non port: www/apache22/Makefile |
Number of commits found: 188 (showing only 88 on this page) |
Friday, 7 May 2010
|
18:33 pgollucci
- FreeBSD doesn't use EGD sockets. Also the option handling doesn't honor
without-egd.
Carry the devel/apr fix through
PR: ports/146376
Submitted by: Guido Fals
|
05:56 pgollucci
2/2: fix mod_auth_digest builds which needs EGD and DEVRANDOM.
This fixes both bundled apr using the port (devel/apr for
WITH_APR_FROM_PORTS)
PR: ports/134577
Requested by: Pascal Vizeli <pvizeli@yahoo.de>
With Hat: apache@
|
05:16 pgollucci
- silence this warning -- libtool: ignoring unknown tag CXX
With Hat: apache@
|
05:14 pgollucci
- fix ldap support (duplicate www/apache20 fix)
--with-ldap switches on LDAP library linking in apr-util
--enable-ldap option switches on the LDAP caching module
--enable-authnz-ldap option switches on the LDAP authentication module
[AAA was rewritten in 3 peices in 2.4.x, hence the option change]
- no custom patch, the linking was fixed in 2.2.x
- ldap is not in the default package, so no PORTREVISION bump
PR: ports/128079
Reported by: koitsu, skreuzer
With Hat: apache@
|
03:15 pgollucci
- Fix the owner to be root:wheel on files* when running sudo make ...
This doesn't affect the package b/c pointyhat/tb run as root
PR: ports/134456
With Hat: apache@
|
01:46 pgollucci
- Forced commit to note the following CVEs were fixed in 2.2.15
[from CHANGES file]
*) SECURITY: CVE-2009-3555 (cve.mitre.org)
mod_ssl: Comprehensive fix of the TLS renegotiation prefix injection
attack when compiled against OpenSSL version 0.9.8m or later. Introduces
the 'SSLInsecureRenegotiation' directive to reopen this vulnerability
and offer unsafe legacy renegotiation with clients which do not yet
support the new secure renegotiation protocol, RFC 5746.
[Joe Orton, and with thanks to the OpenSSL Team]
*) SECURITY: CVE-2009-3555 (cve.mitre.org)
mod_ssl: A partial fix for the TLS renegotiation prefix injection attack
for OpenSSL versions prior to 0.9.8l; reject any client-initiated
renegotiations. Forcibly disable keepalive for the connection if there
is any buffered data readable. Any configuration which requires
renegotiation for per-directory/location access control is still
vulnerable, unless using openssl 0.9.8l or later.
[Joe Orton, Ruediger Pluem, Hartmut Keil <Hartmut.Keil adnovum.ch>]
*) SECURITY: CVE-2010-0408 (cve.mitre.org)
mod_proxy_ajp: Respond with HTTP_BAD_REQUEST when the body is not sent
when request headers indicate a request body is incoming; not a case of
HTTP_INTERNAL_SERVER_ERROR. [Niku Toivola <niku.toivola sulake.com>]
*) SECURITY: CVE-2010-0425 (cve.mitre.org)
mod_isapi: Do not unload an isapi .dll module until the request
processing is completed, avoiding orphaned callback pointers.
[Brett Gervasoni <brettg senseofsecurity.com>, Jeff Trawick]
*) SECURITY: CVE-2010-0434 (cve.mitre.org)
Ensure each subrequest has a shallow copy of headers_in so that the
parent request headers are not corrupted. Eliminates a problematic
optimization in the case of no request body. PR 48359.
[Jake Scott, William Rowe, Ruediger Pluem]
|
00:06 pgollucci
- Update CONFLICTS to make apr package names.
With Hat: apache@
|
00:02 pgollucci
- Regenerate patch files with make makepatch for they have
piled up and additional patches conflict.
This also will help when we try to syncronize www/apache20&www/apache22
- Unconditionally apply the mod_proxy_connect patch, you just may or may
not actually compile the file to save some logic in Makefile
With Hat: apache@
|
Wednesday, 5 May 2010
|
22:20 pgollucci
- Install check_forensic script if mod_log_forensic is enabled
PR: ports/144292
Submitted by: Dan Mahoney <danm@prime.gushi.org>
With Hat: apache@
|
22:18 pgollucci
- move OPTION handling out of targets section [no-op]
With Hat: apache@
|
22:17 pgollucci
- whitespace only
With Hat: apache@
|
22:12 pgollucci
- fix /etc/ftpusers [really this time], bump PORTREVISION
- DISTFILES is not needed
- CFLAGS is already in CONFIGURE_ENV
- drop apache21 from CONFLICTS
- fix caudium CONFLICTS
|
21:43 pgollucci
2/5: Update to httpd 2.2.15, default to using devel/apr instead of bundled apr
PR: ports/146130
Approved by: portmgr (pav)
Tested by: -exp run (pav)
With Hat: apache@
|
Wednesday, 28 Apr 2010
|
21:05 pgollucci
- Fix typo preventing install/deinstall when /etc/ftpusers was present
Note if you already have www/apache20 or www/apache22 installed this is
not worth updating for; however, you should verify your [if you use it]
${PREFIX}/etc/apacheXX/extra/httpd-userdir.conf:
DisableUser dir setting correct lists the users you don't want
to have the ~/dir visible via http requests.
PR: ports/144422
Reported by: several
With hat: apache@
|
Saturday, 12 Dec 2009
|
00:43 pgollucci
- Allow install by a user other then root
[Duplicate fix for devel/apr here in www/apache22 too]
PR: ports/13876 [based on]
Submitted by: Mel Flynn <mel at rachie.is-a-geek.net>
miwi@
|
Friday, 11 Dec 2009
|
23:56 pgollucci
whitespace fixes only
|
23:43 pgollucci
- envvars needs to be sourced before _all_ commands if it exists
PR: ports/138466 (based on)
Submitted by: Dmitry Pryanishnikov <lynx.ripe@gmail.com>
|
23:37 pgollucci
- Fix handling of apache22_http_accept_enable="YES|NO"
o Note, don't use required_modules you can not check the return value
to conditionalize the -DNOHTTPACCEPT flag
PR: ports/138373
Submitted by: Helmut Schneider <jumper99@gmx.de>
|
22:57 pgollucci
- Fix option WITH_PATCH_PROXY_CONNECT
PR: ports/138846
Submitted by: "George D." <gi@azagal.com>
|
Thursday, 10 Dec 2009
|
08:09 pgollucci
- OPTIONS+= PROXY_SCGI
PR: ports/140137
Submitted by: olli hauer <ohauer@gmx.de>
|
Wednesday, 9 Dec 2009
|
23:48 pgollucci
- Update to 2.2.14
- With hat apache@
Note: The 3 CVE's are a no-op for the FreeBSD port --
date: 2009/08/25 05:33:03; author: kuriyama; state: Exp; lines: +0 -0
(Forced commit)
- 2.2.13 (acutally 2.2.12) includes fixes for several CVEs. [1]
but in our ports tree, APR related ones (CVE-2009-0023,
CVE-2009-1955, CVE-2009-1956) were already backported in 2.2.11_5.
References: http://www.apache.org/dist/httpd/CHANGES_2.2.12 [1]
Changes:
---------
*) SECURITY: CVE-2009-2699 (cve.mitre.org)
Fixed in APR 1.3.9. Faulty error handling in the Solaris pollset support
(Event Port backend) which could trigger hangs in the prefork and event
MPMs on that platform. PR 47645. [Jeff Trawick]
*) SECURITY: CVE-2009-3095 (cve.mitre.org)
mod_proxy_ftp: sanity check authn credentials.
[Stefan Fritsch <sf fritsch.de>, Joe Orton]
*) SECURITY: CVE-2009-3094 (cve.mitre.org)
mod_proxy_ftp: NULL pointer dereference on error paths.
[Stefan Fritsch <sf fritsch.de>, Joe Orton]
*) mod_proxy_scgi: Backport from trunk. [André Malo]
*) mod_ldap: Don't try to resolve file-based user ids to a DN when AuthLDAPURL
has been defined at a very high level. PR 45946. [Eric Covener]
*) htcacheclean: 19 ways to fail, 1 error message. Fixed. [Graham Leggett]
*) mod_ldap: Bring the LDAPCacheEntries and LDAPOpCacheEntries
usage() in synch with the manual and the implementation (0 and -1
both disable the cache). [Eric Covener]
*) mod_ssl: The error message when SSLCertificateFile is missing should
at least give the name or position of the problematic virtual host
definition. [Stefan Fritsch sf sfritsch.de]
*) htdbm: Fix possible buffer overflow if dbm database has very
long values. PR 30586 [Dan Poirier]
*) Add support for HTTP PUT to ab. [Jeff Barnes <jbarnesweb yahoo.com>]
*) mod_ssl: Fix SSL_*_DN_UID variables to use the 'userID' attribute
type. PR 45107. [Michael Ströder <michael stroeder.com>,
Peter Sylvester <peter.sylvester edelweb.fr>]
*) mod_cache: Add CacheIgnoreURLSessionIdentifiers directive to ignore
defined session identifiers encoded in the URL when caching.
[Ruediger Pluem]
*) mod_mem_cache: fix seg fault under load due to pool concurrency problem
PR: 47672 [Dan Poirier <poirier pobox.com>]
*) mod_autoindex: Correctly create an empty cell if the description
for a file is missing. PR 47682 [Peter Poeml <poeml suse.de>]
|
Wednesday, 16 Sep 2009
|
14:17 pav
- Update MPM-ITK patch to 20090414-00
PR: ports/137953
Submitted by: Emil Mikulic <emikulic@gmail.com>
Feature safe: yes
|
Tuesday, 25 Aug 2009
|
05:33 kuriyama
(Forced commit)
- 2.2.13 (acutally 2.2.12) includes fixes for several CVEs. [1]
but in our ports tree, APR related ones (CVE-2009-0023,
CVE-2009-1955, CVE-2009-1956) were already backported in 2.2.11_5.
References: http://www.apache.org/dist/httpd/CHANGES_2.2.12 [1]
|
04:58 kuriyama
- Upgrade to 2.2.13.
PR: ports/137651
Submitted by: Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
|
Sunday, 2 Aug 2009
|
19:36 mezz
-Repocopy devel/libtool15 -> libtool22 and libltdl15 -> libltdl22.
-Update libtool and libltdl to 2.2.6a.
-Remove devel/libtool15 and devel/libltdl15.
-Fix ports build with libtool22/libltdl22.
-Bump ports that depend on libltdl22 due to shared library version change.
-Explain what to do update in the UPDATING.
It has been tested with GNOME2, XFCE4, KDE3, KDE4 and other many wm/desktop
and applications in the runtime.
With help: marcus and kwm
Pointyhat-exp: a few times by pav
Tested by: pgollucci, "Romain Tartière" <romain@blogreen.org>, and
a few MarcusCom CVS users. Also, I might have missed a few.
Repocopy by: marcus
Approved by: portmgr
|
Tuesday, 16 Jun 2009
|
17:04 pgollucci
- Change OPTION help text for WITH_APR_FROM_PORTS
beware -> preferred
In preparation for making it the default and dropping the option.
Discussed on: ports@, apache@
|
Friday, 12 Jun 2009
|
17:24 pgollucci
- Revert the bdb change in the last batch
- Reported by: Serveral
With Hat: apache@
|
00:53 pgollucci
- forced commit to note that previous message had an incorrect pr #
ports/135457 should have been ports/134457
|
00:33 pgollucci
- Drop .sh suffices on rc.d scripts, add note to UPDATING
- Commit the final part of the bdb patch improving the value passed
to --with-berkely-db [1]
- Silence the blasted warnings about accf [2]
(Will send this upstream)
- Address httpd issue 42829* - graceful restart with multiple listeners
using prefork MPM can result in hung processes [3]
- Address httpd issue 29744+ - CONNECT does not work over existing
SSL connection [4]
- Drop .sh suffices on rc.d scripts, add note to UPDATING [5]
- Bump PORTREVISION
PRs: ports/110651 [1], ports/132528 [2], ports/134457 [3]
ports/135478
Submitted by: "Timur I. Bakeyev" <timur@gnu.org> [1]
bz@ [2]
Alexander <freebsd@nagilum.org> [4]
myself (pgollucci@) [5]
Requested by: apache@ (several) [3]
Tested by: P6 TB (running live > 5 days)
RideCharge TB (running live > 3 days)
Apache Software Foundation (ASF) TB (running live > 1 day)
Sponosored by: RideCharge Inc.
|
Monday, 8 Jun 2009
|
03:10 pgollucci
- Backport apr-util security fixes pending the 2.2.12 release (forthcomming)
Security:
http://www.vuxml.org/freebsd/eb9212f7-526b-11de-bbf2-001b77d09812
PR: ports/135310
Submitted by: Eygene Ryabinkin <rea-fbsd@codelabs.ru>
With Hat: apache
|
Sunday, 17 May 2009
|
07:24 pgollucci
- Mark SAFE apache@ ports MAKE_JOBS_SAFE=yes
|
Thursday, 2 Apr 2009
|
01:22 kuriyama
- Add a patch to fix ab(1) fails to connect with "Operation already in
progress (37)" errno.
References: https://issues.apache.org/bugzilla/show_bug.cgi?id=44584
Obtained from:
http://svn.apache.org/viewvc/httpd/httpd/trunk/support/ab.c?r1=748396&r2=749438
Reviewed by: apache@ (pgollucci@)
|
Thursday, 29 Jan 2009
|
23:51 pgollucci
- www/apache22-peruser-mpm overwrites the apache22.tbz package in Latest/
due to the Master/Slave relationship
(Needs LATEST_LINK et al)
Discussed on: apache@
Reported by: John Hay <jhay@meraka.org.za>
Approved by: Jille Timmermans <jille@quis.cx>
With hat: apache
|
Monday, 19 Jan 2009
|
19:08 pgollucci
remove now unused option WITH_SVN
|
19:05 pgollucci
Chase devel/apr-svn removal
Reported by: tabthorpe
Pointyhat: me
|
Friday, 9 Jan 2009
|
14:13 pgollucci
- Re-assign www/apache* ports to apache@
- Previous MATAINERs please welcome yourself to the apache@ team.
Approved by: portmgr (pav, flz), secteam (simon), clement
|
Tuesday, 6 Jan 2009
|
16:53 wxs
- Remove conditional checks for FreeBSD 5.x and older
Approved by: pav
|
Monday, 15 Dec 2008
|
22:05 clement
- Update to 2.2.11
- Always depend on pcre from ports [1]
- Fix plist with LDAP/without apr-util DSO
- source envvars as late as possible [2]
Requested by: ale
Eygene Ryabinkin <rea-fbsd at codelabs dot ru> [2]
PR: ports/127418 [2]
|
Wednesday, 3 Sep 2008
|
19:07 clement
- Fix @comment string
Pointy hat to: clement
Reported by: Christer Solskogen
|
13:19 clement
- Fix plist where apr_dbd is used
- Fix Postgresql build, don't trust pg_config
- Don't overwrite apr_dbd_mysql.c
- Bump PORTREVISION
No cookie for: clement
|
Tuesday, 2 Sep 2008
|
12:26 clement
- Update MPM itk patch to 20080727-00 (it is actually a no op
on FreeBSD)
- Move mpm-itk patch to EXTRA_PATCHES to avoid conflicts with
alternative mpm patches [1]
- update PLIST_SUBS when SLAVE_PORT_MPM is defined
Requested by: Jille Timmermans [1]
|
07:34 clement
- Fix incorrect redirection order in startup script
- Bump PORTREVISION
PR: ports/127038 [1]
Submitted by: edwin@ [1]
Reported by: Tod McQuillin
|
Sunday, 31 Aug 2008
|
23:00 clement
- Yet Another Plist Fix [1]
- Completely shut up rc.d script when no profiles are enabled
(add add support to disable profiles) [2]
- Fix CVE-2008-2939 for mod_proxy_ftp
(XSS attacks when using wildcards in the path of the FTP URL)
- Add "apache22_fib" to start apache22 prefixed by
"setfib -F ${apache22_fib}", so apache can use an alternate
network view (not carefully tested yet)
- Revert previous patch to "fix" missing rc.d scripts. It
actually breaks profiles.
- Bump PORTREVISION
PR: ports/126670 [1],
ports/116627 [2]
Submitted by: Joseph S. Atkinson [1],
Eygene Ryabinkin [2]
Security: CVE-2008-2939
Special thanks to: pgollucci@
|
16:51 clement
- Fix plist when NOPORTDOCS is defined [1]
- Add WITH_SVN knob. It enables BDB for apache22 port and
force dependency on dev/apr-svn when WITH_APR_FROM_PORTS is
defined. (should help fixing [2]).
Introduce APR_PORT.
- Add support for db-4.7 [3]
- Add mod_ldap OPTIONS fixup [4]
- Sometimes, rc scripts aren't included in package
Try to fix this. [5]
PR: ports/126053 [2], ports/125520 [3]
ports/124651 [4], ports/126670 [5] (partially)
Reported by: QA Tindy [1],
Crazig Leres [2],
Larry Rosenman [4]
Kirk Strauser [3],
Joseph S. Atkinson [5]
|
Thursday, 21 Aug 2008
|
06:18 rafan
Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.
To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.
To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.
Changes to Mk/*:
- Add runtime detection magic in bsd.port.mk
- Remove CONFIGURE_TARGET hack in various bsd.*.mk
- USE_GNOME=gnometarget is now an no-op
Changes to individual ports, other than removing the CONFIGURE_TARGET hack:
= pkg-plist changed (due to the ugly CONFIGURE_TARGET prefix in * executables)
- comms/gnuradio
- science/abinit
- science/elmer-fem
- science/elmer-matc
- science/elmer-meshgen2d
- science/elmerfront
- science/elmerpost
= use x86_64 as ARCH
- devel/g-wrap
= other changes
- print/magicfilter
GNU_CONFIGURE -> HAS_CONFIGURE since it's not generated by autoconf
Total # of ports modified: 1,027
Total # of ports affected: ~7,000 (set GNU_CONFIGURE to yes)
PR: 126524 (obsoletes 52917)
Submitted by: rafan
Tested on: two pointyhat 7-amd64 exp runs (by pav)
Approved by: portmgr (pav)
|
Wednesday, 20 Aug 2008
|
00:57 ade
Conversion from (now defunct) autoconf-2.61 to autoconf-2.62
Tested by: exp build run (erwin)
|
Monday, 23 Jun 2008
|
21:11 clement
- Update to 2.2.9
- Add a note to UPDATING about the forced build of subversion
because of apr/apu bumped version.
|
Sunday, 20 Jan 2008
|
11:29 clement
- Update to 2.2.8
- Update documentation
- Use BDB from bsd.databases.mk instead of homebrew [1]
PR: ports/119711 [1]
Submitted by: mm [1]
|
Tuesday, 11 Dec 2007
|
20:22 clement
- Fix slave ports [1]
- Fix plist [2]
- Fix CONFLICTS with devel/apr-svn [3]
- Fix install when index.html is modified
- Bump PORT_REVISION
PR: ports/118348 [1], ports/118338 [2],ports/117097 [2]
ports/90088 [3], ports/118349 [3]
Submitted by: Andrey Beresovsky <and at sfedu dot ru> [1],
Dimitry Andric <dimitry at andric dot com> [2],
YAMAMOTO Takao <yamamoto at computec dot co dot jp>
Melvyn Sopacua <melvyn atmelvyn dot homeunix dot org> [3],
Dominic Fandrey <lon_kamikaze at gmx dot de> [3]
|
Sunday, 30 Sep 2007
|
04:47 linimon
Switch autoconf dependencies from 2.53 or 2.59 to 2.61.
PR: ports/116639
Submitted by: aDe
|
Sunday, 23 Sep 2007
|
10:22 clement
- Make port more OPTIONS compliant (more OPTIONS workarounds)
- Add some IGNORE entries to warn users when the choose conflicting options
|
Thursday, 20 Sep 2007
|
08:04 clement
- Fix PCRE_FROM_PORTS. it wasn't processed by OPTIONS stff [1]
(I forgot to re-apply the patch locally)
Reminded by: bland@
|
07:57 clement
- Fix PCRE_FROM_PORTS. it wasn't processed by OPTIONS stff [1]
- Preserve index.html
- We no longer install images in default DocumentRoot (there're still in icons/)
- Various plist cleanup
- bump PORTREVISION since we are now safe with index.html
Reminded by: bland@
|
Wednesday, 19 Sep 2007
|
21:05 clement
- remove duplicate entry of mod_charset_lite [1]
- add PCRE_FROM_PORTS to OPTIONS
- use @dirrmtry for include/apache22
- workaround plist issues when upgrading, but it's not as safe as I
would expect, it requires more work.
Spotted by: bland@ [1]
|
Tuesday, 18 Sep 2007
|
20:03 clement
- Add experimental support of OPTIONS.
From UPDATING:
By popular request, OPTIONS support has been added. When actived
(default), these knobs are ignored:
* WITH_<CATEGORY>_MODULES
* WITHOUT_<CATEGORY>_MODULES
* WITH_CUSTOM_<CATEGORY>
* WITH_MODULES
* WITHOUT_MODULES
* WITH_STATIC_MODULES
However, you can disable OPTIONS by defining WITHOUT_APACHE_OPTIONS.
- move envvars support to the beginning of apache22_checkconfig() to be
sure we're using envvars during configtest [1]
PR: ports/116329 [1]
Submitted by: Ruud Althuizen <ruud@il.fontys.nl> [1]
|
Sunday, 16 Sep 2007
|
15:46 clement
- Import MySQL DBD backend
This will definitively fix checksum mismatches. Time to investigate...
Reported by: many
|
Monday, 10 Sep 2007
|
19:15 clement
\
- Cleanup MPM selection
- Update mpm itk to 20070425-00
|
Sunday, 9 Sep 2007
|
14:55 clement
- Update to 2.2.6
- Fix restart when profiles are used [1]
Submitted by: Jarrod Sayers <jarrod at netleader dot com dot au>
|
Saturday, 4 Aug 2007
|
11:41 gabor
- Remove the DESTDIR modifications from individual ports as we have a new,
fully chrooted DESTDIR, which does not need such any more.
Sponsored by: Google Summer of Code 2007
Approved by: portmgr (pav)
|
Sunday, 22 Jul 2007
|
11:03 clement
- Add htcacheclean startup script [1]
- Add support for PCRE from ports (WITH_PCRE_FROM_PORTS) [2]
- Install split-logfile [3]
Submitted by: Christopher Shumway <cshumway at titan-project dot org> [1]
Requested by: Gergely CZUCZY <phoemix at harmless dot hu>, [2]
many [3]
|
Sunday, 17 Jun 2007
|
16:59 anders
Remove thttpd from conflicts list, it has a different name for its
passwd program now.
Approved by: maintainers/erwin
|
Saturday, 17 Mar 2007
|
17:02 clement
- backout OpenSSL part of previous commit.
Forcing -rpath can lead to strange side effects when using apxs
|
16:03 clement
- Ensure we use correct OpenSSL libs [1]
- Fix multiprofiles support in rc script [2]
PR: ports/100315 [1],
ports/109536 [2]
Submitted by: Jo Rhett <jrhett@svcolo.com> [1]
Eygene Ryabinkin <rea-fbsd@codelabs.ru> [2]
|
Saturday, 13 Jan 2007
|
12:13 clement
- Update to 2.2.4
- Add dumpio module
- Fix rcorder [1]
PR: ports/106429 [1]
Submitted by: Dmitry Pryanishnikov <dmitry@atlantis.dp.ua> [1]
|
Tuesday, 7 Nov 2006
|
08:09 clement
- Install correct apr_mysql_dbd revision
Spotted by: Tigran Azaryantz <tigercost@yahoo.com>
|
Sunday, 5 Nov 2006
|
10:49 clement
- Update MySQL apr_dbd to rev 57
- Add support for itk mpm
- Update doc [1]
Reported by: Volodymyr Kostyrko <arcade@synergetica.dn.ua> [1]
|
Sunday, 24 Sep 2006
|
16:16 clement
- House keeping (update to current standards: USE_RC_SUBR, USE_LDCONFIG,etc.)
- Remove python dependency unless apr_dbd_mysql is built [1]
Required by: many [1]
|
Monday, 7 Aug 2006
|
17:10 clement
- Fix apr_dbd_mysql stuff.
Pointyhat to: clement
Spotted by: Sean McNeil <sean@mcneil.com>
|
Saturday, 5 Aug 2006
|
20:37 clement
- Update to 2.2.3
- Update apr_dbd to latest version [1]
- Add forgotten mod_authn_alias [2]
Spotted by: Jim Riggs <freebsd-lists@jimandlissa.com> [1]
Alexander Wittig <alexander@wittig.name> [2
|
Thursday, 27 Jul 2006
|
20:26 clement
- Fix security issue in mod_rewrite.
All people using mod_rewrite are strongly encouraged to update.
An off-by-one flaw exists in the Rewrite module, mod_rewrite.
Depending on the manner in which Apache httpd was compiled, this
software defect may result in a vulnerability which, in combination
with certain types of Rewrite rules in the web server configuration
files, could be triggered remotely. For vulnerable builds, the nature
of the vulnerability can be denial of service (crashing of web server
processes) or potentially allow arbitrary code execution.
This issue has been rated as having important security impact
by the Apache HTTP Server Security Team
Updates to latest versions will follow soon.
Notified by: so@ (simon)
Obtained from: Apache Security Team
Security: CVE-2006-3747
|
Saturday, 13 May 2006
|
04:41 edwin
Remove USE_REINPLACE from categories starting with W
|
Wednesday, 10 May 2006
|
19:47 clement
- Remove obsolete patch which add support to Windows Update Service when
apache acts as a proxy.
Reported by: Bjoern Voigt <bjoern@cs.tu-berlin.de>
|
Monday, 1 May 2006
|
09:07 clement
- Update to 2.2.2
- Enable mod_version by default
|
Thursday, 23 Feb 2006
|
10:40 ade
Conversion to a single libtool environment.
Approved by: portmgr (kris)
|
Monday, 30 Jan 2006
|
23:20 kuriyama
Chase shlib bump of libexpat.
|
Tuesday, 17 Jan 2006
|
09:40 clement
- Finish cleanups and fix build with threads enables.
|
Sunday, 15 Jan 2006
|
18:58 clement
Cleanups and fixes
- remove useless options (and fix thread stuff) [1]
- move print-closest-mirror to bsd.apache.mk
- move threads configure options out of Makefile.modules
- Fix stupid logic to disable v4mapped address [2]
- and more...
Submitted/spotted by: many, Hirohisa Yamaguchi <umq@ueo.co.jp> [1]
ume[2]
PR: ports/91813 [1]
|
08:56 clement
- Moving Makefile.modules before b.p.pre.mk leads to weird results.
First problem spotted by: leafy <leafy@leafy.idv.tw>
|
Saturday, 14 Jan 2006
|
16:03 clement
- SECURITY: CVE-2005-3357 (cve.mitre.org)
mod_ssl: Fix a possible crash during access control checks if a
non-SSL request is processed for an SSL vhost (such as the
"HTTP request received on SSL port" error message when an 400
ErrorDocument is configured, or if using "SSLEngine optional").
[1]
- reintroduce support of multiple instances of apache in startup
script [2]
- Add configtest command to apache22.sh [2]
- rewrite detection of accf_http filter to make it works on all
supported branches.
- fix rcorder [3]
- fix startup at boot time when profiles are used [4]
Spotted by: simon [1], flz[3]
Submitted by: Jarrod Sayers <jarrod@netleader.com.au> [2],
Joe Horn <joehorn@mi.chu.edu.tw> [4]
PR: ports/91154 [2], ports/90708 [4]
|
13:42 clement
- Fix some suexec CONFIGURE_ARGS for 1.3.x
- add show-categories and show-modules targets, for server ports.
Remove these targets from www/apache22/Makefile
|
Sunday, 25 Dec 2005
|
18:56 clement
- remove useless powerlogo.gif
|
Saturday, 17 Dec 2005
|
15:51 clement
- Fix plist and improve dbd /mem_cache logic
|
Tuesday, 13 Dec 2005
|
22:26 clement
- Fix envvars.d [1]
- Add apache22_http_accept_enable to load accf_http kernel module [2]
Additionnally, if it's not defined, we drop accept filter support
- Drop obsolete apache22ssl_enable rc.conf option
- Sync apache22.sh behavior with apachectl
Add graceful and graceful-stop targets
- Rework categories (add CACHE_MODULES)
- Add support for apr_dbd: MySQL, PostgrSQL and SQLite3 backends are supported
It adds mod_auth_dbd and mod_dbd automatically
more fixes to come soon...
PR: ports/90309 [1],
ports/90103 [2]
Submitted by: Simun Mikecin <sime@data.home.hr> [1],
Melvyn Sopacua <melvyn@melvyn.homeunix.net> [2]
|
Monday, 12 Dec 2005
|
20:55 clement
SECURITY: CVE-2005-3352 (cve.mitre.org)
mod_imap: Escape untrusted referer header before outputting in HTML
to avoid potential cross-site scripting. Change also made to
ap_escape_html so we escape quotes. Reported by JPCERT.
[Mark Cox]
Reported by: simon
|
Saturday, 10 Dec 2005
|
11:53 clement
- Don't forget to add USE_BUNDLED_APR to CONFIGURE_ENV
|
11:39 clement
- Fix plist (forgot when I add mod_filter) [1]
- workaround apr detection. Now apache22 build his own apr, even if apr
is installed, unless you define WITH_APR_FROM_PORTS.
Reported by: pointyhat via kris [1]
|
Sunday, 4 Dec 2005
|
14:59 clement
- Various package fixes
- Bump PORTREVISION
|
Saturday, 3 Dec 2005
|
22:02 clement
- Add apache 2.2.0
It's a temporary layout, I need more time to find the best.
note that ${PREFIX}/www/(data|errors|cgi)(-dist) disappeared in favor of
${PREFIX}/www/apache22
|
Number of commits found: 188 (showing only 88 on this page) |