lighttpd 1.4.30_1 www =61

A secure, fast, compliant, and very flexible Web Server
Maintained by: mm@FreeBSD.org
Port Added: 03 Jun 2004 17:58:51
License: BSD

lighttpd a secure, fast, compliant and very flexible web-server which
has been optimized for high-performance environments. It has a very
low memory footprint compared to other webservers and takes care of
cpu-load. Its advanced feature-set (FastCGI, CGI, Auth, Output-Compression,
URL-Rewriting and many more) make lighttpd the perfect webserver-software
for every server that is suffering load problems.

WWW: http://www.lighttpd.net/

CVSWeb : Sources : Main Web Site : Distfiles Availability : PortsMon

---

Slave ports

www/lighttpd-mod_geoip

www/lighttpd-mod_h264_streaming

---

NOTE: FreshPorts displays only required dependencies information. Optional dependencies are not covered.
Required To Build: devel/pkg-config, devel/gmake, devel/automake, devel/autoconf, devel/libtool
Required Libraries: devel/pcre
There are no ports dependent upon this port

---

To install the port: cd /usr/ports/www/lighttpd/ && make install clean
To add the package: pkg_add -r lighttpd

---

Configuration Options

===> The following configuration options are available for lighttpd-1.4.30_1:
     BZIP2=off (default) "Enable Bzip2 support"
     CML=off (default) "Enable Cache Meta Language support"
     FAM=off (default) "Enable fam/gamin support"
     GDBM=off (default) "Enable gdbm storage support"
     IPV6=on (default) "Enable IPV6 support"
     LIBEV=off (default) "Enable libev support"
     MAGNET=off (default) "Enable magnet support"
     MEMCACHE=off (default) "Enable memory caching support"
     MYSQL=off (default) "Enable MYSQL support"
     MYSQLAUTH=off (default) "Enable mysql auth (requires WITH_MYSQL)"
     NODELAY=off (default) "Set TCP_NODELAY on listening sockets"
     OPENLDAP=off (default) "Enable LDAP support"
     OPENSSL=on (default) "Enable SSL support"
     SPAWNFCGI=off (default) "Depend on spawn-fcgi utility"
     VALGRIND=off (default) "Enable valgrind support"
     WEBDAV=off (default) "Enable WebDAV support"
===> Use 'make config' to modify these settings

---

Master Sites:

http://download.lighttpd.net/lighttpd/releases-1.4.x/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

• 2010-08-18

  Affects: users of www/lighttpd

  Author: mm@FreeBSD.org

  Reason: 
    The default lighttpd configuration file locations have changed.
    The main configuration file is now: $PREFIX/etc/lighttpd/lighttpd.conf
    and includes other configuration files from $PREFIX/etc/lighttpd/
  
    For compatibility with old-style configurations, if the lighttpd_conf
    variable is not set in /etc/rc.conf, $PREFIX/etc/lighttpd.conf takes
    precedence over $PREFIX/etc/lighttpd/lighttpd.conf
  
  



• 2010-08-17

  Affects: users of www/lighttpd

  Author: mm@FreeBSD.org

  Reason: 
    The modules mod_geoip and mod_h264_streaming have been moved into slave
    ports: www/lighttpd-mod_geoip and www/lighttpd-mod_h264_streaming
  
  

• port moved here from www/lighttpd-mysqlauth on 2010-08-28
  REASON: Integrated into www/lighttpd
  

In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.

Switch to GNU make and mark port MAKE_JOBS_SAFE

PR:             ports/158715
Submitted by:   mandree@FreeBSD.org

Add patch to fix vendor issue 2377 (SSL renegotiations) [1]
Add patch to correctly report supported network handlers (lighttpd -V) [2]

References:
http://redmine.lighttpd.net/issues/2377 [1]

Reported by:    Christos Chatzaras <chris_at_cretaforce_dot_gr> [1] [2]
Obtained from:  lighttpd svn rev. 2822 [1]

Update to 1.4.30
Unbreak build if using libev

- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav

- Chase libev shlib bump

Pointy hat to:  vsevolod

Fix extra-patch-mysqlauth

PR:             ports/160671
Submitted by:   Zhihao Yuan <lichray@gmail.com>

- Track dependencies after databases/gdbm update

Add patches from upstream (svn revisions):
 - r2799: Always use our 'own' md5 implementation (fixes #2331)
 - r2800: fix some gcc warnings
 - r2801: Limit amount of bytes we send in one go; fixes stalling in one
          connection and timeouts on slow systems.
 - r2802: [ssl] fix build errors when Elliptic-Curve Diffie-Hellman
          is disabled
 - r2803: Add static-file.disable-pathinfo option to prevent handling
          of urls like .../secret.php/image.jpg as static file
 - r2804: Don't overwrite 401 (auth required) with 501 (unknown method)
          (fixes #2341)

Add test and regression-test targets.

Update to 1.4.29

PR:             ports/158618
Submitted by:   Zhihao Yuan <lichray@gmail.com>

- Rename CONF_FILES to avoid conflict with incoming feature [1]
- Rename CONFD_FILES to match changed naming
- Fix IGNORE message

PR:             ports/157163 [1]
Submitted by:   Chris Rees <utisoft@gmail.com> [1]

Remove painful examples of foo="", with particular prejudice against
constructions that parse out to [ -z "$foo" ] && foo=""

These are bad examples that get copied and pasted into new code, so the
hope is that with less bad examples there will be less need for me to
bring this up in review.

In a few of these files all that were changed were comments so that next
time I search for these patterns I won't trip on the file for no reason.

In a few places, add $FreeBSD$

No functional changes, so no PORTREVISION bumps

- Add LICENSE knobs
- Bundle license for mod_h264_streaming

- Get Rid MD5 support

Sync to new bsd.autotools.mk

Punt autoconf267->autoconf268

- Use autotools only if building lighttpd modules

Round one migration of ports from automake{19,110} to automake111

Autotools update.   Read ports/UPDATING 20100915 for details.

Approved by:    portmgr (for Mk/bsd.port.mk part)
Tested by:      Multiple -exp runs

- Add multiple instances ability to rc script

- Integrate www/lighttpd-mysqlauth into www/lighttpd (optional)

- Use autoconf and automake on build time (avoid re-run of configure)
- Remove AUTOTOOLS knobs from slave ports

- Add missing pkg-plist update

Reported by:    QAT

- Fix typo in slave module descriptions

- Fix slave module descriptions

- Move lighttpd mod_geoip and mod_h264_streaming into slave ports

- Update to 1.4.28
- remove fdevent patch (already included)

- Update lighttpd configuration file layout
- Do configuration sanity checks before restarting gracefully

- Add bugfix for lighttpd issue #2249

- Update to 1.4.27
- Add fdevent kqueue patch from upstream (SVN revision 2764)
- Add libev support (optional)
- Do not depend on spawn-fcgi by default
- Add IPv4 and IPv6 sockets to configuration example

Fix stalls while reading from ssl sockets [1]
Fix reload signal in rc script [2]
Fix use of IPv6 adresses in mod_extforward [3]
Add optional support for mod_geoip [4]
Move pkg-config to BUILD_DEPENDS

References:
http://redmine.lighttpd.net/issues/2197 [1]
http://redmine.lighttpd.net/issues/1889 [3]
http://redmine.lighttpd.net/wiki/1/Docs:ModGeoip [4]

PR:     ports/145749 [1], ports/148869 [2], ports/144110 [3], ports/137664 [4]

Over to new volunteer.

Approved by:    old maintainer

- Fix SSL related error, lighttpd bug #2157
- Bump PORTREVISION

PR:             ports/147187
Submitted by:   Hartmann, "O." <ohartman@mail.zedat.fu-berlin.de>
Approved by:    mnag (maintainer)
Obtained from:  http://redmine.lighttpd.net/issues/2157

- Add basic docs to portdocs
- Add optional mod_h264_streaming

PR:             ports/147439
Approved by:    maintainer (timeout)

- Add optional TCP_NODELAY patch

PR:             ports/145985
Approved by:    maintainer (timeout)

Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#

Security update to 1.4.26.

PR:             143980
Submitted by:   john <smallpox gmail com>
Security:       vuln 1a3bd81f-1b25-11df-bd1a-002170daae37
With hat:       secteam
Feature safe:   yes

Update to 1.4.25

PR:             ports/141027
Submitted by:   Ralf van der Enden <tremere@cainites.net>
Approved by:    mnag (maintainer)

Update to 1.4.24

PR:             ports/140316
Approved by:    maintainer by email

-Repocopy devel/libtool15 -> libtool22 and libltdl15 -> libltdl22.
-Update libtool and libltdl to 2.2.6a.
-Remove devel/libtool15 and devel/libltdl15.
-Fix ports build with libtool22/libltdl22.
-Bump ports that depend on libltdl22 due to shared library version change.
-Explain what to do update in the UPDATING.

It has been tested with GNOME2, XFCE4, KDE3, KDE4 and other many wm/desktop
and applications in the runtime.

With help:      marcus and kwm
Pointyhat-exp:  a few times by pav
Tested by:      pgollucci, "Romain Tartière" <romain@blogreen.org>, and
                a few MarcusCom CVS users. Also, I might have missed a few.
Repocopy by:    marcus
Approved by:    portmgr

- Upgrade fix.

PR:             136125
Submitted by:   Martin Matuska <mm___FreeBSD.org>

- Update to 1.4.23

PR:             136026
Submitted by:   Martin Matuska <mm___FreeBSD.org>

- Workaround for a problem when access one symbolic link and end with /.
- Bump PORTREVISION.

Take from:      http://redmine.lighttpd.net/issues/1989

- Modify lighttpd to use www/spawn-fcgi port.
- Bump PORTREVISION

PR:             133707
Submitted by:   Aragon Gouveia <aragon___phat.za.net>

- Update to 1.4.22

PR:             132395
Submitted by:   Daniel Gerzo <danger___freebsd.org>

- Backport EPIPE case in sendfile backend. [1]
- portlint(1)
- Bump PORTREVISION

Reported by:    Jeroen Ruigrok van der Werven <asmodai__in-nomine.org> [1]

- Backport r2403 to fix sendfile backend.
- Bump PORTREVISION

Notified by:    Albert Vernon <aev__vernon.nu>

- update to 1.4.21

Changelog can be found at:
http://www.lighttpd.net/2009/2/16/1-4-21-yes-we-can-do-another-release

PR:             ports/131755
Reviewed by:    miwi
Approved by:    portmgr (linimon)

- Update to 1.4.20

PR:             127861
Submitted by:   Daniel Gerzo <danger___FreeBSD.org>

- Fix dependency of fam/gamin

Submitted by:   Vsevolod Kozlov <zaba___thorium.homeunix.org>

- Multiple security fixes.
- Bump PORTREVISION

Notified by:    miwi
Security:      
http://www.vuxml.org/freebsd/fb911e31-8ceb-11dd-bb29-000c6e274733.html

- Fix small memleak in fastcgi module.

Submitted by:   Chris Peiffer <chris__cabstand.com>

- Allow change location of pidfile in rc script [1]
- Fix dependency of libmemcache [2]
- Add IPv6 support to mod_proxy [3]

PR:             123933 [1], 124576 [2], 126527 [3]
Submitted by:   Marshal Newrock <marshal___freedombi.com> [1],
                Tilman Linneweh <arved___FreeBSD.org> [3]
Notified by:    Jean-Dominique Baylac <jdb___venigo.net> [2]

Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk

- Describe better MEMCACHE option

Submitted by:   Peter van Dijk <peter___nextgear.nl>

- Fix DOS in SSL connection

PR:             122526
Submitted by:   Harald Schmalzbauer <harry___omnisec.de>
Security:      
http://www.vuxml.org/freebsd/1ac77649-0908-11dd-974d-000fea2763ce.html

- Update to 1.4.19. Fix several vulnerabilities.

PR:             121245

- Respect EAGAIN and retry sendfile() instead close connection.
- Remove empty lines and add two more cases to switch(errno)
- Bump PORTREVISION

- Update to 1.4.18

PR:             116243
Submitted by:   Gea-Suan Lin <gslin___gslin.org>
Security:      
http://www.vuxml.org/freebsd/4b673ae7-5f9a-11dc-84dd-000102cc8983.html

- Update to 1.4.17

PR:             115917
Submitted by:   Gea-Suan Lin <gslin___gslin.org>

- Update to 1.4.16

PR:             114920
Submitted by:   Gea-Suan Lin <gslin___gslin.org>

- Set --mandir and --infodir in CONFIGURE_ARGS if the configure script
  supports them.  This is determined by running ``configure --help'' in
  do-configure target and set the shell variable _LATE_CONFIGURE_ARGS
  which is then passed to CONFIGURE_ARGS.
- Remove --mandir and --infodir in ports' Makefile where applicable
  Few ports use REINPLACE_CMD to achieve the same effect, remove them too.
- Correct some manual pages location from PREFIX/man to MANPREFIX/man
- Define INFO_PATH where necessary
- Document that .info files are installed in a subdirectory relative to
  PREFIX/INFO_PATH and slightly change add-plist-info to use INFO_PATH and
  subdirectory detection.

PR:             ports/111470
Approved by:    portmgr
Discussed with: stas (Mk/*), gerald (info related stuffs)
Tested by:      pointyhat exp run

- Apply security fixes
- Bump PORTREVISION

Security:       http://secunia.com/advisories/26130/

- Remove spurious bzip2 dependency

PR:             112832
Submitted by:   delphij

- Update to 1.4.15

PR:             111552
Submitted by:   Gea-Suan Lin <gslin___gslin.org>

- Add HTTPS env on mod_cgi.

Reported by:    mark__hubcapconsulting.com

- Add WEBDAV support [1]
- Add workaround to enable IPV6 in lighttpd.conf [2]
- Add support to graceful restart [3]

PR:             107599 [1], 110371 [2], 110683 [3]
Submitted by:   Dazza<dazza___luckydonkey.com> [1],
                Joseph Terner<jtsn___gmx.de> [2],
                Peter Beckman <beckman___purplecow.com> [3]

- Apply a vendor patch that fixes CPU starvation
- Bump PORTREVISION

Submitted by:   delphij

- Fix CML option using -llua.

PR:             105863
Submitted by:   Jun MUKAI <mukai___jmuk.org>

- Take maintainership

Reset hendrik@scholz.net due to a number of timeouts.

Hat:            portmgr

- add mog_magnet support
- Ref: http://blog.lighttpd.net/articles/2006/09/16/a-new-power-magnet
- bump PORTREVISION

PR:             ports/105284
Submitted by:   clsung
Approved by:    maintainer (timeout)

- Update to 1.4.13 [1]
- Add options for bzip2, fam, gdbm, memcache, and valgrind [1]
- Fix build in 4.x

PR:             104239 [1]
Submitted by:   Gea-Suan Lin <gslin___gslin.org> [1]
Approved by:    maintainer timeout (21 days)

- Update to 1.4.12
- Add mirror sites listed on the official page
- Now FastCGI PHP is /usr/local/bin/php-cgi

PR:             ports/103618
Submitted by:   Gea-Suan Lin <gslin_AT_gslin dot org>
Approved by:    maintainer (Hendrik Scholz)

Modify these files to reflect bsd.lua.mk as tested on the cluster.

PR:             ports/101612
Submitted by:   alepulver
Hat:            portmgr

- Fix LDAP support
- Bump PORTREVISION

PR:             97161 (based on)
Submitted by:   Jakob van Santen <jakob@somethingpretentious.net>
Approved by:    hendrik@scholz.net (maintainer)

- Switch lua dependency to lang/lua50

- Update to 1.4.11

PR:             ports/94451
Submitted by:   maintainer

Conversion to a single libtool environment.

Approved by:    portmgr (kris)

- Fix typo in REQUIRE
- Bump PORTREVISION

PR:             93437
Submitted by:   Michael Proto <mike@jellydonut.org>
Approved by:    maintainer timeout (bypassed by linimon)

- Update to 1.4.10

PR:             ports/93348
Submitted by:   maintainer

- Check config when restart rc.d script [1]
- Remove BEFORE line and FreeBSD in KEYWORD

PR:             92108 [1]
Submitted by:   Lapo Luchini <lapo@lapo.it> [1]
Approved by:    maintainer timeout, 16 days

Update to 1.4.9 [1]
Remove obsolete MASTER_SITES [1]
Update lighttpd.conf.sample [1]
Fix REQUIRE in rc.d script [2]
Reorganize Makefile and rc.d script [2]

PR:             92078 [1], 92069 [2]
Submitted by:   Rui Lopes <rui@ruilopes.com> [1], mnag [2]
Approved by:    maintainer

better example in sample config for lighttpd

        The lighttpd port installs a sample config file into
              /usr/local/etc/lighttpd.conf.sample
        this file should probably include the line:
              server.event-handler        = "freebsd-kqueue"
        lighttpd is a high performance web server, and it should
        use kqueue when running on FreeBSD.

PR:             ports/90354
Submitted by:   Mike <mspam@ideaway.net>
Approved by:    maintainer timeout

- Update to 1.4.8 [1]
- Fix detection of OpenSSL if world is build with NO_OPENSSL [2]

Submitted by:   delphij [1], Artis Caune <Artis.Caune@latnet.lv> [2]
PR:             ports/89709 [1], ports/89370 [2]
Approved by:    Hendrik Scholz <hscholz@raisdorf.net> (maintainer) [1, 2]

Update to 1.4.7
Fix IPV6 OPTIONS
Add SHA256

PR:             89319
Submitted by:   delphij
Approved by:    maintainer

Mass-conversion to the USE_AUTOTOOLS New World Order.  The code present
in bsd.autotools.mk essentially makes this a no-op given that all the
old variables set a USE_AUTOTOOLS_COMPAT variable, which is parsed in
exactly the same way as USE_AUTOTOOLS itself.

Moreover, USE_AUTOTOOLS has already been extensively tested by the GNOME
team -- all GNOME 2.12.x ports use it.

Preliminary documentation can be found at:
        http://people.FreeBSD.org/~ade/autotools.txt

which is in the process of being SGMLized before introduction into the
Porters Handbook.

Light blue touch-paper.  Run.

- Update to 1.4.6
- Added pkg-plist magic to preserve changed config file

PR:             87178
Submitted by:   Toni Viemero <toni.viemero@iki.fi>
Reworked by:    hendrik@scholz.net (maintainer)
Approved by:    novel (mentor)

Update to 1.4.5

PR:             86877
Submitted by:   Hendrik Scholz <hendrik@scholz.net> (maintainer)
Approved by:    pav (mentor)

- Update to 1.4.4

PR:             ports/86323
Submitted by:   maintainer

- Update to 1.4.3

PR:             ports/85571
Submitted by:   maintainer

Update to to 1.4.2: bugfix release

PR:             ports/85463
Submitted by:   Hendrik Scholz (maintainer)

- Update to 1.4.1

PR:             ports/85177
Submitted by:   Hendrik Scholz <hendrik@scholz.net> (maintainer)

- Update to 1.3.16

PR:             ports/84391
Submitted by:   maintainer

- Update to 1.3.15

PR:             ports/83523
Submitted by:   Hendrik Scholz <hendrik@scholz.net> (maintainer)

- Dodge WITH_OPENSSL in OPTIONS oddity

Submitted by:   sem

- Update to 1.3.14
- Fix OPTIONS

PR:             ports/82288
Submitted by:   Hendrik Scholz <hendrik@scholz.net> (maintainer)

At Kris's request, back out the MACHINE_ARCH spelling correction until
after 5.4-RELEASE.

Assist getting more ports working on AMD64 by obeying the
Ports Collection documentation and use 'ARCH' rather than 'MACHINE_ARCH'.

- Add OPENLDAP option [1]
- Add MYSQL and IPV6 options [2]

PR:             ports/78680
Submitted by:   Dick Davies <rasputnik@hellooperator.net> [1]
                Marcus Grando <marcus@corp.grupos.com.br> [2]
Approved by:    maintainer

15 vulnerabilities affecting 34 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities