISE ARISING OUT OF THIS SOFTWARE OR THE DOCUMENTATION. + + +src/md5.h, src/md5.c +Copyright (c) 1991-2, RSA Data Security , Inc. + All rights reserved. + +License to copy and use this software is granted provided that it +is identified as the "RSA Data Security, Inc. MD5 Message-Digest +Algorithm" in all material mentioning or referencing this software +or this function. + +License is also granted to make and use derivative works provided +that such works are identified as "derived from the RSA Data +Security, Inc. MD5 Message-Digest Algorithm" in all material +mentioning or referencing the derived work. + +RSA Data Security, Inc. makes no representations concerning either +the merchantability of this software or the suitability of this +software for any particular purpose. It is provided "as is" +without express or implied warranty of any kind. + +These notices must be retained in any copies of any part of this +documentation and/or software. diff --git a/debian/create-mime.assign.pl b/debian/create-mime.assign.pl new file mode 100755 index 0000000..8cc2450 --- /dev/null +++ b/debian/create-mime.assign.pl @@ -0,0 +1,20 @@ +#!/usr/bin/perl -w +use strict; +open MIMETYPES, "/etc/mime.types" or exit; +print "mimetype.assign = (\n"; +my %extensions; +while(<MIMETYPES>) { + chomp; + s/\#.*//; + next if /^\w*$/; + if(/^([a-z0-9\/+-.]+)\s+((?:[a-z0-9.+-]+[ ]?)+)$/) { + foreach(split / /, $2) { + # mime.types can have same extension for different + # mime types + next if $extensions{$_}; + $extensions{$_} = 1; + print "\".$_\" => \"$1\",\n"; + } + } +} +print ")\n"; diff --git a/debian/gbp.conf b/debian/gbp.conf new file mode 100644 index 0000000..cec628c --- /dev/null +++ b/debian/gbp.conf @@ -0,0 +1,2 @@ +[DEFAULT] +pristine-tar = True diff --git a/debian/include-conf-enabled.pl b/debian/include-conf-enabled.pl new file mode 100755 index 0000000..6d6f5a1 --- /dev/null +++ b/debian/include-conf-enabled.pl @@ -0,0 +1,15 @@ +#!/usr/bin/perl -wl + +use strict; +use File::Glob ':glob'; + +my $confdir = shift || "/etc/lighttpd/"; +my $enabled = "conf-enabled/*.conf"; + +chdir($confdir); +my @files = bsd_glob($enabled); + +for my $file (@files) +{ + print "include \"$file\""; +} diff --git a/debian/index.html b/debian/index.html new file mode 100644 index 0000000..62601c4 --- /dev/null +++ b/debian/index.html @@ -0,0 +1,57 @@ +<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> +<html xmlns="http://www.w3.org/1999/xhtml"> +<head> +<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> +<title>Welcome page</title> +<style type="text/css" media="screen"> +body { background: #e7e7e7; font-family: Verdana, sans-serif; font-size: 11pt; } +#page { background: #ffffff; margin: 50px; border: 2px solid #c0c0c0; padding: 10px; } +#header { background: #4b6983; border: 2px solid #7590ae; text-align: center; padding: 10px; color: #ffffff; } +#header h1 { color: #ffffff; } +#body { padding: 10px; } +span.tt { font-family: monospace; } +span.bold { font-weight: bold; } +a:link { text-decoration: none; font-weight: bold; color: #C00; background: #ffc; } +a:visited { text-decoration: none; font-weight: bold; color: #999; background: #ffc; } +a:active { text-decoration: none; font-weight: bold; color: #F00; background: #FC0; } +a:hover { text-decoration: none; color: #C00; background: #FC0; } +</style> +</head> +<body> +<div id="page"> + <div id="header"> + <h1> Placeholder page </h1> + The owner of this web site has not put up any web pages yet. Please come back later. + </div> + <div id="body"> + <h2>You should replace this page with your own web pages as soon as possible.</h2> + Unless you changed its configuration, your new server is configured as follows: + <ul> + <li>Configuration files can be found in <span class="tt">/etc/lighttpd</span>. Please read <span class="tt">/etc/lighttpd/conf-available/README</span> file.</li> + <li>The DocumentRoot, which is the directory under which all your HTML files should exist, is set to <span class="tt">/var/www</span>.</li> + <li>CGI scripts are looked for in <span class="tt">/usr/lib/cgi-bin</span>, which is where Debian packages will place their scripts. You can enable cgi module by using command <span class="bold tt">"lighty-enable-mod cgi"</span>.</li> + <li>Log files are placed in <span class="tt">/var/log/lighttpd</span>, and will be rotated weekly. The frequency of rotation can be easily changed by editing <span class="tt">/etc/logrotate.d/lighttpd</span>.</li> + <li>The default directory index is <span class="tt">index.html</span>, meaning that requests for a directory <span class="tt">/foo/bar/</span> will give the contents of the file /var/www/foo/bar/index.html if it exists (assuming that <span class="tt">/var/www</span> is your DocumentRoot).</li> + <li>You can enable user directories by using command <span class="bold tt">"lighty-enable-mod userdir"</span></li> + </ul> + <h2>About this page</h2> + <p> + This is a placeholder page installed by the Debian release of the <a href="http://packages.debian.org/lighttpd">Lighttpd server package.</a> + </p> + <p> + This computer has installed the Debian GNU/Linux operating system, but it has nothing to do with the Debian Project. Please do not contact the Debian Project about it. + </p> + <p> + If you find a bug in this Lighttpd package, or in Lighttpd itself, please file a bug report on it. Instructions on doing this, and the list of known bugs of this package, can be found in the + <a href="http://bugs.debian.org/cgi-bin/pkgreport.cgi?pkg=lighttpd">Debian Bug Tracking System.</a> + </p> + <p> + <a href="http://validator.w3.org/check?uri=referer"><img + src="http://www.w3.org/Icons/valid-xhtml10" + alt="Valid XHTML 1.0 Transitional" height="31" width="88" border="0" /></a> + </p> + </div> +</div> +<!-- s:853e9a42efca88ae0dd1a83aeb215047 --> +</body> +</html> diff --git a/debian/lighttpd-doc.install b/debian/lighttpd-doc.install new file mode 100644 index 0000000..ef4dd5e --- /dev/null +++ b/debian/lighttpd-doc.install @@ -0,0 +1 @@ +doc/outdated/*.txt usr/share/doc/lighttpd diff --git a/debian/lighttpd-mod-cml.install b/debian/lighttpd-mod-cml.install new file mode 100644 index 0000000..1fbf921 --- /dev/null +++ b/debian/lighttpd-mod-cml.install @@ -0,0 +1,2 @@ +debian/tmp/usr/lib/lighttpd/mod_cml.so +debian/conf-available2/10-cml.conf etc/lighttpd/conf-available diff --git a/debian/lighttpd-mod-magnet.install b/debian/lighttpd-mod-magnet.install new file mode 100644 index 0000000..646bbe9 --- /dev/null +++ b/debian/lighttpd-mod-magnet.install @@ -0,0 +1,2 @@ +debian/tmp/usr/lib/lighttpd/mod_magnet.so +debian/conf-available2/10-magnet.conf etc/lighttpd/conf-available diff --git a/debian/lighttpd-mod-mysql-vhost.install b/debian/lighttpd-mod-mysql-vhost.install new file mode 100644 index 0000000..f25bddd --- /dev/null +++ b/debian/lighttpd-mod-mysql-vhost.install @@ -0,0 +1 @@ +debian/tmp/usr/lib/lighttpd/mod_mysql_vhost.so diff --git a/debian/lighttpd-mod-trigger-b4-dl.install b/debian/lighttpd-mod-trigger-b4-dl.install new file mode 100644 index 0000000..a9ad781 --- /dev/null +++ b/debian/lighttpd-mod-trigger-b4-dl.install @@ -0,0 +1,2 @@ +debian/tmp/usr/lib/lighttpd/mod_trigger_b4_dl.so +debian/conf-available2/10-trigger-b4-dl.conf etc/lighttpd/conf-available diff --git a/debian/lighttpd-mod-webdav.install b/debian/lighttpd-mod-webdav.install new file mode 100644 index 0000000..022e687 --- /dev/null +++ b/debian/lighttpd-mod-webdav.install @@ -0,0 +1,2 @@ +debian/tmp/usr/lib/lighttpd/mod_webdav.so +debian/conf-available2/10-webdav.conf /etc/lighttpd/conf-available diff --git a/debian/lighttpd.conf b/debian/lighttpd.conf new file mode 100644 index 0000000..c8f1368 --- /dev/null +++ b/debian/lighttpd.conf @@ -0,0 +1,28 @@ +server.modules = ( + "mod_access", + "mod_alias", + "mod_compress", + "mod_redirect", +# "mod_rewrite", +) + +server.document-root = "/var/www" +server.upload-dirs = ( "/var/cache/lighttpd/uploads" ) +server.errorlog = "/var/log/lighttpd/error.log" +server.pid-file = "/var/run/lighttpd.pid" +server.username = "www-data" +server.groupname = "www-data" +server.port = 80 + + +index-file.names = ( "index.php", "index.html", "index.lighttpd.html" ) +url.access-deny = ( "~", ".inc" ) +static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" ) + +compress.cache-dir = "/var/cache/lighttpd/compress/" +compress.filetype = ( "application/javascript", "text/css", "text/html", "text/plain" ) + +# default listening port for IPv6 falls back to the IPv4 port +include_shell "/usr/share/lighttpd/use-ipv6.pl " + server.port +include_shell "/usr/share/lighttpd/create-mime.assign.pl" +include_shell "/usr/share/lighttpd/include-conf-enabled.pl" diff --git a/debian/lighttpd.cron.daily b/debian/lighttpd.cron.daily new file mode 100644 index 0000000..5888e18 --- /dev/null +++ b/debian/lighttpd.cron.daily @@ -0,0 +1,10 @@ +#!/bin/sh +# Cleanup lighttpd compress cache + +cache=/var/cache/lighttpd +if test -d "$cache/compress"; then + su -s /bin/sh -c "find $cache/compress -type f -atime +30 -print0 | xargs -0 -r rm" www-data +fi +if test -d "$cache/uploads"; then + su -s /bin/sh -c "find $cache/uploads -type f -atime +1 -print0 | xargs -0 -r rm" www-data +fi diff --git a/debian/lighttpd.dirs b/debian/lighttpd.dirs new file mode 100644 index 0000000..0b92120 --- /dev/null +++ b/debian/lighttpd.dirs @@ -0,0 +1,8 @@ +etc/lighttpd/conf-available +etc/lighttpd/conf-enabled +usr/lib/cgi-bin +usr/sbin +var/cache/lighttpd/compress +var/cache/lighttpd/uploads +var/log/lighttpd +var/www diff --git a/debian/lighttpd.docs b/debian/lighttpd.docs new file mode 100644 index 0000000..50bd824 --- /dev/null +++ b/debian/lighttpd.docs @@ -0,0 +1,2 @@ +NEWS +README diff --git a/debian/lighttpd.init b/debian/lighttpd.init new file mode 100644 index 0000000..ef62e1f --- /dev/null +++ b/debian/lighttpd.init @@ -0,0 +1,110 @@ +#!/bin/sh +### BEGIN INIT INFO +# Provides: lighttpd +# Required-Start: $syslog $remote_fs $network +# Required-Stop: $syslog $remote_fs $network +# Should-Start: fam +# Should-Stop: fam +# Default-Start: 2 3 4 5 +# Default-Stop: 0 1 6 +# Short-Description: Start the lighttpd web server. +# Description: Fast and smalle webserver with minimal memory footprint +# developed with security in mind HTTP/1.1 compliant caching +# proxy server. +### END INIT INFO + + +PATH=/sbin:/bin:/usr/sbin:/usr/bin +DAEMON=/usr/sbin/lighttpd +NAME=lighttpd +DESC="web server" +PIDFILE=/var/run/$NAME.pid +SCRIPTNAME=/etc/init.d/$NAME + +DAEMON_OPTS="-f /etc/lighttpd/lighttpd.conf" + +test -x $DAEMON || exit 0 + +set -e + +check_syntax() +{ + $DAEMON -t $DAEMON_OPTS > /dev/null || exit $? +} + +if [ "$1" != status ]; then + # be sure there is a /var/run/lighttpd, even with tmpfs + # The directory is defined as volatile and may thus be non-existing + # after a boot (DPM §9.3.2) + if ! dpkg-statoverride --list /var/run/lighttpd >/dev/null 2>&1; then + install -d -o www-data -g www-data -m 0750 "/var/run/lighttpd" + fi +fi + +. /lib/lsb/init-functions + +case "$1" in + start) + check_syntax + log_daemon_msg "Starting $DESC" $NAME + if ! start-stop-daemon --start --oknodo --quiet \ + --pidfile $PIDFILE --exec $DAEMON -- $DAEMON_OPTS + then + log_end_msg 1 + else + log_end_msg 0 + fi + ;; + stop) + log_daemon_msg "Stopping $DESC" $NAME + if start-stop-daemon --stop --retry 30 --oknodo --quiet \ + --pidfile $PIDFILE --exec $DAEMON + then + rm -f $PIDFILE + log_end_msg 0 + else + log_end_msg 1 + fi + ;; + reload|force-reload) + check_syntax + log_daemon_msg "Reloading $DESC configuration" $NAME + if start-stop-daemon --stop --signal INT --quiet \ + --pidfile $PIDFILE --exec $DAEMON + then + rm $PIDFILE + if start-stop-daemon --start --quiet \ + --pidfile $PIDFILE --exec $DAEMON -- $DAEMON_OPTS ; then + log_end_msg 0 + else + log_end_msg 1 + fi + else + log_end_msg 1 + fi + ;; + reopen-logs) + log_daemon_msg "Reopening $DESC logs" $NAME + if start-stop-daemon --stop --signal HUP --oknodo --quiet \ + --pidfile $PIDFILE --exec $DAEMON + then + log_end_msg 0 + else + log_end_msg 1 + fi + ;; + restart) + check_syntax + $0 stop + $0 start + ;; + status) + status_of_proc -p "$PIDFILE" "$DAEMON" lighttpd && exit 0 || exit $? + ;; + *) + echo "Usage: $SCRIPTNAME {start|stop|restart|reload|force-reload|status}" >&2 + exit 1 + ;; +esac + +exit 0 diff --git a/debian/lighttpd.install b/debian/lighttpd.install new file mode 100644 index 0000000..b605d6b --- /dev/null +++ b/debian/lighttpd.install @@ -0,0 +1,38 @@ +debian/tmp/usr/sbin/* +debian/tmp/usr/share/man/* +debian/tmp/usr/lib/lighttpd/mod_access.so +debian/tmp/usr/lib/lighttpd/mod_accesslog.so +debian/tmp/usr/lib/lighttpd/mod_alias.so +debian/tmp/usr/lib/lighttpd/mod_auth.so +debian/tmp/usr/lib/lighttpd/mod_cgi.so +debian/tmp/usr/lib/lighttpd/mod_compress.so +debian/tmp/usr/lib/lighttpd/mod_dirlisting.so +debian/tmp/usr/lib/lighttpd/mod_evasive.so +debian/tmp/usr/lib/lighttpd/mod_evhost.so +debian/tmp/usr/lib/lighttpd/mod_expire.so +debian/tmp/usr/lib/lighttpd/mod_extforward.so +debian/tmp/usr/lib/lighttpd/mod_fastcgi.so +debian/tmp/usr/lib/lighttpd/mod_flv_streaming.so +debian/tmp/usr/lib/lighttpd/mod_indexfile.so +debian/tmp/usr/lib/lighttpd/mod_proxy.so +debian/tmp/usr/lib/lighttpd/mod_redirect.so +debian/tmp/usr/lib/lighttpd/mod_rewrite.so +debian/tmp/usr/lib/lighttpd/mod_rrdtool.so +debian/tmp/usr/lib/lighttpd/mod_scgi.so +debian/tmp/usr/lib/lighttpd/mod_secdownload.so +debian/tmp/usr/lib/lighttpd/mod_setenv.so +debian/tmp/usr/lib/lighttpd/mod_simple_vhost.so +debian/tmp/usr/lib/lighttpd/mod_ssi.so +debian/tmp/usr/lib/lighttpd/mod_staticfile.so +debian/tmp/usr/lib/lighttpd/mod_status.so +debian/tmp/usr/lib/lighttpd/mod_userdir.so +debian/tmp/usr/lib/lighttpd/mod_usertrack.so +debian/lighttpd.conf /etc/lighttpd +debian/conf-available/* /etc/lighttpd/conf-available +debian/create-mime.assign.pl /usr/share/lighttpd/ +debian/include-conf-enabled.pl /usr/share/lighttpd/ +debian/use-ipv6.pl /usr/share/lighttpd/ +debian/lighty-enable-mod /usr/sbin/ +debian/index.html /usr/share/lighttpd/ +debian/lighttpd.service /lib/systemd/system/ +debian/lighttpd.tmpfile.conf /usr/lib/tmpfiles.d/ diff --git a/debian/lighttpd.links b/debian/lighttpd.links new file mode 100644 index 0000000..531b3dd --- /dev/null +++ b/debian/lighttpd.links @@ -0,0 +1,6 @@ +usr/sbin/lighty-enable-mod usr/sbin/lighty-disable-mod +usr/sbin/lighty-enable-mod usr/sbin/lighttpd-enable-mod +usr/sbin/lighty-enable-mod usr/sbin/lighttpd-disable-mod +usr/share/man/man1/lighty-enable-mod.1.gz usr/share/man/man1/lighty-disable-mod.1.gz +usr/share/man/man1/lighty-enable-mod.1.gz usr/share/man/man1/lighttpd-disable-mod.1.gz +usr/share/man/man1/lighty-enable-mod.1.gz usr/share/man/man1/lighttpd-enable-mod.1.gz diff --git a/debian/lighttpd.lintian-overrides b/debian/lighttpd.lintian-overrides new file mode 100644 index 0000000..03ab60a --- /dev/null +++ b/debian/lighttpd.lintian-overrides @@ -0,0 +1,5 @@ +# Policy says in §10.9: "Directories should be mode 755 or (for +# group-writability) mode 2775." This is not preferred for sensible information +# like log files which may disclose error messages or session URLs. Therefore we +# consider Lintian being wrong here and an override to be appropriate. +non-standard-dir-perm var/log/lighttpd/ 0750 != 0755 diff --git a/debian/lighttpd.logrotate b/debian/lighttpd.logrotate new file mode 100644 index 0000000..4971adb --- /dev/null +++ b/debian/lighttpd.logrotate @@ -0,0 +1,16 @@ +/var/log/lighttpd/*.log { + weekly + missingok + rotate 12 + compress + delaycompress + notifempty + sharedscripts + postrotate + if [ -x /usr/sbin/invoke-rc.d ]; then \ + invoke-rc.d lighttpd reopen-logs > /dev/null 2>&1; \ + else \ + /etc/init.d/lighttpd reopen-logs > /dev/null 2>&1; \ + fi; \ + endscript +} diff --git a/debian/lighttpd.maintscript b/debian/lighttpd.maintscript new file mode 100644 index 0000000..c51f4a4 --- /dev/null +++ b/debian/lighttpd.maintscript @@ -0,0 +1 @@ +rm_conffile /etc/lighttpd/conf-available/10-access.conf 1.4.31-4 lighttpd diff --git a/debian/lighttpd.manpages b/debian/lighttpd.manpages new file mode 100644 index 0000000..e2de512 --- /dev/null +++ b/debian/lighttpd.manpages @@ -0,0 +1,2 @@ +debian/lighty-enable-mod.1 + diff --git a/debian/lighttpd.postinst b/debian/lighttpd.postinst new file mode 100644 index 0000000..6bfed29 --- /dev/null +++ b/debian/lighttpd.postinst @@ -0,0 +1,31 @@ +#! /bin/sh -e +# postinst script for lighttpd + +set -e + +if [ "$1" = "configure" ]; then + if [ ! -r /var/www/index.lighttpd.html ]; + then + cp /usr/share/lighttpd/index.html /var/www/index.lighttpd.html + fi + + # Remove a possibly dangling symlink for the obsolete conffile + if dpkg --compare-versions "$2" lt-nl "1.4.32-1" && \ + [ -L /etc/lighttpd/conf-enabled/10-access.conf -a \ + ! -f /etc/lighttpd/conf-available/10-access.conf ]; then + rm -f /etc/lighttpd/conf-enabled/10-access.conf + fi + +fi + +# dh_installinit will call this function upon failure of rc.d invocation +# Fixes: #383425 +start_failed() +{ + echo "Failed to start Lighttpd. Maybe another webserver is already listening on port 80?" + exit 0 +} + +#DEBHELPER# + +exit 0 diff --git a/debian/lighttpd.postrm b/debian/lighttpd.postrm new file mode 100644 index 0000000..2c2d676 --- /dev/null +++ b/debian/lighttpd.postrm @@ -0,0 +1,24 @@ +#!/bin/sh -e +# postrm script for lighttpd + +set -e + +if [ "$1" = "purge" ]; then + rm -rf /var/log/lighttpd /var/run/lighttpd /var/cache/lighttpd + + + if [ -d /etc/lighttpd/conf-enabled/ ] ; then + # The loop below fixes #642494 (mostly) + for link in /etc/lighttpd/conf-enabled/*.conf ; do + target=$(readlink "$link") || true + if [ -n "$target" ] && [ ! -e "/etc/lighttpd/conf-enabled/$target" ] ; then + echo "removing dangling symlink $link ..." + rm -f $link + fi + done + fi +fi + +#DEBHELPER# + +exit 0 diff --git a/debian/lighttpd.preinst b/debian/lighttpd.preinst new file mode 100644 index 0000000..8d0580f --- /dev/null +++ b/debian/lighttpd.preinst @@ -0,0 +1,47 @@ +#!/bin/sh +# preinst script for lighttpd + + +set -e + +# summary of how this script can be called: +# * <new-preinst> `install' +# * <new-preinst> `install' <old-version> +# * <new-preinst> `upgrade' <old-version> +# * <old-preinst> `abort-upgrade' <new-version> +# for details, see http://www.debian.org/doc/debian-policy/ or +# the debian-policy package + + +case "$1" in + install) + ;; + + upgrade) + + if [ "x$2" != "x" ]; then + # We upgrade from Squeeze or older, remove alternative as spawn-fcgi is not provided anymore. + # This should have been done since 1.4.26-1 but was accidentally forgotten + if dpkg --compare-versions "$2" lt 1.4.28-4 + then + update-alternatives --remove spawn-fcgi /usr/bin/spawn-fcgi.lighttpd || true + update-alternatives --remove spawn-fcgi.1.gz /usr/share/man/man1/spawn-fcgi.lighttpd.1.gz || true + fi + + fi + ;; + + abort-upgrade) + ;; + + *) + echo "preinst called with unknown argument \`$1'" >&2 + exit 1 + ;; +esac + +#DEBHELPER# + +exit 0 + + diff --git a/debian/lighttpd.service b/debian/lighttpd.service new file mode 100644 index 0000000..7f4a611 --- /dev/null +++ b/debian/lighttpd.service @@ -0,0 +1,10 @@ +[Unit] +Description=Lighttpd Daemon +After=network.target + +[Service] +ExecStartPre=/usr/sbin/lighttpd -t -f /etc/lighttpd/lighttpd.conf +ExecStart=/usr/sbin/lighttpd -D -f /etc/lighttpd/lighttpd.conf + +[Install] +WantedBy=multi-user.target diff --git a/debian/lighttpd.tmpfile.conf b/debian/lighttpd.tmpfile.conf new file mode 100644 index 0000000..44f81a9 --- /dev/null +++ b/debian/lighttpd.tmpfile.conf @@ -0,0 +1 @@ +d /var/run/lighttpd 0750 www-data www-data - diff --git a/debian/lighty-enable-mod b/debian/lighty-enable-mod new file mode 100755 index 0000000..9765f2b --- /dev/null +++ b/debian/lighty-enable-mod @@ -0,0 +1,181 @@ +#!/usr/bin/perl -w +# +# Copyright (c) 2006 Krzysztof Krzyzaniak +# +# Contains changes from: +# - Tobias Gruetzmacher <tobias@portfolio16.de> +# - Arno Toell <debian@toell.net> +# +# You may distribute under the terms of either the GNU General Public +# License[1] or the Artistic License[2]. +# +# [1] http://www.gnu.org/licenses/gpl.html +# [2] http://www.perl.com/pub/a/language/misc/Artistic.html +# + +use strict; +use Term::ReadLine; +use File::Basename; +use File::Glob ':glob'; +use File::stat; + +#--- some initializations +my $confdir = "/etc/lighttpd/"; +my %available = (); +my %enabled = (); +my @todo = (); +my $enabling = 1; + +#--- some defaults +use constant { + EXIT_OK => 0, + EXIT_FAILURE => 1, + EXIT_NO_ACTION => 2 +}; + +#--- first check if we enabling or disabling +if ($0 =~ /disable-mod$/) { + #--- disabling mode + $enabling = 0; +} + + +sub mydie { + my $reason = shift; + print($reason); + exit(EXIT_FAILURE); +} + +#--- list of available modules +my @files = bsd_glob($confdir.'conf-available/*.conf'); +foreach my $file (@files) { + if (basename($file) =~ /^\d+\-([\w\-\.]+)\.conf$/) { + $available{$1} = $file; + } +} + +#--- list of already enabled modules +@files = bsd_glob($confdir.'conf-enabled/*.conf'); +foreach my $file (@files) { + if (basename($file) =~ /^\d+\-([\w\-\.]+)\.conf$/) { + $enabled{$1} = $file; + } +} + +unless (defined($ARGV[0])) { + print "Disabled modules: "; + foreach (sort(keys %available)) { + if (!defined($enabled{$_})) { + print qq{$_ }; + } + } + print "\n"; + print "Enabled modules: "; + foreach (sort(keys %enabled)) { + print qq{$_ }; + } + print "\n"; + my $prompt = $enabling ? 'Enable module: ' : 'Disable module: '; + my $term = new Term::ReadLine $prompt; + my $OUT = $term->OUT || \*STDOUT; + my $var = lc($term->readline($prompt)); + @todo = split(/ /, $var); +} +else { + @todo = @ARGV; +} + +my $exit_status = EXIT_OK; +#--- activate (link) or deactivate (remove) module +foreach my $do (@todo) { + + if (! exists($available{$do})) { + print("Ignoring unknown module: $do\n"); + $exit_status = EXIT_NO_ACTION; + next; + } + + if ($enabling) { + next unless defined($available{$do}); + my $target = sprintf("%s/conf-enabled/%s", $confdir,basename($available{$do})); + my $source = $available{$do}; + + my $st = stat($target); + unless ( -f $target ) { + # scan for a dependency line + local *MOD; + open(MOD, "< $source") || mydie("can't read $source: $!"); + while(my $i = <MOD>) { + if ($i =~ m/# -\*- depends: ([-\w, ]+) -\*-/) { + my @matches = split(/,\s+/, $1); + for my $module (@matches) { + if (exists $available{$module} and ! exists $enabled{$module}) { + print("Met dependency: $module\n"); + push(@todo, $module); + } + elsif (exists $available{$module} and exists $enabled{$module}) { + # Do nothing + } + else + { + mydie("Unresolved dependency: $module\n"); + } + } + last; + } + } + close(MOD); + if (symlink("../conf-available/" . basename($available{$do}), $target)) { + print "Enabling $do: ok\n"; + } + else { + print "failure: $!\n"; + $exit_status = EXIT_FAILURE; + } + } + else { + print "already enabled\n"; + # Set exit status only, if no more severe problem + # occured so far + $exit_status = EXIT_NO_ACTION if $exit_status != EXIT_FAILURE; + } + + } + else { + if (defined($enabled{$do})) { + print qq{Disabling $do\n}; + my $target = sprintf("%s/conf-enabled/%s", $confdir,basename($enabled{$do})); + my $source = $available{$do}; + + # scan for a reverse dependency line + foreach my $available_module (keys %available) { + if ($available_module eq $do) { + next; + } + local *MOD; + open(MOD, "< $available{$available_module}") || mydie("can't read $available{$available_module}: $!"); + while(my $i = <MOD>) { + if ($i =~ m/# -\*- depends: ([-\w, ]+) -\*-/) { + my @matches = split(/,\s+/, $1); + for my $module (@matches) { + if ($module eq $do && exists $enabled{$available_module}) { + print("Reverse dependency met: Disabling $available_module too\n"); + push(@todo, $available_module); + } + } + last; + } + } + } + close(MOD); + + unlink($target); + } else { + print qq{Already disabled $do\n}; + $exit_status = EXIT_NO_ACTION if $exit_status != EXIT_FAILURE; + } + } +} + +print "Run /etc/init.d/lighttpd force-reload to enable changes\n"; +exit($exit_status); diff --git a/debian/lighty-enable-mod.1 b/debian/lighty-enable-mod.1 new file mode 100644 index 0000000..246c9d6 --- /dev/null +++ b/debian/lighty-enable-mod.1 @@ -0,0 +1,66 @@ +.TH LIGHTYENABLEMOD 1 2006-01-11 +.SH NAME +lighty-enable-mod, lighty-disable-mod \- enable or disable configuration in lighttpd server +.SH SYNOPSIS +lighty-enable-mod [module] +.br +lighty-disable-mod [module] +.SH DESCRIPTION +This manual page documents briefly the lighty-enable-mod and +lighty-disable-mod commands. + +lighty-enable-mod and lighty-disable-mod are programs that enable +(and respectively disable) the specified configuration file within +lighttpd configuration. + +Both programs can be run interactively or from command +line. If either program is called without any arguments, an input +prompt is displayed to the user, where he might choose among available +.I "lighttpd" +modules. Immediate action is taken, if a module name was given on the +command line. + +.SS EXIT STATUS + +Both programs indicate failure in their exit status. lighty-enable-mod or +lighty-disable-mod respectively may leave execution with one of the following +exit codes: +.br +.TP 5 +.B "0" +denotes success +.TP 5 +.B "1" +denotes a fatal error (e.g., a module could not be enabled, or a dependency was not found) +.TP 5 +.B "2" +denotes a minor flaw (e.g., a module was not enabled because it was already loaded before) + +.TP 0 +.B Note +You can (un-) load several modules at time. The exit status will only reflect the most serious issue (where a minor flaw beats no error, but a fatal error beats a minor flaw). This means, if a minor flaw was encountered as well as a fatal error, the program will leave with exit status 1 and stop immediately. + +.SH DEPENDENCIES +Debian allows +.I "lighttpd" +modules to formulate dependencies to other modules they depend on. Configuration +files are scanned for dependencies upon load or +unload of modules, not at runtime of the web server. Such a magic line has the following format: +.nf + + # -*- depends: module[, module] -*- + +.fi + +and may appear anywhere in the file. If such a line is found, the extracted name +is interpreted as dependency to another +.I "lighttpd" +module. lighty-enable-mod will seek available configurations to satisfy this +dependency and will recursively enable all dependencies found on its way. +lighty-disable-mod will disable reverse dependencies recursively. + +.SH SEE ALSO +lighttpd(1) +.SH AUTHOR +Program and man pages were originally written by Krzysztof Krzyżaniak +<eloy@debian.org> and later modified by Arno Töll <debian@toell.net> diff --git a/debian/patches/series b/debian/patches/series new file mode 100644 index 0000000..e69de29 --- /dev/null +++ b/debian/patches/series diff --git a/debian/rules b/debian/rules new file mode 100755 index 0000000..43c6e03 --- /dev/null +++ b/debian/rules @@ -0,0 +1,32 @@ +#!/usr/bin/make -f + +%: + dh $@ + +override_dh_auto_configure: + dh_auto_configure -- \ + --disable-dependency-tracking \ + --libdir=/usr/lib/lighttpd \ + --libexecdir="/usr/lib/lighttpd" \ + --with-attr \ + --with-fam \ + --with-gdbm \ + --with-kerberos5 \ + --with-ldap \ + --with-lua=lua5.1 \ + --with-memcache \ + --with-mysql \ + --with-openssl \ + --with-pcre \ + --with-webdav-locks \ + --with-webdav-props \ + $(shell dpkg-buildflags --export=configure) + +override_dh_fixperms: + dh_fixperms + chmod 0750 debian/lighttpd/var/log/lighttpd + chown www-data:www-data debian/lighttpd/var/cache/lighttpd/compress debian/lighttpd/var/cache/lighttpd/uploads + chown www-data:www-data debian/lighttpd/var/log/lighttpd + +override_dh_installinit: + dh_installinit --error-handler=start_failed diff --git a/debian/source/format b/debian/source/format new file mode 100644 index 0000000..163aaf8 --- /dev/null +++ b/debian/source/format @@ -0,0 +1 @@ +3.0 (quilt) diff --git a/debian/source/options b/debian/source/options new file mode 100644 index 0000000..a708620 --- /dev/null +++ b/debian/source/options @@ -0,0 +1 @@ +--extend-diff-ignore='src/mod_ssi_exprparser.c|src/configparser.c' diff --git a/debian/use-ipv6.pl b/debian/use-ipv6.pl new file mode 100755 index 0000000..3de5212 --- /dev/null +++ b/debian/use-ipv6.pl @@ -0,0 +1,12 @@ +#! /usr/bin/perl -w + +use Socket; +use strict; + +my $sock; +my $PORT = 80; +$PORT = $ARGV[0] if $ARGV[0] and $ARGV[0] >= 0 and $ARGV[0] <= 65535; + +if (socket($sock, AF_INET6, SOCK_STREAM, 0)) { + print qq/\$SERVER["socket"] == "[::]:$PORT" { }\n/; +} diff --git a/debian/watch b/debian/watch new file mode 100644 index 0000000..7b5b10d --- /dev/null +++ b/debian/watch @@ -0,0 +1,3 @@ +version=3 +http://download.lighttpd.net/lighttpd/releases-1.4.x/ lighttpd-(.*)\.tar\.gz + |