hiawatha Advanced and secure webserver for Unix
10.7_6 www =1

Maintainer: portmaster@BSDforge.com
Port Added: 03 Dec 2006 20:57:19
License: GPLv2

Hiawatha is an advanced and secure webserver for Unix. It has been written with
'being secure' as its main goal. Hiawatha has many security features that no
other webserver has. Besides being very secure, it's also a very fast webserver.
It's twice as fast as Apache for static content. It supports load-balanced
FastCGI, which makes it fast and scalable for serving CGI.

WWW: https://www.hiawatha-webserver.org/

SVNWeb : Homepage : PortsMon

Pseudo-pkg-plist information, but much better, from make generate-plist
Expand this list (22 items)

1. /usr/local/share/licenses/hiawatha-10.7_6/catalog.mk
2. /usr/local/share/licenses/hiawatha-10.7_6/LICENSE
3. /usr/local/share/licenses/hiawatha-10.7_6/GPLv2
4. bin/ssi-cgi
5. @sample etc/hiawatha/cgi-wrapper.conf.sample
6. @sample etc/hiawatha/error.xslt.sample
7. @sample etc/hiawatha/hiawatha.conf.sample
8. @sample etc/hiawatha/index.xslt.sample
9. @sample etc/hiawatha/mimetype.conf.sample
10. @sample etc/hiawatha/toolkit.conf.sample
11. man/man1/cgi-wrapper.1.gz
12. man/man1/hiawatha.1.gz
13. man/man1/ssi-cgi.1.gz
14. man/man1/wigwam.1.gz
15. sbin/cgi-wrapper
16. sbin/hiawatha
17. sbin/wigwam
18. @sample www/hiawatha/index.html.sample
19. @dir /var/log/hiawatha
20. @dir /var/db/hiawatha
21. @postexec /usr/sbin/service ldconfig restart > /dev/null
22. @postunexec /usr/sbin/service ldconfig restart > /dev/null
Collapse this list.

---

To install the port: cd /usr/ports/www/hiawatha/ && make install clean
To add the package: pkg install hiawatha

PKGNAME: hiawatha

distinfo:

TIMESTAMP = 1508793653
SHA256 (hiawatha-10.7.tar.gz) = 363e99d84a85dafbb74bcc30b3e30286053ec2abbc7afe08cd87193611735f74
SIZE (hiawatha-10.7.tar.gz) = 951512

---

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:

1. cmake : devel/cmake
2. ninja : devel/ninja

Library dependencies:

1. libmbedtls.so : security/mbedtls
2. libxml2.so : textproc/libxml2
3. libxslt.so : textproc/libxslt

There are no ports dependent upon this port

---

Configuration Options

===> The following configuration options are available for hiawatha-10.7_6:
     CACHE=on: Enable cache support
     DOCS=on: Build and/or install documentation
     IPV6=on: IPv6 protocol support
     MBEDTLS=on: SSL/TLS support via mbed TLS
     MONITOR=off: Enable Hiawatha Monitor
     RPROXY=on: Enable reverse proxy
     TOMAHAWK=off: Enable Tomahawk command channel
     TOOLKIT=on: Enable URL toolkit
     XSLT=on: Enable XSLT support
===> Use 'make config' to modify these settings

---

USES:

cmake compiler:c11 gnome

---

Master Sites:

1. https://www.hiawatha-webserver.org/files/

• 2013-01-14

  Affects: users of www/hiawatha

  Author: cs@FreeBSD.org

  Reason: 
    php-fcgi has been removed upstream from hiawatha and is not supported anymore.
    It is recommended to move to another FastCGI implementation, e.g. PHP-FPM
    (lang/php5).
  
  

Update security/mbedtls to 2.12.0 and bump dependent ports.

MFH:		2018Q3
Security:	https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2018-02

Bump PORTREVISION for ports depending on the canonical version of GCC
in the ports tree (via Mk/bsd.default-versions.mk and lang/gcc) which
has now moved from GCC 6 to GCC 7 by default.

This includes ports
 - featuring USE_GCC=yes or USE_GCC=any,
 - featuring USES=fortran,
 - using Mk/bsd.octave.mk which in turn features USES=fortran, and those
 - with USES=compiler specifying one of openmp, nestedfct, c11, c++0x,
   c++11-lib, c++11-lang, c++14-lang, c++17-lang, or gcc-c++11-lib.

PR:		222542

Update security/mbedtls to 2.9.0 and bump dependent ports.

Update security/mbedtls to 2.8.0 and bump dependent ports.

MFH:		2018Q2
Security:	https://tls.mbed.org/tech-updates/releases/mbedtls-2.8.0-2.7.2-and-2.1.11-released

Update security/mbedtls to 2.7.1.

PR:		226550
MFH:		2018Q1

- Update security/polarssl13 to 1.3.22.
- Update security/mbedtls to 2.7.0 and bump dependent ports.

MFH:		2018Q1
Security:	https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2018-01

www/hiawatha: Update to 10.7

Changes:	https://raw.githubusercontent.com/hsleisink/hiawatha/v10.7/ChangeLog

While here, update WWW.

PR:		223112
Submitted by:	Chris Petrik <christopherpetrik335@student.athenstech.edu>
Approved by:	Chris Hutchinson <portmaster@bsdforge.com> (maintainer)

Bump PORTREVISION for ports depending on the canonical version of GCC
(via Mk/bsd.default-versions.mk and lang/gcc) which has moved from
GCC 5.4 to GCC 6.4 under most circumstances.

This includes ports
 - with USE_GCC=yes or USE_GCC=any,
 - with USES=fortran,
 - using Mk/bsd.octave.mk which in turn features USES=fortran, and
 - with USES=compiler specifying openmp, nestedfct, c++11-lib, c++11-lang,
   c++14-lang, c++0x, c11, or gcc-c++11-lib.

PR:		219275

Bump PORTREVISIONs for ports depending on the canonical version of GCC and
lang/gcc which have moved from GCC 4.9.4 to GCC 5.4 (at least under some
circumstances such as versions of FreeBSD or platforms).

This includes ports
 - with USE_GCC=yes or USE_GCC=any,
 - with USES=fortran,
 - using using Mk/bsd.octave.mk which in turn has USES=fortran, and
 - with USES=compiler specifying openmp, nestedfct, c++11-lib, c++14-lang,
   c++11-lang, c++0x, c11, or gcc-c++11-lib.

PR:		216707

update www/hiawatha to 10.5

o switch to mbed TLS
o SkipCacheCookie option added
o small improvements and bugfixes

PR:		215919
Submitted by:	Chris Hutchinson <portmaster@bsdforge.com> (maintainer)

- Switch to CMAKE_BOOL

Approved by:	portmgr blanket

Bump PORTREVISIONS for ports depending on the canonical version of GCC and
lang/gcc which have moved from GCC 4.8.5 to GCC 4.9.4 (at least under some
circumstances such as versions of FreeBSD or platforms).

In particular that is ports with USE_GCC=yes, USE_GCC=any, or one of
gcc-c++11-lib, openmp, nestedfct, c++11-lib as well as c++14-lang,
c++11-lang, c++0x, c11 requested via USES=compiler.

www/hiawatha: 10.1 -> 10.3

Changes:
   https://www.hiawatha-webserver.org/weblog/112
   https://www.hiawatha-webserver.org/weblog/113

PR:		209240
Submitted by:	Fred <fred@trinitech.co.uk>
Approved by:	Chris Hutchinson <portmaster@BSDforge.com> (maintainer)

Remove NLS, DOCS, EXAMPLES and IPV6 from OPTIONS_DEFAULT, they are enabled by
default anyway and don't need to be listed

Approved by:	portmgr blanket

- Fix trailing whitespace in pkg-messages

Approved by:	portmgr blanket

- Add a fix to enable HideProxy function
- Bump PORTREVISION

PR:		208973
Submitted by:	Fred <fred@trinitech.co.uk>
Approved by:	maintainer
Sponsored by:	Essen Linuxhotel Hackathon 2016

Update to 10.1

PR:		207212
Submitted by:	<w.schwarzenfeld@aon.at>
Approved by:	 Chris Hutchinson (maintainer)

www/hiawatha: pass MAINTAINER from ports@ to submitter

PR:		206747
Submitted by:	Chris Hutchinson <portmaster@bsdforge.com>

www/hiawatha: fix plist to avoid overwriting modified index.html

PR:		206155
Submitted by:	Walter Schwarzenfeld <w.schwarzenfeld@aon.at>

www/hiawatha: fix plist to avoid overwriting modified config files

PR:		206155
Submitted by:	Walter Schwarzenfeld <w.schwarzenfeld@aon.at>, Christoph Lukas
<clukas@firc.de>

www/hiawatha: 9.15 -> 10.0

Changes:
  https://www.hiawatha-webserver.org/changelog
    Usage of Directory sections changed.
    Added support for RFC 5785.
    Added support for GZip compression. Removed the UseGZfile option.
    Added ECDSA support for TLS 1.0 and TLS 1.1.
    Replaced UrlToolkit Expire option with ExpirePeriod in Directory section.
    Replaced IgnoreDotHiawatha option with UseLocalConfig.
    Removed the VolatileObject option.
    Improved SQL injection detection.
    mbed TLS updated to 2.2.0.
    Small improvements.

PR:		206155
Submitted by:	w.schwarzenfeld@aon.at

www/hiawatha: Fix fetch due to upstream subdirectory change

PR:		204861
Submitted by:	Mats Klingberg <maklingberg@gmail.com>

- Switch to options helpers

www/hiawatha: Update to 9.15

 * Update PORTVERSION and distinfo (9.15)
 * Update pkg-plist (new shared library versions)
 * Add LICENSE_FILE

Changes:

  https://www.hiawatha-webserver.org/changelog

Approved by:	unmaintained

www/hiawatha: Reset MAINTAINER

Reset MAINTAINER at current maintainers request.

PR:		203862
Requested by:	Chris Petrik <chris bsdjunk com> (maintainer)

- Update to 9.14
- New maintainer

PR:		ports/202019
Submitted by:	chris@bsdjunk.com

www/hiawatha: Update to 9.13

- Update to 9.13
- Update MASTER_SITES to upstream location

Changes:

  https://www.hiawatha-webserver.org/changelog

PR:		200731
Submitted by:	<cpets list ru>

By request, reset maintainership of multiple ports

PR:		199903
Submitted by:	"Chris Petrik" <chris@bsdjunk.com>

www/hiawatha: update 9.11 -> 9.12

PR:		198096
Submitted by:	Christopher Petrik <chris@bsdjunk.com>

Update to version 9.11

Changelog:
Failure to use the external polarssl and lack of time has broguht me to
release hiawatha using the internal version of polarssl.

hiawatha (9.11) stable; urgency=low
ChallengeClient option added.
UrlToolkit options TotalConnections and OmitRequestLog added.
Improvements to UrlToolkit and reverse proxy swap.
UrlToolkit rules are also applied to PUT and DELETE.
Small improvements.

PR:		197205
Submitted by:	chris@bsdjunk.com (maintainer)

Add a patch (sent upstream) to fix the creation of empty directories with CMake
3.1.0.

No PORTREVISION bump, as there should not be any functional changes. Tested
with CMake 3.0.2.

www/hiawatha: upgrade to 9.8

- upgrade to 9.8

Changelog:

- Added support for websockets. WebSocket option added.
- Added Red Hat package building script (extra/make_redhat_package). Thanks
  to Paul F. Bernal B.
- SSL key and certificate checks added to wigwam.
- Small bugfixes and improvements.

PR:		195474
Differential Revision:	https://reviews.freebsd.org/D1242
Submitted by:	Chris Petrik <chris@bsdjunk.com>
Approved by:	swills (mentor)

www/hiawatha: update to 9.7

- Update to 9.7

Changelog:

hiawatha (9.7) stable; urgency=low *UseToolkit now possible in .hiawatha file
at root of website.
 *Method option added to URL Toolkit.
 *SetResourceLimit option added.
 *ThreadKillRate option added.
 *Improved SQL injection detection.
 *Default value for DHsize set to 2048.
 *PolarSSL updated to version 1.3.8.
 *Memory allocation debugger module added.

Remove useless @cwd

Use /var instead of PREFIX/var

PR:		186431
Approved by:	maintainer timeout (3 weeks)

Update to 9.6.

PR:		191805
Submitted by:	chris@bsdjunk.com (maintainer)

- Update to 9.5
- Change sample file installationt use @sample
- rc script now passes rclint

PR:		ports/189090
Sponsored by:	SupraNet Communications, Inc

- Update from 9.2 to 9.3.1 [1]
- Add stage support
- Convert all "if's" in options helpers

PR:		ports/185254
Submitted by:	Chris Petrik <c.petrik.sosa@gmail.com> (maintaier) [1]

Add NO_STAGE all over the place in preparation for the staging support (cat:
www)

- Remove MAKE_JOBS_SAFE variable

Approved by:	portmgr (bdrewery)

Give my maintainership to Chris Petrik

Update to 9.2

Convert the 2 last USE_CMAKE to USES= cmake

- Update to 9.1
- Update options

PR:		ports/177627
Submitted by:	Daniel Eisele <daniel_eisele@gmx.de>
		Hugo Leisink (author of hiawatha, via mail)
Feature safe:	yes

Update to 9.0

Update to 8.8.1

- convert USE_CMAKE to USES
- while here clean up some ports from CMAKE_VERBOSE, which is intended
  for users

Approved by:	portmgr (miwi)

- Update to 8.7
- Important change: php-fcgi removed

- Update to 8.6:
	- PolarSSL updated to version 1.2. Added support for TLS 1.2 and secure
	  renegotiation.
	- Added support for Server Name Indication.
	- MinSSLversion option added.
	- ServerRoot option removed.
	- Improved MacOS X package building script.
	- Marked php-fcgi as deprecated. Use php-fpm instead.
	- Small bugfixes and improvements.

- Change Makefile header

Feature safe:	yes

- Update to 8.5
- Fix COMMENT

PR:		ports/171720
Submitted by:	nemysis <nemysis@gmx.ch>
Approved by:	cs@ (maintainer)

Update to 8.4

Switch to OptionsNG

- Update to 8.3.2
- Switch to CMAKE
- Fix paths in man pages
- Hiawatha now uses own PolarSSL library

Reviewed by:    Hugo Leisink <hugo@hiawatha-webserver.org> (author of hiawatha)

In the rc.d scripts, change assignments to rcvar to use the
literal name_enable wherever possible, and ${name}_enable
when it's not, to prepare for the demise of set_rcvar().

In cases where I had to hand-edit unusual instances also
modify formatting slightly to be more uniform (and in
some cases, correct). This includes adding some $FreeBSD$
tags, and most importantly moving rcvar= to right after
name= so it's clear that one is derived from the other.

Force commit to link to respective vulnerability which induced previous port
update.

Approved by:    glarkin@ (mentor)
Security:       eef56761-11eb-11e1-bb94-001c140104d4
Feature safe:   yes

Update to 7.8.2
Changelog: http://www.hiawatha-webserver.org/changelog

Approved by:    glarkin@ (mentor)
Feature safe:   yes

Update to 7.8.1
Changelog: http://www.hiawatha-webserver.org/changelog

Approved by:    glarkin@ (mentor, implicit)

Update to 7.7

Approved by:    wen@ (co-mentor)

- Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS)
- Fix all ports that add {CPP,LD}FLAGS to *_ENV to modify flags instead

PR:             157936
Submitted by:   myself
Exp-runs by:    pav
Approved by:    pav

Change maintainer address to my FreeBSD address

Approved by:    wen@ (mentor)

I made a slightly incorrect suggestion about the pidfile optimization,
so quickly fix it before anyone notices. :-/

- Updated to 7.6
  ChangeLog: http://www.hiawatha-webserver.org/changelog
- Tweaked rc.d files with optimizations suggested by dougb

PR:             ports/160037
Submitted by:   C-S <c-s@c-s.li> (maintainer)

- Added rc.d file for php-fcgi (Hiawatha FastCGI daemon)
- Cleanups in hiawatha rc.d file
- Bumped PORTREVISION

PR:             ports/158944
Submitted by:   C-S <c-s@c-s.li> (maintainer)

- Updated to 7.5
  ChangeLog: http://www.hiawatha-webserver.org/changelog

PR:             ports/157439
Submitted by:   C-S <c-s@c-s.li> (maintainer)

- Updated to 7.4.1
  Changes: http://www.hiawatha-webserver.org/changelog
  (removal of local patch for critical bug after upstream distro was fixed
   and new 7.4.1 release made available)

PR:             ports/156391
Submitted by:   C-S <c-s@c-s.li> (maintainer)

- Added patch to circumvent integer overflow in Content-Length header
  parsing, until new upstream package is released.

PR:             ports/155027
Submitted by:   C-S <c-s@c-s.li>
Security:       b13414c9-50ba-11e0-975a-000c29cc39d3
Security:       http://www.hiawatha-webserver.org/weblog/16
Security:       http://secunia.com/advisories/43660/

- Updated to 7.4 (http://www.hiawatha-webserver.org/changelog) [1]
- Revised some informational messages in pkg-plist for clarity

PR:             ports/152094 [1]
Submitted by:   Carlo Strub <c-s at c-s dot li>

- Added the "largefile" option to be passed to the configure script
- Makefile cleanups and option sorting
- Bumped PORTREVISION

PR:             ports/150242
Submitted by:   C-S <c-s at c-s dot li> (maintainer)

- Update to 7.3
- Pass maintainership to submitter

PR:                     ports/147636
Submitted by:           C-S <c-s@c-s.li>
Approved by:            wxs@/itectu@ (mentors, implicit)

- Reset maintainer to ports@FreeBSD.org

Submitted by:   maintainer (via email)
Approved by:    wxs@/itectu@ (mentors, implicit)

- Update to 7.2 [1]
- Install examples conditional on NOPORTEXAMPLES (not NOPORTDOCS) [2]
- Remove MANCOMPRESSED=no since it is default [2]
- Remove redundant installation of manpages [2]

[2]: Added by me; approved by maintainer

PR:             ports/146932 [1]
Submitted by:   C-S <c-s@c-s.li>
Approved by:    Hugo Leisink (maintainer), itetcu@ (mentor)

- Update to 7.1

PR:             ports/145380
Submitted by:   C-S <c-s@c-s.li>
Approved by:    Hugo Leisink <hugo@leisink.net> (maintainer), itetcu (mentor,
implicit)

Begin the process of deprecating sysutils/rc_subr by
s#. %%RC_SUBR%%#. /etc/rc.subr#

Update to 7.0.

PR:     144452
Submitted by:   maintainer
Changes:        http://www.hiawatha-webserver.org/changelog

- Update to 6.19

PR:             ports/141654
Submitted by:   C-S <c-s@c-s.li>
Approved by:    maintainer

- Update to 6.18

PR:             ports/140584
Submitted by:   Hugo Leisink <hugo@leisink.net> (maintainer)

- Update to 6.17

PR:             138385
Submitted by:   Hugo Leisink <hugo@elesoft.xlshosting.net> (maintaine from
another email)

- Don't overwrite configuration files, or index.html.
- s/ETCDIRX/ETCDIR/ in files/pkg-message.in

PR:             ports/136822
Submitted by:   Martin Lesser <ml@bettercom.de>
Approved by:    maintainer timeout

- Update to 6.15

PR:             136406
Submitted by:   Hugo Leisink <hugo@leisink.net> (maintainer)

- Update to 6.14.1.
- Respect PORTEXAMPLES.

PR:             ports/135336
Submitted by:   Hugo Leisink <hugo@leisink.net> (maintainer)

- Update to 6.13
- Fix libxslt dependency

PR:             134688
Submitted by:   Hugo Leisink <hugo@leisink.net>

- Update to 6.11

PR:             ports/130685
Submitted by:   Hugo Leisink <hugo _AT_ leisink _DOT_ net> (maintainer)

- Update to 6.10

PR:             128487
Submitted by:   Hugo Leisink <hugo@leisink.net> (maintainer)

Update CONFIGURE_ARGS for how we pass CONFIGURE_TARGET to configure script.
Specifically, newer autoconf (> 2.13) has different semantic of the
configure target. In short, one should use --build=CONFIGURE_TARGET
instead of CONFIGURE_TARGET directly. Otherwise, you will get a warning
and the old semantic may be removed in later autoconf releases.

To workaround this issue, many ports hack the CONFIGURE_TARGET variable
so that it contains the ``--build='' prefix.

To solve this issue, under the fact that some ports still have
configure script generated by the old autoconf, we use runtime detection
in the do-configure target so that the proper argument can be used.

Changes to Mk/*:
 - Add runtime detection magic in bsd.port.mk

- Update to 6.7

PR:             ports/124159
Submitted by:   Hugo Leisink <hugo at leisink.net> (maintainer)

- Update to 6.3.
- Now using WWWDIR.
- Added new options.

PR:             ports/120107
Submitted by:   Felippe de Meirelles Motta <lippemail@gmail.com>
Approved by:    Hugo Leisink <hugo@leisink.net> (maintainer),
                itetcu (mentor, implicit)

- Update to 6.0

PR:             ports/117538
Submitted by:   Hugo Leisink <hugo@leisink.net> (maintainer)

Update to 5.14

PR:             ports/117157
Submitted by:   Hugo Leisink <hugo (AT) leisink.net>
Approved by:    miwi (mentor)

Update port: www/hiawatha

        Update to 5.11

PR:             ports/115316
Submitted by:   Hugo Leisink <hugo@leisink.net>

- Set --mandir and --infodir in CONFIGURE_ARGS if the configure script
  supports them.  This is determined by running ``configure --help'' in
  do-configure target and set the shell variable _LATE_CONFIGURE_ARGS
  which is then passed to CONFIGURE_ARGS.
- Remove --mandir and --infodir in ports' Makefile where applicable
  Few ports use REINPLACE_CMD to achieve the same effect, remove them too.
- Correct some manual pages location from PREFIX/man to MANPREFIX/man
- Define INFO_PATH where necessary
- Document that .info files are installed in a subdirectory relative to
  PREFIX/INFO_PATH and slightly change add-plist-info to use INFO_PATH and
  subdirectory detection.

PR:             ports/111470
Approved by:    portmgr
Discussed with: stas (Mk/*), gerald (info related stuffs)
Tested by:      pointyhat exp run

- Update to 5.9
- Add WWW entry

PR:             ports/113754
Submitted by:   Hugo Leisink <hugo at leisink.net> (maintainer)

- Update to 5.7

PR:             110059
Submitted by:   Hugo Leisink <hugo@leisink.net> (maintainer)

- Update to 5.6

PR:             ports/109163
Submitted by:   Hugo Leisink <hugo at leisink.org> (maintainer)

- Update to 5.3
- fix check for OpenSSL in the Makefile

PR:             ports/106835
Submitted by:   Hugo Leisink (maintainer)

Hiawatha is an advanced and secure webserver for Unix. It has been written with
'being secure' as its main goal. Hiawatha has many security features that no
other webserver has. Besides being very secure, it's also a very fast
webserver. It's twice as fast as Apache for static content. It supports
load-balanced FastCGI, which makes it fast and scalable for serving CGI.

PR:             ports/106277
Submitted by:   Hugo Leisink <hugo at leisink.net>

15 vulnerabilities affecting 134 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last updated:
2018-08-17 23:13:03