non port: www/apache13-ssl/Makefile |
Number of commits found: 60 |
Sunday, 1 Jan 2012
|
19:30 ohauer
- remove apache13 and ports depending on apache13 from portstree
( EXPIRATION_DATE=2012-01-01 )
with hat apache@
|
Monday, 14 Nov 2011
|
23:50 ohauer
- mark apache13 FORBIDDEN (CVE-2011-3368)
* There are no patches from upstream and already existing
exploids in the wild.
- ru-apache13 ports have long outstanding issues and are far
behind last apache13 patches.
with hat apache@
Feature safe: yes
|
Wednesday, 7 Sep 2011
|
03:00 pgollucci
- Set EXPIRATION_DATE to an actual date (9.0 is behind, so guess 2 months from
now).
- This can be changed later as needed, if at all, either way we won't remove
them
until after 9.0 is released.
With Hat: apache@
Reported by: dvl via freshports
|
Saturday, 27 Aug 2011
|
09:54 ohauer
- set EXPIRATION_DATE to "one week after FreeBSD 9.0-RELEASE-p0"
with hat apache@
|
Sunday, 17 May 2009
|
07:24 pgollucci
- Mark SAFE apache@ ports MAKE_JOBS_SAFE=yes
|
Sunday, 13 Jul 2008
|
04:37 itetcu
- Honor NO* vars (noticed by ionbot)
- Silence some portlint warnings
- USE_RC_SUBR from the rc.d script
- Bump PORTREVISION
PR: 125131
Submitted by: Philip M. Gollucci
|
Tuesday, 15 Apr 2008
|
11:50 dinoex
- Security update to 1.3.41+ssl_1.59
Security: CVE-2008-0555
- fix objformat
PR: 120105
|
Sunday, 17 Jun 2007
|
16:59 anders
Remove thttpd from conflicts list, it has a different name for its
passwd program now.
Approved by: maintainers/erwin
|
Sunday, 18 Mar 2007
|
17:13 clement
- Update to 1.3.37-1.57
|
Thursday, 27 Jul 2006
|
20:26 clement
- Fix security issue in mod_rewrite.
All people using mod_rewrite are strongly encouraged to update.
An off-by-one flaw exists in the Rewrite module, mod_rewrite.
Depending on the manner in which Apache httpd was compiled, this
software defect may result in a vulnerability which, in combination
with certain types of Rewrite rules in the web server configuration
files, could be triggered remotely. For vulnerable builds, the nature
of the vulnerability can be denial of service (crashing of web server
processes) or potentially allow arbitrary code execution.
This issue has been rated as having important security impact
by the Apache HTTP Server Security Team
Updates to latest versions will follow soon.
Notified by: so@ (simon)
Obtained from: Apache Security Team
Security: CVE-2006-3747
|
Monday, 16 Jan 2006
|
10:13 clement
- Remove duplicated mor_dir entries
- Always build (mod_)apache_ssl statically.
- Fix MAN8 logic [1]
Reported by: pointyhat via kris [1]
|
Saturday, 14 Jan 2006
|
13:59 clement
- Update to 1.3.34+1.37
- Use new apache framework.
|
Monday, 12 Dec 2005
|
20:31 clement
SECURITY: CVE-2005-3352 (cve.mitre.org)
mod_imap: Escape untrusted referer header before outputting in HTML
to avoid potential cross-site scripting. Change also made to
ap_escape_html so we escape quotes. Reported by JPCERT.
[Mark Cox]
Reported by: simon
|
Monday, 3 Oct 2005
|
06:07 linimon
Remove obsolete mastersite.
Source: distfile survey
|
Tuesday, 26 Jul 2005
|
13:57 clement
- Fix CAN-2005-2088
Obtained from: Apache repository
|
Monday, 6 Jun 2005
|
15:16 clement
- While I'm here, kick portname from COMMENT
|
15:09 clement
- En1arge its maintainership
|
Monday, 13 Dec 2004
|
21:06 clement
- move default configuration files to ${EXAMPLESDIR} and keep
${PREFIX}/etc/apache clean.
|
11:16 clement
- Xmas for apache13-ssl!
Give it a rcNG startup script
Also requested by: sem
|
Friday, 12 Nov 2004
|
10:40 clement
- Update to 1.3.33.1.55
|
Saturday, 31 Jul 2004
|
11:56 clement
- update to 1.3.29+1.55
|
Friday, 11 Jun 2004
|
12:19 clement
- Security Fix
mod_proxy buffer overflow CAN-2004-0492
Shamefully stolen from: apache13-mod-ssl port
|
Wednesday, 7 Apr 2004
|
13:47 clement
- tar -> ${TAR}
While I'm here put --target=httpsd at the right place.
|
Thursday, 18 Mar 2004
|
20:50 dinoex
- CONFLICTS extended
|
Monday, 8 Mar 2004
|
13:29 clement
Fix a bug in the parsing of Allow/Deny rules using IP addresses.
http://www.vuxml.org/freebsd/09d418db-70fd-11d8-873f-0020ed76ef5a.html
Reported by: nectar
Obtained from: Apache CVS
|
Friday, 6 Feb 2004
|
22:40 clement
- Update to apache 1.3.29
- Update to patchset 1.53
***** SECURITY FIX *****
http://www.apache-ssl.org/advisory-20040206.txt
Time to ask eik how to add it to portaudit
|
Wednesday, 21 Jan 2004
|
09:32 clement
Rename patch.
post-patch-conf:httpd.conf-dist.orig =>
post-patch-conf:httpd.conf-dist
Pointed out by: kris,
Koop Mast <kwm@rainbow-runner.nl>
|
Tuesday, 13 Jan 2004
|
15:04 clement
- Update my email address
Approved and reviewed by: erwin (mentor)
|
Thursday, 20 Nov 2003
|
11:25 jeh
update apache-ssl patch to 1.52.
apache 1.3.29 is not yet supported.
PR: 59355
Submitted by: Maintainer
|
Wednesday, 12 Nov 2003
|
21:09 jeh
Here's the patch.
files/patch-FixPatch was missing too.
Submitted by: MAINTAINER
|
Sunday, 9 Nov 2003
|
00:42 jeh
Changelog:
- Sync with apache13 layout (and some patches)
- use DOCSDIR
- Add no_zombies.patch
- use DIST_SUBDIR=apache
Removed files:
- files/patch-aq
- files/patch-ar
Added files:
- files/patch-httpd.conf-dist
- files/post-patch-conf:httpd.conf-dist.orig
- files/patch-FixPatch
- files/patch-SSLpatch
- files/patch-Makefile.tmpl
- files/patch-src::modules::standard::mod_auth_db.module
- files/patch-src::support::dbmanage
- files/patch-src::support::log_server_status
- files/patch-configure
PR: 58403
Submitted By: MAINTAINER
|
Saturday, 25 Oct 2003
|
20:47 dinoex
- fix spelling in CONFLICTS
|
Tuesday, 14 Oct 2003
|
15:47 dinoex
- add CONFLICTS
Submitted by: eikemeier@fillmore-labs.com
Approved by: kris
|
Sunday, 28 Sep 2003
|
07:19 dinoex
- Update to 1.3.28.1.49.
- Add suexec support
- Misc changes
- Add a footnote for users, to announce them that next version
will be a complete resync with apache13 ports layout.
PR: 57300
Submitted by: sheepkiller@cultdeadsheep.org
|
Wednesday, 24 Sep 2003
|
17:26 dinoex
- change ECHO -> ECHO_CMD
PR: 56847
|
Saturday, 6 Sep 2003
|
21:20 dinoex
- drop defunctional MASTER_SITES
|
Saturday, 30 Aug 2003
|
08:02 dinoex
- change YES -> yes
|
Thursday, 28 Aug 2003
|
15:38 dinoex
- use hook for bsd.openssl.mk
- Cleanup Makefile
|
Saturday, 5 Apr 2003
|
06:55 dinoex
- caption in MAINTAINER
|
Thursday, 3 Apr 2003
|
19:39 dinoex
- use bsd.openssl.mk
|
Thursday, 20 Feb 2003
|
19:15 knu
De-pkg-comment.
|
Thursday, 13 Feb 2003
|
15:04 naddy
Use MASTER_SITE_APACHE*.
PR: 47984
Submitted by: Kimura Fuyuki <fuyuki@hadaly.org>
|
Monday, 27 Jan 2003
|
17:05 dinoex
- Use user and group "www"
- fix PLIST
- add patch from ports/36363 (from ryan@servercity.com)
- verify ports/36361
- fix ports/36364
|
Monday, 20 Jan 2003
|
18:06 dinoex
- update SSL support.
defaults to openssl port (now 0.9.6.h)
New options:
use the lastest version (now 0.9.7)
USE_OPENSSL_BETA=yes
use the base version with
USE_OPENSSL_BASE=yes
|
Wednesday, 6 Nov 2002
|
16:01 joerg
Unmark this port from being forbidden; the reason by its time was that
the port had been updated to 1.2.27 and ssl-1.48 which simply did not
exist then.
Now they do exist. Since it builds, installs and runs correctly with
no further changes, and all the other apache-1.2.27-based ports are
back alive again, there's no reason to keep this one forbidden.
Don't be alarmed that the MD5 sum changes: the previous one in
distinfo was actually the checksum from apache_1.3.26+ssl_1.48.tar.gz,
since the last update to that file only changed the name but not the
MD5 sum. Alas, i could not find any authoritative MD5 on
http://www.apache-ssl.org/ to verify against.
|
Saturday, 12 Oct 2002
|
21:57 knu
Add MASTER_SITE_RINGSERVER to MASTER_SITES.
Tag apache-ssl sites with :ssl.
|
Saturday, 5 Oct 2002
|
09:18 kris
Update to apache 1.3.27 and 2.0.43. This fixes a security vulnerability.
Mark apache13-ssl FORBIDDEN because the new version does not yet exist.
Partially based on patches submitted by below authors.
Submitted by: "Sergey A. Osokin" <osa@freebsd.org.ru>,
Udo Schweigert <udo.schweigert@siemens.com>,
Lev A. Serebryakov <lev@serebryakov.spb.ru>
PR: ports/43682, ports/43688, ports/43666, ports/43681
|
Sunday, 15 Sep 2002
|
12:34 dinoex
Update to 1.3.26+ssl_1.48
removed FORBIDDEN
|
Sunday, 1 Sep 2002
|
16:07 dwcjr
${PERL} -> ${REINPLACE_CMD}
PR: 40784
Submitted by: corecode@corecode.ath.cx
Reviewed by: flynn@energyhq.homeip.net
|
Tuesday, 18 Jun 2002
|
12:33 nectar
Mark FORBIDDEN until an update is available.
See <URL:http://httpd.apache.org/info/security_bulletin_20020617.txt>.
|
Thursday, 28 Mar 2002
|
22:53 petef
Fix a master site.
PR: 36409
Submitted by: Kimura Fuyuki <fuyuki@mj.0038.net>
|
Saturday, 23 Mar 2002
|
19:34 nectar
Patch buffer overflow described in
<URL:http://www.apache-ssl.org/advisory-20020301.txt>.
|
Friday, 1 Mar 2002
|
19:39 jedgar
Change BROKEN to FORBIDDEN due to security vulnerabilities. Add SSL
vulnerability to the list: http://www.apache-ssl.org/advisory-20020301.txt
|
Friday, 21 Dec 2001
|
19:31 nectar
Oops, forgot to quote the parens. Quoting makes the line > 80 characters, so
take a slightly different approach.
|
19:25 nectar
Set MAINTAINER to freebsd-ports. Previous maintainer says, ``i no longer
support this port as i got fed up with the port committers ignoring my
updates.''
|
Monday, 1 Jan 2001
|
10:15 will
Goodbye, YEAR2000. Hello, 2001.
|
Sunday, 29 Oct 2000
|
22:43 steve
Run 'make certificate' from the correct directory.
|
Friday, 22 Sep 2000
|
02:59 kris
Update all ports using OpenSSL and RSA to work without rsaref since it is no
longer required. Apologies to the various maintainers whom I did not yet hear
back from, but the ports freeze is coming up in a few hours and I will be
verifying all of these ports on a 4.1 machine myself to catch any problems.
|
Tuesday, 22 Aug 2000
|
04:41 kuriyama
Cosmetic changes to reduce difference between apache13 ports. (whitespace/tab,
re-ordering, same $DISTNAME)
|
Wednesday, 9 Aug 2000
|
18:47 cpiazza
Fix up MASTER_SITES
|
Number of commits found: 60 |