kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/www/apache2/PLIST

1038 lines
38 KiB
Text
Raw Normal View History

Convert @exec/@unexec to @pkgdir or drop it.
2009-06-15 00:00:14 +02:00
@comment $NetBSD: PLIST,v 1.38 2009/06/14 22:00:18 joerg Exp $
Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.
2002-03-06 00:24:06 +01:00
include/httpd/ap_compat.h
- Update to apache 2.0.50 - Add new build def APACHE_DEFAULT_FILES Changes with Apache 2.0.50 *) SECURITY: CAN-2004-0493 (cve.mitre.org) Close a denial of service vulnerability identified by Georgi Guninski which could lead to memory exhaustion with certain input data. [Jeff Trawick] *) mod_cgi: Handle output on stderr during script execution on Unix platforms; preventing deadlock when stderr output fills pipe buffer. Also fixes case where stderr from nph- scripts could be lost. PR 22030, 18348. [Joe Orton, Jeff Trawick] *) mod_alias now emits a warning if it detects overlapping *Alias* directives. [André Malo] *) mod_rewrite no longer turns forward proxy requests into reverse proxy requests. PR 28125 [ast domdv.de, André Malo] *) ap_set_sub_req_protocol and ap_finalize_sub_req_protocol are now exported on Win32 and Netware as well (minor MMN bump). PR 28523. [Edward Rudd <eddie omegaware.com>, André Malo] *) Restore the ability to disable the use of AcceptEx on Win9x systems automatically (broken in 2.0.49). PR 28529. [André Malo] *) <VirtualHost myhost> now applies to all IP addresses for myhost instead of just the first one reported by the resolver. This corrects a regression since 1.3. [Jeff Trawick] *) util_ldap: allow relative paths for LDAPTrustedCA to be resolved against ServerRoot PR#26602 [Brad Nicholes] *) SECURITY: CAN-2004-0488 (cve.mitre.org) mod_ssl: Fix a buffer overflow in the FakeBasicAuth code for a (trusted) client certificate subject DN which exceeds 6K in length. [Joe Orton] *) mod_dav_fs: Fix MKCOL response for missing parent collections, which caused issues for the Eclipse WebDAV extension. PR 29034. [Joe Orton] *) mod_deflate: Fix memory consumption (which was proportional to the response size). PR 29318. [Joe Orton] *) mod_ssl: Log the errors returned on failure to load or initialize a crypto accelerator engine. [Joe Orton] *) Allow RequestHeader directives to be conditional. PR 27951. [Vincent Deffontaines <vincent gryzor.com>, André Malo] *) Allow LimitRequestBody to be reset to unlimited. PR 29106 [André Malo] *) Fix a bunch of cases where the return code of the regex compiler was not checked properly. This affects: mod_setenvif, mod_usertrack, mod_proxy, mod_proxy_ftp and core. PR 28218. [André Malo] *) mod_ssl: Fix a potential segfault in the 'shmcb' session cache for small cache sizes. PR 27751. [Geoff Thorpe <geoff geoffthorpe.net>] *) Remove 2Gb log file size restriction on some 32-bit platforms. PR 13511. [Joe Orton] *) mod_logio no longer removes the EOS bucket. PR 27928. [Bojan Smojver <bojan rexursive.com>] *) htpasswd no longer refuses to process files that contain empty lines. [André Malo] *) Regression from 1.3: At startup, suexec now will be checked for availability, the setuid bit and user root. The works only if httpd is compiled with the shipped APR version (0.9.5). PR 28287. [André Malo] *) Unix MPMs: Stop dropping connections when the file descriptor is at least FD_SETSIZE. [Jeff Trawick] *) Fix handling of IPv6 numeric strings in mod_proxy. [Jeff Trawick] *) mod_isapi: send_response_header() failed to copy status string's last character. PR 20619. [Jesse Pelton <jsp pkc.com>] *) Fix a segfault when requests for shared memory fails and returns NULL. Fix a segfault caused by a lack of bounds checking on the cache. PR 24801. [Graham Leggett] *) Throw an error message if an attempt is made to use the LDAPTrustedCA or LDAPTrustedCAType directives in a VirtualHost. PR 26390 [Brad Nicholes] *) Fix a potential segfault if the bind password in the LDAP cache is NULL. PR 28250. [Jari Ahonen <jah progress.com>] *) Quotes cannot be used around require group and require dn directives, update the documentation to reflect this. Also add quotes around the dn and group within debug messages, to make it more obvious why authentication is failing if quotes are used in error. PR 19304. [Graham Leggett] *) The Microsoft LDAP SDK escapes filters for us, stop util_ldap from escaping filters twice when the backslash character is used. PR 24437. [Jess Holle <jessh ptc.com>] *) Overhaul handling of LDAP error conditions, so that the util_ldap_* functions leave the connections in a sane state after errors have occurred. PR 27748, 17274, 17599, 18661, 21787, 24595, 24683, 27134, 27271 [Graham Leggett] *) mod_ldap calls ldap_simple_bind_s() to validate the user credentials. If the bind fails, the connection is left in an unbound state. Make sure that the ldap connection record is updated to show that the connection is no longer bound. [Brad Nicholes] *) Ensure that lines in the request which are too long are properly terminated before logging. [Tsurutani Naoki <turutani scphys.kyoto-u.ac.jp>] *) Update the bind credentials for the cached LDAP connection to reflect the last bind. This prevents util_ldap from creating unnecessary connections rather than reusing cached connections. [Brad Nicholes] *) mod_isapi: GetServerVariable returned improperly terminated header fields given "ALL_HTTP" or "ALL_RAW". PR 20656. [Jesse Pelton <jsp pkc.com>] *) mod_isapi: GetServerVariable("ALL_RAW") returned the wrong buffer size. PR 20617. [Jesse Pelton <jsp pkc.com>] *) mod_dav: Fix a problem that could cause crashes when manipulating locks on some platforms. [Jeff Trawick] *) mod_headers no longer crashes if an empty header value should be added. [André Malo] *) Fix segfault in mod_expires, which occured under certain circumstances. PR 28047. [André Malo] *) htpasswd: use apr_temp_dir_get() and general cleanup [Guenter Knauf <eflash gmx.net>, Thom May] *) mod_ssl: Fix memory leak in session cache handling. PR 26562 [Madhusudan Mathihalli] *) mod_ssl: Fix potential segfaults when performing SSL shutdown from a pool cleanup. PR 27945. [Joe Orton] *) Add forensic logging module (mod_log_forensic). [Ben Laurie] *) logresolve: Allow size of log line buffer to be overridden at build time (MAXLINE). PR 27793. [Jeff Trawick] *) Fix the comment delimiter in htdbm so that it correctly parses the username comment. Also add a terminate function to allow NetWare to pause the output before the screen is destroyed. [Guenter Knauf <eflash gmx.net>, Brad Nicholes] *) Fix crash when Apache was started with no Listen directives. [Michael Corcoran <mcorcoran warpsolutions.com>] *) core_output_filter: Fix bug that could result in sending garbage over the network when module handlers construct bucket brigades containing multiple file buckets all referencing the same open file descriptor. [Bojan Smojver] *) Fix memory corruption problem with ap_custom_response() function. The core per-dir config would later point to request pool data that would be reused for different purposes on different requests. [Jeff Trawick, based on an old 1.3 patch submitted by Will Lowe] *) Win32: Tweak worker thread accounting routines to eliminate server hang when number of Listen directives in httpd.conf is greater than or equal to the setting of ThreadsPerChild. [Bill Stoddard]
2004-07-14 10:28:51 +02:00
include/httpd/ap_config.h
Sort include files in PLIST. This makes it easier when checking for PLIST changes when updating. No changes to PLIST entries.
2004-10-02 17:37:57 +02:00
include/httpd/ap_config_auto.h
include/httpd/ap_config_layout.h
include/httpd/ap_listen.h
include/httpd/ap_mmn.h
include/httpd/ap_mpm.h
include/httpd/ap_provider.h
include/httpd/ap_regkey.h
include/httpd/ap_release.h
Convert to use PLIST_VARS instead of manually passing "@comment " through PLIST_SUBST to the plist module.
2008-04-13 00:42:57 +02:00
${PLIST.mpm-worker}include/httpd/fdqueue.h
Sort include files in PLIST. This makes it easier when checking for PLIST changes when updating. No changes to PLIST entries.
2004-10-02 17:37:57 +02:00
include/httpd/http_config.h
include/httpd/http_connection.h
include/httpd/http_core.h
include/httpd/http_log.h
include/httpd/http_main.h
include/httpd/http_protocol.h
include/httpd/http_request.h
include/httpd/http_vhost.h
include/httpd/httpd.h
include/httpd/mod_cgi.h
include/httpd/mod_core.h
Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.
2002-03-06 00:24:06 +01:00
include/httpd/mod_dav.h
include/httpd/mod_include.h
-------------------------------------------------------------------------------- Update www/apache2 to 2.0.35, the first stable release of Apache 2.x. Pkgsrc changes include: *) Compiling the included modules statically. Add-ons will be built dynamically. *) Match improvements to www/apache rc.d script. *) Automatically add "Listen 0.0.0.0:80" to the sample config files as the default install of NetBSD is IPv4/IPv6 and we want the default install of Apache to work out-of-the-box. *) Automatically reset the User and Group directives to match the ones for suEXEC in the config files to ease the use of suEXEC in Apache. Changes from version 2.0.32 beta include: *) Small bug fixes across the board. *) Bug fixes to the various MPMs. *) Performance improvements. *) Fixes for mod_include errors on boundary conditions *) Bug fixes for mod_proxy to prevent hangs and for RFC2616 compliance. *) Improvements to mod_dav for improved API and for RFC 3253 compliance *) Improvemants to mod_ssl to support SSL proxy and RSA SSLC 1.x/2.x *) Greatly improve mod_cache (disk/mem) [this is disabled in pkgsrc] *) New scoreboard file implementation that is readable by 3rd-party apps. *) Allow all Perchild directives to accept either numerical UID/GID or logical user/group names. *) Add support for macro expansion within the variable names in <!--#echo--> and <!--#set--> directives *) Implement SSLSessionCache shmht and shmcb. *) New directive ProxyIOBufferSize. Sets the size of the buffer used when reading from a remote HTTP server in proxy. *) Scrap CacheMaxExpireMin and CacheDefaultExpireMin. Change CacheMaxExpire and CacheDefaultExpire to use seconds rather than hours. *) New Directive SSIUndefinedEcho. to change the '(none)' echoed for a undefined variable. *) Introduce PassPhraseDialog "|/path/to/pipe" mechanism to mod_ssl. *) New Directive for mod_proxy: ProxyRemoteMatch. *) Fix IPv6 name-based virtual hosts. *) Introduce AddOutputFilterByType directive.
2002-04-13 23:35:50 +02:00
include/httpd/mod_log_config.h
Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.
2002-03-06 00:24:06 +01:00
include/httpd/mod_proxy.h
- Update to apache 2.0.50 - Add new build def APACHE_DEFAULT_FILES Changes with Apache 2.0.50 *) SECURITY: CAN-2004-0493 (cve.mitre.org) Close a denial of service vulnerability identified by Georgi Guninski which could lead to memory exhaustion with certain input data. [Jeff Trawick] *) mod_cgi: Handle output on stderr during script execution on Unix platforms; preventing deadlock when stderr output fills pipe buffer. Also fixes case where stderr from nph- scripts could be lost. PR 22030, 18348. [Joe Orton, Jeff Trawick] *) mod_alias now emits a warning if it detects overlapping *Alias* directives. [André Malo] *) mod_rewrite no longer turns forward proxy requests into reverse proxy requests. PR 28125 [ast domdv.de, André Malo] *) ap_set_sub_req_protocol and ap_finalize_sub_req_protocol are now exported on Win32 and Netware as well (minor MMN bump). PR 28523. [Edward Rudd <eddie omegaware.com>, André Malo] *) Restore the ability to disable the use of AcceptEx on Win9x systems automatically (broken in 2.0.49). PR 28529. [André Malo] *) <VirtualHost myhost> now applies to all IP addresses for myhost instead of just the first one reported by the resolver. This corrects a regression since 1.3. [Jeff Trawick] *) util_ldap: allow relative paths for LDAPTrustedCA to be resolved against ServerRoot PR#26602 [Brad Nicholes] *) SECURITY: CAN-2004-0488 (cve.mitre.org) mod_ssl: Fix a buffer overflow in the FakeBasicAuth code for a (trusted) client certificate subject DN which exceeds 6K in length. [Joe Orton] *) mod_dav_fs: Fix MKCOL response for missing parent collections, which caused issues for the Eclipse WebDAV extension. PR 29034. [Joe Orton] *) mod_deflate: Fix memory consumption (which was proportional to the response size). PR 29318. [Joe Orton] *) mod_ssl: Log the errors returned on failure to load or initialize a crypto accelerator engine. [Joe Orton] *) Allow RequestHeader directives to be conditional. PR 27951. [Vincent Deffontaines <vincent gryzor.com>, André Malo] *) Allow LimitRequestBody to be reset to unlimited. PR 29106 [André Malo] *) Fix a bunch of cases where the return code of the regex compiler was not checked properly. This affects: mod_setenvif, mod_usertrack, mod_proxy, mod_proxy_ftp and core. PR 28218. [André Malo] *) mod_ssl: Fix a potential segfault in the 'shmcb' session cache for small cache sizes. PR 27751. [Geoff Thorpe <geoff geoffthorpe.net>] *) Remove 2Gb log file size restriction on some 32-bit platforms. PR 13511. [Joe Orton] *) mod_logio no longer removes the EOS bucket. PR 27928. [Bojan Smojver <bojan rexursive.com>] *) htpasswd no longer refuses to process files that contain empty lines. [André Malo] *) Regression from 1.3: At startup, suexec now will be checked for availability, the setuid bit and user root. The works only if httpd is compiled with the shipped APR version (0.9.5). PR 28287. [André Malo] *) Unix MPMs: Stop dropping connections when the file descriptor is at least FD_SETSIZE. [Jeff Trawick] *) Fix handling of IPv6 numeric strings in mod_proxy. [Jeff Trawick] *) mod_isapi: send_response_header() failed to copy status string's last character. PR 20619. [Jesse Pelton <jsp pkc.com>] *) Fix a segfault when requests for shared memory fails and returns NULL. Fix a segfault caused by a lack of bounds checking on the cache. PR 24801. [Graham Leggett] *) Throw an error message if an attempt is made to use the LDAPTrustedCA or LDAPTrustedCAType directives in a VirtualHost. PR 26390 [Brad Nicholes] *) Fix a potential segfault if the bind password in the LDAP cache is NULL. PR 28250. [Jari Ahonen <jah progress.com>] *) Quotes cannot be used around require group and require dn directives, update the documentation to reflect this. Also add quotes around the dn and group within debug messages, to make it more obvious why authentication is failing if quotes are used in error. PR 19304. [Graham Leggett] *) The Microsoft LDAP SDK escapes filters for us, stop util_ldap from escaping filters twice when the backslash character is used. PR 24437. [Jess Holle <jessh ptc.com>] *) Overhaul handling of LDAP error conditions, so that the util_ldap_* functions leave the connections in a sane state after errors have occurred. PR 27748, 17274, 17599, 18661, 21787, 24595, 24683, 27134, 27271 [Graham Leggett] *) mod_ldap calls ldap_simple_bind_s() to validate the user credentials. If the bind fails, the connection is left in an unbound state. Make sure that the ldap connection record is updated to show that the connection is no longer bound. [Brad Nicholes] *) Ensure that lines in the request which are too long are properly terminated before logging. [Tsurutani Naoki <turutani scphys.kyoto-u.ac.jp>] *) Update the bind credentials for the cached LDAP connection to reflect the last bind. This prevents util_ldap from creating unnecessary connections rather than reusing cached connections. [Brad Nicholes] *) mod_isapi: GetServerVariable returned improperly terminated header fields given "ALL_HTTP" or "ALL_RAW". PR 20656. [Jesse Pelton <jsp pkc.com>] *) mod_isapi: GetServerVariable("ALL_RAW") returned the wrong buffer size. PR 20617. [Jesse Pelton <jsp pkc.com>] *) mod_dav: Fix a problem that could cause crashes when manipulating locks on some platforms. [Jeff Trawick] *) mod_headers no longer crashes if an empty header value should be added. [André Malo] *) Fix segfault in mod_expires, which occured under certain circumstances. PR 28047. [André Malo] *) htpasswd: use apr_temp_dir_get() and general cleanup [Guenter Knauf <eflash gmx.net>, Thom May] *) mod_ssl: Fix memory leak in session cache handling. PR 26562 [Madhusudan Mathihalli] *) mod_ssl: Fix potential segfaults when performing SSL shutdown from a pool cleanup. PR 27945. [Joe Orton] *) Add forensic logging module (mod_log_forensic). [Ben Laurie] *) logresolve: Allow size of log line buffer to be overridden at build time (MAXLINE). PR 27793. [Jeff Trawick] *) Fix the comment delimiter in htdbm so that it correctly parses the username comment. Also add a terminate function to allow NetWare to pause the output before the screen is destroyed. [Guenter Knauf <eflash gmx.net>, Brad Nicholes] *) Fix crash when Apache was started with no Listen directives. [Michael Corcoran <mcorcoran warpsolutions.com>] *) core_output_filter: Fix bug that could result in sending garbage over the network when module handlers construct bucket brigades containing multiple file buckets all referencing the same open file descriptor. [Bojan Smojver] *) Fix memory corruption problem with ap_custom_response() function. The core per-dir config would later point to request pool data that would be reused for different purposes on different requests. [Jeff Trawick, based on an old 1.3 patch submitted by Will Lowe] *) Win32: Tweak worker thread accounting routines to eliminate server hang when number of Listen directives in httpd.conf is greater than or equal to the setting of ThreadsPerChild. [Bill Stoddard]
2004-07-14 10:28:51 +02:00
include/httpd/mod_ssl.h
Sort include files in PLIST. This makes it easier when checking for PLIST changes when updating. No changes to PLIST entries.
2004-10-02 17:37:57 +02:00
include/httpd/mod_status.h
include/httpd/mpm.h
include/httpd/mpm_common.h
include/httpd/mpm_default.h
include/httpd/os.h
- Update to apache 2.0.50 - Add new build def APACHE_DEFAULT_FILES Changes with Apache 2.0.50 *) SECURITY: CAN-2004-0493 (cve.mitre.org) Close a denial of service vulnerability identified by Georgi Guninski which could lead to memory exhaustion with certain input data. [Jeff Trawick] *) mod_cgi: Handle output on stderr during script execution on Unix platforms; preventing deadlock when stderr output fills pipe buffer. Also fixes case where stderr from nph- scripts could be lost. PR 22030, 18348. [Joe Orton, Jeff Trawick] *) mod_alias now emits a warning if it detects overlapping *Alias* directives. [André Malo] *) mod_rewrite no longer turns forward proxy requests into reverse proxy requests. PR 28125 [ast domdv.de, André Malo] *) ap_set_sub_req_protocol and ap_finalize_sub_req_protocol are now exported on Win32 and Netware as well (minor MMN bump). PR 28523. [Edward Rudd <eddie omegaware.com>, André Malo] *) Restore the ability to disable the use of AcceptEx on Win9x systems automatically (broken in 2.0.49). PR 28529. [André Malo] *) <VirtualHost myhost> now applies to all IP addresses for myhost instead of just the first one reported by the resolver. This corrects a regression since 1.3. [Jeff Trawick] *) util_ldap: allow relative paths for LDAPTrustedCA to be resolved against ServerRoot PR#26602 [Brad Nicholes] *) SECURITY: CAN-2004-0488 (cve.mitre.org) mod_ssl: Fix a buffer overflow in the FakeBasicAuth code for a (trusted) client certificate subject DN which exceeds 6K in length. [Joe Orton] *) mod_dav_fs: Fix MKCOL response for missing parent collections, which caused issues for the Eclipse WebDAV extension. PR 29034. [Joe Orton] *) mod_deflate: Fix memory consumption (which was proportional to the response size). PR 29318. [Joe Orton] *) mod_ssl: Log the errors returned on failure to load or initialize a crypto accelerator engine. [Joe Orton] *) Allow RequestHeader directives to be conditional. PR 27951. [Vincent Deffontaines <vincent gryzor.com>, André Malo] *) Allow LimitRequestBody to be reset to unlimited. PR 29106 [André Malo] *) Fix a bunch of cases where the return code of the regex compiler was not checked properly. This affects: mod_setenvif, mod_usertrack, mod_proxy, mod_proxy_ftp and core. PR 28218. [André Malo] *) mod_ssl: Fix a potential segfault in the 'shmcb' session cache for small cache sizes. PR 27751. [Geoff Thorpe <geoff geoffthorpe.net>] *) Remove 2Gb log file size restriction on some 32-bit platforms. PR 13511. [Joe Orton] *) mod_logio no longer removes the EOS bucket. PR 27928. [Bojan Smojver <bojan rexursive.com>] *) htpasswd no longer refuses to process files that contain empty lines. [André Malo] *) Regression from 1.3: At startup, suexec now will be checked for availability, the setuid bit and user root. The works only if httpd is compiled with the shipped APR version (0.9.5). PR 28287. [André Malo] *) Unix MPMs: Stop dropping connections when the file descriptor is at least FD_SETSIZE. [Jeff Trawick] *) Fix handling of IPv6 numeric strings in mod_proxy. [Jeff Trawick] *) mod_isapi: send_response_header() failed to copy status string's last character. PR 20619. [Jesse Pelton <jsp pkc.com>] *) Fix a segfault when requests for shared memory fails and returns NULL. Fix a segfault caused by a lack of bounds checking on the cache. PR 24801. [Graham Leggett] *) Throw an error message if an attempt is made to use the LDAPTrustedCA or LDAPTrustedCAType directives in a VirtualHost. PR 26390 [Brad Nicholes] *) Fix a potential segfault if the bind password in the LDAP cache is NULL. PR 28250. [Jari Ahonen <jah progress.com>] *) Quotes cannot be used around require group and require dn directives, update the documentation to reflect this. Also add quotes around the dn and group within debug messages, to make it more obvious why authentication is failing if quotes are used in error. PR 19304. [Graham Leggett] *) The Microsoft LDAP SDK escapes filters for us, stop util_ldap from escaping filters twice when the backslash character is used. PR 24437. [Jess Holle <jessh ptc.com>] *) Overhaul handling of LDAP error conditions, so that the util_ldap_* functions leave the connections in a sane state after errors have occurred. PR 27748, 17274, 17599, 18661, 21787, 24595, 24683, 27134, 27271 [Graham Leggett] *) mod_ldap calls ldap_simple_bind_s() to validate the user credentials. If the bind fails, the connection is left in an unbound state. Make sure that the ldap connection record is updated to show that the connection is no longer bound. [Brad Nicholes] *) Ensure that lines in the request which are too long are properly terminated before logging. [Tsurutani Naoki <turutani scphys.kyoto-u.ac.jp>] *) Update the bind credentials for the cached LDAP connection to reflect the last bind. This prevents util_ldap from creating unnecessary connections rather than reusing cached connections. [Brad Nicholes] *) mod_isapi: GetServerVariable returned improperly terminated header fields given "ALL_HTTP" or "ALL_RAW". PR 20656. [Jesse Pelton <jsp pkc.com>] *) mod_isapi: GetServerVariable("ALL_RAW") returned the wrong buffer size. PR 20617. [Jesse Pelton <jsp pkc.com>] *) mod_dav: Fix a problem that could cause crashes when manipulating locks on some platforms. [Jeff Trawick] *) mod_headers no longer crashes if an empty header value should be added. [André Malo] *) Fix segfault in mod_expires, which occured under certain circumstances. PR 28047. [André Malo] *) htpasswd: use apr_temp_dir_get() and general cleanup [Guenter Knauf <eflash gmx.net>, Thom May] *) mod_ssl: Fix memory leak in session cache handling. PR 26562 [Madhusudan Mathihalli] *) mod_ssl: Fix potential segfaults when performing SSL shutdown from a pool cleanup. PR 27945. [Joe Orton] *) Add forensic logging module (mod_log_forensic). [Ben Laurie] *) logresolve: Allow size of log line buffer to be overridden at build time (MAXLINE). PR 27793. [Jeff Trawick] *) Fix the comment delimiter in htdbm so that it correctly parses the username comment. Also add a terminate function to allow NetWare to pause the output before the screen is destroyed. [Guenter Knauf <eflash gmx.net>, Brad Nicholes] *) Fix crash when Apache was started with no Listen directives. [Michael Corcoran <mcorcoran warpsolutions.com>] *) core_output_filter: Fix bug that could result in sending garbage over the network when module handlers construct bucket brigades containing multiple file buckets all referencing the same open file descriptor. [Bojan Smojver] *) Fix memory corruption problem with ap_custom_response() function. The core per-dir config would later point to request pool data that would be reused for different purposes on different requests. [Jeff Trawick, based on an old 1.3 patch submitted by Will Lowe] *) Win32: Tweak worker thread accounting routines to eliminate server hang when number of Listen directives in httpd.conf is greater than or equal to the setting of ThreadsPerChild. [Bill Stoddard]
2004-07-14 10:28:51 +02:00
include/httpd/pcre.h
Sort include files in PLIST. This makes it easier when checking for PLIST changes when updating. No changes to PLIST entries.
2004-10-02 17:37:57 +02:00
include/httpd/pcreposix.h
Convert to use PLIST_VARS instead of manually passing "@comment " through PLIST_SUBST to the plist module.
2008-04-13 00:42:57 +02:00
${PLIST.mpm-worker}include/httpd/pod.h
Sort include files in PLIST. This makes it easier when checking for PLIST changes when updating. No changes to PLIST entries.
2004-10-02 17:37:57 +02:00
include/httpd/rfc1413.h
include/httpd/scoreboard.h
include/httpd/ssl_expr.h
include/httpd/ssl_expr_parse.h
include/httpd/ssl_toolkit_compat.h
include/httpd/ssl_util_ssl.h
include/httpd/ssl_util_table.h
Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.
2002-03-06 00:24:06 +01:00
include/httpd/unixd.h
Sort include files in PLIST. This makes it easier when checking for PLIST changes when updating. No changes to PLIST entries.
2004-10-02 17:37:57 +02:00
include/httpd/util_cfgtree.h
include/httpd/util_charset.h
include/httpd/util_ebcdic.h
include/httpd/util_filter.h
include/httpd/util_ldap.h
include/httpd/util_md5.h
include/httpd/util_script.h
include/httpd/util_time.h
include/httpd/util_xml.h
Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.
2002-03-06 00:24:06 +01:00
lib/httpd/httpd.exp
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
libexec/cgi-bin/printenv
libexec/cgi-bin/test-cgi
Updated apache to 2.0.40 * SECURITY: [CAN-2002-0661] Close a very significant security hole that applies only to the Win32, OS2 and Netware platforms. Unix was not affected, Cygwin may be affected. Certain URIs will bypass security and allow users to invoke or access any file depending on the system configuration. Without upgrading, a single .conf change will close the vulnerability. Add the following directive in the global server httpd.conf context before any other Alias or Redirect directives; RedirectMatch 400 "\\\.\." Reported by Auriemma Luigi <bugtest@sitoverde.com>. [Brad Nicholes] * SECURITY: Close a path-revealing exposure in multiview type map negotiation (such as the default error documents) where the module would report the full path of the typemapped .var file when multiple documents or no documents could be served based on the mime negotiation. Reported by Auriemma Luigi <bugtest@sitoverde.com>. [CAN-2002-0654] [William Rowe] * SECURITY: Close a path-revealing exposure in cgi/cgid when we fail to invoke a script. The modules would report "couldn't create child process /path-to-script/script.pl" revealing the full path of the script. Reported by Jim Race <jrace@qualys.com>. [CAN-2002-0654] [Bill Stoddard] * More bug fixes (see the CHANGES file)
2002-08-29 16:12:27 +02:00
man/man1/dbmmanage.1
Add missing manpage to PLIST. Bump PKGREVISION for binary package change.
2005-10-23 22:14:43 +02:00
man/man1/htdbm.1
Updated apache to 2.0.40 * SECURITY: [CAN-2002-0661] Close a very significant security hole that applies only to the Win32, OS2 and Netware platforms. Unix was not affected, Cygwin may be affected. Certain URIs will bypass security and allow users to invoke or access any file depending on the system configuration. Without upgrading, a single .conf change will close the vulnerability. Add the following directive in the global server httpd.conf context before any other Alias or Redirect directives; RedirectMatch 400 "\\\.\." Reported by Auriemma Luigi <bugtest@sitoverde.com>. [Brad Nicholes] * SECURITY: Close a path-revealing exposure in multiview type map negotiation (such as the default error documents) where the module would report the full path of the typemapped .var file when multiple documents or no documents could be served based on the mime negotiation. Reported by Auriemma Luigi <bugtest@sitoverde.com>. [CAN-2002-0654] [William Rowe] * SECURITY: Close a path-revealing exposure in cgi/cgid when we fail to invoke a script. The modules would report "couldn't create child process /path-to-script/script.pl" revealing the full path of the script. Reported by Jim Race <jrace@qualys.com>. [CAN-2002-0654] [Bill Stoddard] * More bug fixes (see the CHANGES file)
2002-08-29 16:12:27 +02:00
man/man1/htdigest.1
man/man1/htpasswd.1
man/man8/ab.8
add missing apachectl.8 and httpd.8. from Min Sik Kim in PR pkg/24242.
2004-01-27 09:09:17 +01:00
man/man8/apachectl.8
Updated apache to 2.0.40 * SECURITY: [CAN-2002-0661] Close a very significant security hole that applies only to the Win32, OS2 and Netware platforms. Unix was not affected, Cygwin may be affected. Certain URIs will bypass security and allow users to invoke or access any file depending on the system configuration. Without upgrading, a single .conf change will close the vulnerability. Add the following directive in the global server httpd.conf context before any other Alias or Redirect directives; RedirectMatch 400 "\\\.\." Reported by Auriemma Luigi <bugtest@sitoverde.com>. [Brad Nicholes] * SECURITY: Close a path-revealing exposure in multiview type map negotiation (such as the default error documents) where the module would report the full path of the typemapped .var file when multiple documents or no documents could be served based on the mime negotiation. Reported by Auriemma Luigi <bugtest@sitoverde.com>. [CAN-2002-0654] [William Rowe] * SECURITY: Close a path-revealing exposure in cgi/cgid when we fail to invoke a script. The modules would report "couldn't create child process /path-to-script/script.pl" revealing the full path of the script. Reported by Jim Race <jrace@qualys.com>. [CAN-2002-0654] [Bill Stoddard] * More bug fixes (see the CHANGES file)
2002-08-29 16:12:27 +02:00
man/man8/apxs.8
add missing apachectl.8 and httpd.8. from Min Sik Kim in PR pkg/24242.
2004-01-27 09:09:17 +01:00
man/man8/httpd.8
Updated apache to 2.0.40 * SECURITY: [CAN-2002-0661] Close a very significant security hole that applies only to the Win32, OS2 and Netware platforms. Unix was not affected, Cygwin may be affected. Certain URIs will bypass security and allow users to invoke or access any file depending on the system configuration. Without upgrading, a single .conf change will close the vulnerability. Add the following directive in the global server httpd.conf context before any other Alias or Redirect directives; RedirectMatch 400 "\\\.\." Reported by Auriemma Luigi <bugtest@sitoverde.com>. [Brad Nicholes] * SECURITY: Close a path-revealing exposure in multiview type map negotiation (such as the default error documents) where the module would report the full path of the typemapped .var file when multiple documents or no documents could be served based on the mime negotiation. Reported by Auriemma Luigi <bugtest@sitoverde.com>. [CAN-2002-0654] [William Rowe] * SECURITY: Close a path-revealing exposure in cgi/cgid when we fail to invoke a script. The modules would report "couldn't create child process /path-to-script/script.pl" revealing the full path of the script. Reported by Jim Race <jrace@qualys.com>. [CAN-2002-0654] [Bill Stoddard] * More bug fixes (see the CHANGES file)
2002-08-29 16:12:27 +02:00
man/man8/logresolve.8
man/man8/rotatelogs.8
man/man8/suexec.8
Update www/apache2 to 2.0.32 beta. Pkgsrc changes from the previous version include: *) Move the binaries back into ${PREFIX}/sbin to match the locations for www/apache. *) Build the Apache modules (including mod_ssl) so that apache2 has the same functionality as apache. *) Support shared modules on platforms that support them. Otherwise, link the modules statically into the server. *) Support suEXEC in the same way as for www/apache. *) Honor PKG_SYSCONFDIR. *) Add a rc.d-style control script based on www/apache/files/apache.sh. *) Strongly buildlinkify again after previous changes broke it. Relevant changes from version 2.0.28 beta include: *) A ton of bug fixes in both the main server code and the module code (it _is_ a beta release following a previous beta release). *) Several performance and memory optimizations. *) The Location: response header field, used for external redirect, *must* be an absoluteURI. The Redirect directive tested for that, but RedirectMatch didn't -- it would allow almost anything through. Now it will try to turn an abs_path into an absoluteURI, but it will correctly varf like Redirect if the final redirection target isn't an absoluteURI. *) Add several new mod_proxy directives: ProxyTimeout, ProxyPreserveHost, ProxyPass. *) FTP directory listings are now always retrieved in ASCII mode. The FTP proxy properly escapes URI's and HTML in the generated listing, and escapes the path components when talking to the FTP server. *) Add FileETag directive to allow configurable control of what data are used to form ETag values for file-based URIs. *) Introduced the ForceLanguagePriority directive, to prevent returning MULTIPLE_CHOICES or NONE_ACCEPTABLE in some cases, when using Multiviews.
2002-03-06 00:56:22 +01:00
sbin/ab
sbin/apachectl
sbin/apxs
sbin/checkgid
sbin/dbmmanage
sbin/envvars-std
sbin/htdbm
sbin/htdigest
sbin/htpasswd
sbin/httpd
Update "apr" package to version 0.9.12.2.0.58 and "apache" package to version 2.0.58. Change since Apache relase 2.0.55: - Legal: Restored original years in copyright notices. - mod_cgid: run the get_suexec_identity hook within the request-handler instead of within cgid. Apache#36410. - core: Prevent read of unitialized memory in ap_rgetline_core. Apache#39282. - mod_proxy: Report the proxy server name correctly in the "Via:" header, when UseCanonicalName is Off. Apache#11971. - mod_isapi: Various trivial code-fixes to permit mod_isapi to load and run on Unix. - HTML-escape the Expect error message. Not classed as security as an attacker has no way to influence the Expect header a victim will send to a target site. Reported by Thiago Zaninotti <thiango nstalker.com>. - SECURITY: CVE-2005-3357 (cve.mitre.org) mod_ssl: Fix a possible crash during access control checks if a non-SSL request is processed for an SSL vhost (such as the "HTTP request received on SSL port" error message when an 400 ErrorDocument is configured, or if using "SSLEngine optional"). Apache#37791. - SECURITY: CVE-2005-3352 (cve.mitre.org) mod_imap: Escape untrusted referer header before outputting in HTML to avoid potential cross-site scripting. Change also made to ap_escape_html so we escape quotes. Reported by JPCERT. - Add APR/APR-Util Compiled and Runtime Version numbers to the output of 'httpd -V'. - Ensure that the proper status line is written to the client, fixing incorrect status lines caused by filters which modify r->status without resetting r->status_line, such as the built-in byterange filter. - Default handler: Don't return output filter apr_status_t values. Apache#31759. - mod_speling: Stop crashing with certain non-file requests. - keep the Content-Length header for a HEAD with no response body. Apache#18757 - Modify apr[util] .h detection to avoid breakage on VPATH builds using Solaris make (amoung others) and avoid breakage in ./buildconf when srclib/apr[-util] are symlinks rather than directories proper. - Avoid server-driven negotiation when a CGI script has emitted an explicit "Status:" header. Apache#38070. - mod_log_config now logs all Set-Cookie headers if the %{Set-Cookie}o format is used. Apache#27787. - mod_cache: Correctly handle responses with a 301 status. Apache#37347. - mod_proxy_http: Prevent data corruption of POST request bodies when client accesses proxied resources with SSL. Apache#37145. - Elimiated the NET_TIME filter, restructuring the timeout logic. This provides a working mod_echo on all platforms, and ensures any custom protocol module is at least given an initial timeout value based on the <VirtualHost > context's Timeout directive. - mod_ssl: Correct issue where mod_ssl does not pick up the ssl-unclean-shutdown setting when configured. Apache#34452. - Document the ReceiveBufferSize change done in r157583. - mod_deflate: Merge the Vary header, instead of Setting it. Fixes applications that send the Vary Header themselves. Apache#37559. - mod_dav: Fix a null pointer dereference in an error code path during the handling of MKCOL. - mod_mime_magic: Handle CRLF-format magic files so that it works with the default installation on Windows. - Write message to error log if AuthGroupFile cannot be opened. Apache#37566. - Add ReceiveBufferSize directive to control the TCP receive buffer. - mod_cache: Fix 'Vary: *' behavior to be RFC compliant. Apache#16125. - Remove the base href tag from proxy_ftp, as it breaks relative links for clients not using an Authorization header. - http_request.c: Add missing va_end call. - Add httxt2dbm to support/ for creating RewriteMap DBM Files. - support/check_forensic: Fix temp file usage - Chunk filter: Fix chunk filter to create correct chunks in the case that a flush bucket is surrounded by data buckets. - mod_cgi(d): Remove block on OPTIONS method so that scripts can respond to OPTIONS directly rather than via server default. Apache#15242 - Added new module mod_version, which provides version dependent configuration containers. - Add core version query function (ap_get_server_revision) and accompanying ap_version_t structure (minor MMN bump).
2006-05-07 14:35:27 +02:00
sbin/httxt2dbm
Update www/apache2 to 2.0.32 beta. Pkgsrc changes from the previous version include: *) Move the binaries back into ${PREFIX}/sbin to match the locations for www/apache. *) Build the Apache modules (including mod_ssl) so that apache2 has the same functionality as apache. *) Support shared modules on platforms that support them. Otherwise, link the modules statically into the server. *) Support suEXEC in the same way as for www/apache. *) Honor PKG_SYSCONFDIR. *) Add a rc.d-style control script based on www/apache/files/apache.sh. *) Strongly buildlinkify again after previous changes broke it. Relevant changes from version 2.0.28 beta include: *) A ton of bug fixes in both the main server code and the module code (it _is_ a beta release following a previous beta release). *) Several performance and memory optimizations. *) The Location: response header field, used for external redirect, *must* be an absoluteURI. The Redirect directive tested for that, but RedirectMatch didn't -- it would allow almost anything through. Now it will try to turn an abs_path into an absoluteURI, but it will correctly varf like Redirect if the final redirection target isn't an absoluteURI. *) Add several new mod_proxy directives: ProxyTimeout, ProxyPreserveHost, ProxyPass. *) FTP directory listings are now always retrieved in ASCII mode. The FTP proxy properly escapes URI's and HTML in the generated listing, and escapes the path components when talking to the FTP server. *) Add FileETag directive to allow configurable control of what data are used to form ETag values for file-based URIs. *) Introduced the ForceLanguagePriority directive, to prevent returning MULTIPLE_CHOICES or NONE_ACCEPTABLE in some cases, when using Multiviews.
2002-03-06 00:56:22 +01:00
sbin/logresolve
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
sbin/mkcert
Update www/apache2 to 2.0.32 beta. Pkgsrc changes from the previous version include: *) Move the binaries back into ${PREFIX}/sbin to match the locations for www/apache. *) Build the Apache modules (including mod_ssl) so that apache2 has the same functionality as apache. *) Support shared modules on platforms that support them. Otherwise, link the modules statically into the server. *) Support suEXEC in the same way as for www/apache. *) Honor PKG_SYSCONFDIR. *) Add a rc.d-style control script based on www/apache/files/apache.sh. *) Strongly buildlinkify again after previous changes broke it. Relevant changes from version 2.0.28 beta include: *) A ton of bug fixes in both the main server code and the module code (it _is_ a beta release following a previous beta release). *) Several performance and memory optimizations. *) The Location: response header field, used for external redirect, *must* be an absoluteURI. The Redirect directive tested for that, but RedirectMatch didn't -- it would allow almost anything through. Now it will try to turn an abs_path into an absoluteURI, but it will correctly varf like Redirect if the final redirection target isn't an absoluteURI. *) Add several new mod_proxy directives: ProxyTimeout, ProxyPreserveHost, ProxyPass. *) FTP directory listings are now always retrieved in ASCII mode. The FTP proxy properly escapes URI's and HTML in the generated listing, and escapes the path components when talking to the FTP server. *) Add FileETag directive to allow configurable control of what data are used to form ETag values for file-based URIs. *) Introduced the ForceLanguagePriority directive, to prevent returning MULTIPLE_CHOICES or NONE_ACCEPTABLE in some cases, when using Multiviews.
2002-03-06 00:56:22 +01:00
sbin/rotatelogs
Convert to use PLIST_VARS instead of manually passing "@comment " through PLIST_SUBST to the plist module.
2008-04-13 00:42:57 +02:00
${PLIST.suexec}sbin/suexec
Update www/apache2 to 2.0.32 beta. Pkgsrc changes from the previous version include: *) Move the binaries back into ${PREFIX}/sbin to match the locations for www/apache. *) Build the Apache modules (including mod_ssl) so that apache2 has the same functionality as apache. *) Support shared modules on platforms that support them. Otherwise, link the modules statically into the server. *) Support suEXEC in the same way as for www/apache. *) Honor PKG_SYSCONFDIR. *) Add a rc.d-style control script based on www/apache/files/apache.sh. *) Strongly buildlinkify again after previous changes broke it. Relevant changes from version 2.0.28 beta include: *) A ton of bug fixes in both the main server code and the module code (it _is_ a beta release following a previous beta release). *) Several performance and memory optimizations. *) The Location: response header field, used for external redirect, *must* be an absoluteURI. The Redirect directive tested for that, but RedirectMatch didn't -- it would allow almost anything through. Now it will try to turn an abs_path into an absoluteURI, but it will correctly varf like Redirect if the final redirection target isn't an absoluteURI. *) Add several new mod_proxy directives: ProxyTimeout, ProxyPreserveHost, ProxyPass. *) FTP directory listings are now always retrieved in ASCII mode. The FTP proxy properly escapes URI's and HTML in the generated listing, and escapes the path components when talking to the FTP server. *) Add FileETag directive to allow configurable control of what data are used to form ETag values for file-based URIs. *) Introduced the ForceLanguagePriority directive, to prevent returning MULTIPLE_CHOICES or NONE_ACCEPTABLE in some cases, when using Multiviews.
2002-03-06 00:56:22 +01:00
share/examples/httpd/highperformance-std.conf
share/examples/httpd/httpd-std.conf
share/examples/httpd/magic
share/examples/httpd/mime.types
share/examples/httpd/ssl-std.conf
RCD_SCRIPTS_EXAMPLEDIR is no longer customizable. And always is defined as share/examples/rc.d which was the default before. This rc.d scripts are not automatically added to PLISTs now also. So add to each corresponding PLIST as required. This was discussed on tech-pkg in late January and late April. Todo: remove the RCD_SCRIPTS_EXAMPLEDIR uses in MESSAGES and elsewhere and remove the RCD_SCRIPTS_EXAMPLEDIR itself.
2005-05-02 22:33:57 +02:00
share/examples/rc.d/apache
upgrade to 2.0.48 Changes with Apache 2.0.48 *) SECURITY [CAN-2003-0789]: mod_cgid: Resolve some mishandling of the AF_UNIX socket used to communicate with the cgid daemon and the CGI script. [Jeff Trawick] *) SECURITY [CAN-2003-0542]: Fix buffer overflows in mod_alias and mod_rewrite which occurred if one configured a regular expression with more than 9 captures. [André Malo] *) mod_include: fix segfault which occured if the filename was not set, for example, when processing some error conditions. PR 23836. [Brian Akins <bakins@web.turner.com>, André Malo] *) fix the config parser to support <Foo>..</Foo> containers (no arguments in the opening tag) supported by httpd 1.3. Without this change mod_perl 2.0's <Perl> sections are broken. ["Philippe M. Chiasson" <gozer@cpan.org>] *) mod_cgid: fix a hash table corruption problem which could result in the wrong script being cleaned up at the end of a request. [Jeff Trawick] *) Update httpd-*.conf to be clearer in describing the connection between AddType and AddEncoding for defining the meaning of compressed file extensions. [Roy Fielding] *) mod_rewrite: Don't die silently when failing to open RewriteLogs. PR 23416. [André Malo] *) mod_rewrite: Fix mod_rewrite's support of the [P] option to send rewritten request using "proxy:". The code was adding multiple "proxy:" fields in the rewritten URI. PR: 13946. [Eider Oliveira <eider@bol.com.br>] *) cache_util: Fix ap_check_cache_freshness to check max_age, smax_age, and expires as directed in RFC 2616. [Thomas Castelle tcastelle@generali.fr] *) Ensure that ssl-std.conf is generated at configure time, and switch to using the expanded config variables to work the same as httpd-std.conf PR: 19611 [Thom May] *) mod_ssl: Fix segfaults after renegotiation failure. PR 21370 [Hartmut Keil <Hartmut.Keil@adnovum.ch>] *) mod_autoindex: If a directory contains a file listed in the DirectoryIndex directive, the folder icon is no longer replaced by the icon of that file. PR 9587. [David Shane Holden <dpejesh@yahoo.com>] *) Fixed mod_usertrack to not get false positive matches on the user-tracking cookie's name. PR 16661. [Manni Wood <manniwood@planet-save.com>] *) mod_cache: Fix the cache code so that responses can be cached if they have an Expires header but no Etag or Last-Modified headers. PR 23130. [bjorn@exoweb.net] *) mod_log_config: Fix %b log format to write really "-" when 0 bytes were sent (e.g. with 304 or 204 response codes). [Astrid Keßler] *) Modify ap_get_client_block() to note if it has seen EOS. [Justin Erenkrantz] *) Fix a bug, where mod_deflate sometimes unconditionally compressed the content if the Accept-Encoding header contained only other tokens than "gzip" (such as "deflate"). PR 21523. [Joe Orton, André Malo] *) Avoid an infinite recursion, which occured if the name of an included config file or directory contained a wildcard character. PR 22194. [André Malo] *) mod_ssl: Fix a problem setting variables that represent the client certificate chain. PR 21371 [Jeff Trawick] *) Unix: Handle permissions settings for flock-based mutexes in unixd_set_global|proc_mutex_perms(). Allow the functions to be called for any type of mutex. PR 20312 [Jeff Trawick] *) ab: Work over non-loopback on Unix again. PR 21495. [Jeff Trawick] *) Fix a misleading message from the some of the threaded MPMs when MaxClients has to be lowered due to the setting of ServerLimit. [Jeff Trawick] *) Lower the severity of the "listener thread didn't exit" message to debug, as it is of interest only to developers. PR 9011 [Jeff Trawick] *) MPMs: The bucket brigades subsystem now honors the MaxMemFree setting. [Cliff Woolley, Jean-Jacques Clar] *) Install config.nice into the build/ directory to make minor version upgrades easier. [Joshua Slive] *) Fix mod_deflate so that it does not call deflate() without checking first whether it has something to deflate. (Currently this causes deflate to generate a fatal error according to the zlib spec.) PR 22259. [Stas Bekman] *) mod_ssl: Fix FakeBasicAuth for subrequest. Log an error when an identity spoof is encountered. [Sander Striker] *) mod_rewrite: Ignore RewriteRules in .htaccess files if the directory containing the .htaccess file is requested without a trailing slash. PR 20195. [André Malo] *) ab: Overlong credentials given via command line no longer clobber the buffer. [André Malo] *) mod_deflate: Don't attempt to hold all of the response until we're done. [Justin Erenkrantz] *) Assure that we block properly when reading input bodies with SSL. PR 19242. [David Deaves <David.Deaves@dd.id.au>, William Rowe] *) Update mime.types to include latest IANA and W3C types. [Roy Fielding] *) mod_ext_filter: Set additional environment variables for use by the external filter. PR 20944. [Andrew Ho, Jeff Trawick] *) Fix buildconf errors when libtool version changes. [Jeff Trawick] *) Remember an authenticated user during internal redirects if the redirection target is not access protected and pass it to scripts using the REDIRECT_REMOTE_USER environment variable. PR 10678, 11602. [André Malo] *) mod_include: Fix a trio of bugs that would cause various unusual sequences of parsed bytes to omit portions of the output stream. PR 21095. [Ron Park <ronald.park@cnet.com>, André Malo, Cliff Woolley] *) Update the header token parsing code to allow LWS between the token word and the ':' seperator. [PR 16520] [Kris Verbeeck <kris.verbeeck@advalvas.be>, Nicel KM <mnicel@yahoo.com>] *) Eliminate creation of a temporary table in ap_get_mime_headers_core() [Joe Schaefer <joe+gmane@sunstarsys.com>] *) Added FreeBSD directory layout. PR 21100. [Sander Holthaus <info@orangexl.com>, André Malo] *) Fix NULL-pointer issue in ab when parsing an incomplete or non-HTTP response. PR 21085. [Glenn Nielsen <glenn@apache.org>, André Malo] *) mod_rewrite: Perform child initialization on the rewrite log lock. This fixes a log corruption issue when flock-based serialization is used (e.g., FreeBSD). [Jeff Trawick] *) Don't respect the Server header field as set by modules and CGIs. As with 1.3, for proxy requests any such field is from the origin server; otherwise it will have our server info as controlled by the ServerTokens directive. [Jeff Trawick]
2003-10-28 05:49:32 +01:00
share/httpd/build/config.nice
Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.
2002-03-06 00:24:06 +01:00
share/httpd/build/config_vars.mk
Update www/apache2 to 2.0.32 beta. Pkgsrc changes from the previous version include: *) Move the binaries back into ${PREFIX}/sbin to match the locations for www/apache. *) Build the Apache modules (including mod_ssl) so that apache2 has the same functionality as apache. *) Support shared modules on platforms that support them. Otherwise, link the modules statically into the server. *) Support suEXEC in the same way as for www/apache. *) Honor PKG_SYSCONFDIR. *) Add a rc.d-style control script based on www/apache/files/apache.sh. *) Strongly buildlinkify again after previous changes broke it. Relevant changes from version 2.0.28 beta include: *) A ton of bug fixes in both the main server code and the module code (it _is_ a beta release following a previous beta release). *) Several performance and memory optimizations. *) The Location: response header field, used for external redirect, *must* be an absoluteURI. The Redirect directive tested for that, but RedirectMatch didn't -- it would allow almost anything through. Now it will try to turn an abs_path into an absoluteURI, but it will correctly varf like Redirect if the final redirection target isn't an absoluteURI. *) Add several new mod_proxy directives: ProxyTimeout, ProxyPreserveHost, ProxyPass. *) FTP directory listings are now always retrieved in ASCII mode. The FTP proxy properly escapes URI's and HTML in the generated listing, and escapes the path components when talking to the FTP server. *) Add FileETag directive to allow configurable control of what data are used to form ETag values for file-based URIs. *) Introduced the ForceLanguagePriority directive, to prevent returning MULTIPLE_CHOICES or NONE_ACCEPTABLE in some cases, when using Multiviews.
2002-03-06 00:56:22 +01:00
share/httpd/build/instdso.sh
Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.
2002-03-06 00:24:06 +01:00
share/httpd/build/library.mk
share/httpd/build/libtool
share/httpd/build/ltlib.mk
Fix abs_srcdir definition as done in apache22. Also install mkdir.sh as expected e.g. by www/ap2-fcgid. Bump revision.
2008-07-10 17:18:23 +02:00
share/httpd/build/mkdir.sh
Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.
2002-03-06 00:24:06 +01:00
share/httpd/build/program.mk
share/httpd/build/rules.mk
share/httpd/build/special.mk
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/error/HTTP_BAD_GATEWAY.html.var
share/httpd/error/HTTP_BAD_REQUEST.html.var
share/httpd/error/HTTP_FORBIDDEN.html.var
share/httpd/error/HTTP_GONE.html.var
share/httpd/error/HTTP_INTERNAL_SERVER_ERROR.html.var
share/httpd/error/HTTP_LENGTH_REQUIRED.html.var
share/httpd/error/HTTP_METHOD_NOT_ALLOWED.html.var
share/httpd/error/HTTP_NOT_FOUND.html.var
share/httpd/error/HTTP_NOT_IMPLEMENTED.html.var
share/httpd/error/HTTP_PRECONDITION_FAILED.html.var
share/httpd/error/HTTP_REQUEST_ENTITY_TOO_LARGE.html.var
share/httpd/error/HTTP_REQUEST_TIME_OUT.html.var
share/httpd/error/HTTP_REQUEST_URI_TOO_LARGE.html.var
share/httpd/error/HTTP_SERVICE_UNAVAILABLE.html.var
share/httpd/error/HTTP_UNAUTHORIZED.html.var
share/httpd/error/HTTP_UNSUPPORTED_MEDIA_TYPE.html.var
share/httpd/error/HTTP_VARIANT_ALSO_VARIES.html.var
share/httpd/error/README
share/httpd/error/contact.html.var
Reimport pkgsrc/www/apache-current as pkgsrc/www/apache2.
2002-03-06 00:24:06 +01:00
share/httpd/error/include/bottom.html
share/httpd/error/include/spacer.html
share/httpd/error/include/top.html
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/htdocs/apache_pb.gif
share/httpd/htdocs/apache_pb.png
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/htdocs/apache_pb2.gif
share/httpd/htdocs/apache_pb2.png
share/httpd/htdocs/apache_pb2_ani.gif
share/httpd/htdocs/index.html.ca
share/httpd/htdocs/index.html.cz.iso8859-2
share/httpd/htdocs/index.html.de
share/httpd/htdocs/index.html.dk
share/httpd/htdocs/index.html.ee
share/httpd/htdocs/index.html.el
share/httpd/htdocs/index.html.en
share/httpd/htdocs/index.html.es
share/httpd/htdocs/index.html.et
share/httpd/htdocs/index.html.fr
share/httpd/htdocs/index.html.he.iso8859-8
share/httpd/htdocs/index.html.hr.iso8859-2
share/httpd/htdocs/index.html.it
share/httpd/htdocs/index.html.ja.iso2022-jp
share/httpd/htdocs/index.html.ko.euc-kr
share/httpd/htdocs/index.html.lb.utf8
share/httpd/htdocs/index.html.nl
share/httpd/htdocs/index.html.nn
share/httpd/htdocs/index.html.no
share/httpd/htdocs/index.html.po.iso8859-2
share/httpd/htdocs/index.html.pt
share/httpd/htdocs/index.html.pt-br
share/httpd/htdocs/index.html.ru.cp-1251
share/httpd/htdocs/index.html.ru.cp866
share/httpd/htdocs/index.html.ru.iso-ru
share/httpd/htdocs/index.html.ru.koi8-r
share/httpd/htdocs/index.html.ru.utf8
share/httpd/htdocs/index.html.sv
share/httpd/htdocs/index.html.var
share/httpd/htdocs/index.html.zh-cn.gb2312
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/htdocs/index.html.zh-tw.big5
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/icons/README
Update "apr" package to version 0.9.16.2.0.61 and "apache2" package to version 2.0.61. This update is a bug and security fix release. The following security problem hasn't been fixed in "pkgsrc" before: - CVE-2007-3847: mod_proxy: Prevent reading past the end of a buffer when parsing date-related headers.
2007-09-08 01:11:40 +02:00
share/httpd/icons/README.html
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/icons/a.gif
share/httpd/icons/a.png
share/httpd/icons/alert.black.gif
share/httpd/icons/alert.black.png
share/httpd/icons/alert.red.gif
share/httpd/icons/alert.red.png
share/httpd/icons/apache_pb.gif
share/httpd/icons/apache_pb.png
share/httpd/icons/apache_pb2.gif
share/httpd/icons/apache_pb2.png
share/httpd/icons/apache_pb2_ani.gif
share/httpd/icons/back.gif
share/httpd/icons/back.png
share/httpd/icons/ball.gray.gif
share/httpd/icons/ball.gray.png
share/httpd/icons/ball.red.gif
share/httpd/icons/ball.red.png
share/httpd/icons/binary.gif
share/httpd/icons/binary.png
share/httpd/icons/binhex.gif
share/httpd/icons/binhex.png
share/httpd/icons/blank.gif
share/httpd/icons/blank.png
share/httpd/icons/bomb.gif
share/httpd/icons/bomb.png
share/httpd/icons/box1.gif
share/httpd/icons/box1.png
share/httpd/icons/box2.gif
share/httpd/icons/box2.png
share/httpd/icons/broken.gif
share/httpd/icons/broken.png
share/httpd/icons/burst.gif
share/httpd/icons/burst.png
share/httpd/icons/c.gif
share/httpd/icons/c.png
share/httpd/icons/comp.blue.gif
share/httpd/icons/comp.blue.png
share/httpd/icons/comp.gray.gif
share/httpd/icons/comp.gray.png
share/httpd/icons/compressed.gif
share/httpd/icons/compressed.png
share/httpd/icons/continued.gif
share/httpd/icons/continued.png
share/httpd/icons/dir.gif
share/httpd/icons/dir.png
share/httpd/icons/diskimg.gif
share/httpd/icons/diskimg.png
share/httpd/icons/down.gif
share/httpd/icons/down.png
share/httpd/icons/dvi.gif
share/httpd/icons/dvi.png
share/httpd/icons/f.gif
share/httpd/icons/f.png
share/httpd/icons/folder.gif
share/httpd/icons/folder.open.gif
share/httpd/icons/folder.open.png
share/httpd/icons/folder.png
share/httpd/icons/folder.sec.gif
share/httpd/icons/folder.sec.png
share/httpd/icons/forward.gif
share/httpd/icons/forward.png
share/httpd/icons/generic.gif
share/httpd/icons/generic.png
share/httpd/icons/generic.red.gif
share/httpd/icons/generic.red.png
share/httpd/icons/generic.sec.gif
share/httpd/icons/generic.sec.png
share/httpd/icons/hand.right.gif
share/httpd/icons/hand.right.png
share/httpd/icons/hand.up.gif
share/httpd/icons/hand.up.png
share/httpd/icons/icon.sheet.gif
share/httpd/icons/icon.sheet.png
share/httpd/icons/image1.gif
share/httpd/icons/image1.png
share/httpd/icons/image2.gif
share/httpd/icons/image2.png
share/httpd/icons/image3.gif
share/httpd/icons/image3.png
share/httpd/icons/index.gif
share/httpd/icons/index.png
share/httpd/icons/layout.gif
share/httpd/icons/layout.png
share/httpd/icons/left.gif
share/httpd/icons/left.png
share/httpd/icons/link.gif
share/httpd/icons/link.png
share/httpd/icons/movie.gif
share/httpd/icons/movie.png
share/httpd/icons/p.gif
share/httpd/icons/p.png
share/httpd/icons/patch.gif
share/httpd/icons/patch.png
share/httpd/icons/pdf.gif
share/httpd/icons/pdf.png
share/httpd/icons/pie0.gif
share/httpd/icons/pie0.png
share/httpd/icons/pie1.gif
share/httpd/icons/pie1.png
share/httpd/icons/pie2.gif
share/httpd/icons/pie2.png
share/httpd/icons/pie3.gif
share/httpd/icons/pie3.png
share/httpd/icons/pie4.gif
share/httpd/icons/pie4.png
share/httpd/icons/pie5.gif
share/httpd/icons/pie5.png
share/httpd/icons/pie6.gif
share/httpd/icons/pie6.png
share/httpd/icons/pie7.gif
share/httpd/icons/pie7.png
share/httpd/icons/pie8.gif
share/httpd/icons/pie8.png
share/httpd/icons/portal.gif
share/httpd/icons/portal.png
share/httpd/icons/ps.gif
share/httpd/icons/ps.png
share/httpd/icons/quill.gif
share/httpd/icons/quill.png
share/httpd/icons/right.gif
share/httpd/icons/right.png
share/httpd/icons/screw1.gif
share/httpd/icons/screw1.png
share/httpd/icons/screw2.gif
share/httpd/icons/screw2.png
share/httpd/icons/script.gif
share/httpd/icons/script.png
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/icons/small/back.gif
share/httpd/icons/small/back.png
share/httpd/icons/small/binary.gif
share/httpd/icons/small/binary.png
share/httpd/icons/small/binhex.gif
share/httpd/icons/small/binhex.png
share/httpd/icons/small/blank.gif
share/httpd/icons/small/blank.png
share/httpd/icons/small/broken.gif
share/httpd/icons/small/broken.png
share/httpd/icons/small/burst.gif
share/httpd/icons/small/burst.png
share/httpd/icons/small/comp1.gif
share/httpd/icons/small/comp1.png
share/httpd/icons/small/comp2.gif
share/httpd/icons/small/comp2.png
share/httpd/icons/small/compressed.gif
share/httpd/icons/small/compressed.png
share/httpd/icons/small/continued.gif
share/httpd/icons/small/continued.png
share/httpd/icons/small/dir.gif
share/httpd/icons/small/dir.png
share/httpd/icons/small/dir2.gif
share/httpd/icons/small/dir2.png
share/httpd/icons/small/doc.gif
share/httpd/icons/small/doc.png
share/httpd/icons/small/forward.gif
share/httpd/icons/small/forward.png
share/httpd/icons/small/generic.gif
share/httpd/icons/small/generic.png
share/httpd/icons/small/generic2.gif
share/httpd/icons/small/generic2.png
share/httpd/icons/small/generic3.gif
share/httpd/icons/small/generic3.png
share/httpd/icons/small/image.gif
share/httpd/icons/small/image.png
share/httpd/icons/small/image2.gif
share/httpd/icons/small/image2.png
share/httpd/icons/small/index.gif
share/httpd/icons/small/index.png
share/httpd/icons/small/key.gif
share/httpd/icons/small/key.png
share/httpd/icons/small/movie.gif
share/httpd/icons/small/movie.png
share/httpd/icons/small/patch.gif
share/httpd/icons/small/patch.png
share/httpd/icons/small/ps.gif
share/httpd/icons/small/ps.png
share/httpd/icons/small/rainbow.gif
share/httpd/icons/small/rainbow.png
share/httpd/icons/small/sound.gif
share/httpd/icons/small/sound.png
share/httpd/icons/small/sound2.gif
share/httpd/icons/small/sound2.png
share/httpd/icons/small/tar.gif
share/httpd/icons/small/tar.png
share/httpd/icons/small/text.gif
share/httpd/icons/small/text.png
share/httpd/icons/small/transfer.gif
share/httpd/icons/small/transfer.png
share/httpd/icons/small/unknown.gif
share/httpd/icons/small/unknown.png
share/httpd/icons/small/uu.gif
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/icons/small/uu.png
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/icons/sound1.gif
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/icons/sound1.png
share/httpd/icons/sound2.gif
share/httpd/icons/sound2.png
share/httpd/icons/sphere1.gif
share/httpd/icons/sphere1.png
share/httpd/icons/sphere2.gif
share/httpd/icons/sphere2.png
share/httpd/icons/tar.gif
share/httpd/icons/tar.png
share/httpd/icons/tex.gif
share/httpd/icons/tex.png
share/httpd/icons/text.gif
share/httpd/icons/text.png
share/httpd/icons/transfer.gif
share/httpd/icons/transfer.png
share/httpd/icons/unknown.gif
share/httpd/icons/unknown.png
share/httpd/icons/up.gif
share/httpd/icons/up.png
share/httpd/icons/uu.gif
share/httpd/icons/uu.png
share/httpd/icons/uuencoded.gif
share/httpd/icons/uuencoded.png
share/httpd/icons/world1.gif
share/httpd/icons/world1.png
share/httpd/icons/world2.gif
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/icons/world2.png
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/LICENSE
share/httpd/manual/bind.html
share/httpd/manual/bind.html.en
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/bind.html.es
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/bind.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/bind.html.ja.euc-jp
share/httpd/manual/bind.html.ko.euc-kr
share/httpd/manual/configuring.html
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/configuring.html.de
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/configuring.html.en
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/configuring.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/configuring.html.ja.euc-jp
share/httpd/manual/configuring.html.ko.euc-kr
share/httpd/manual/content-negotiation.html
share/httpd/manual/content-negotiation.html.en
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/content-negotiation.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/content-negotiation.html.ja.euc-jp
share/httpd/manual/content-negotiation.html.ko.euc-kr
share/httpd/manual/custom-error.html
share/httpd/manual/custom-error.html.en
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/custom-error.html.es
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/custom-error.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/custom-error.html.ja.euc-jp
share/httpd/manual/custom-error.html.ko.euc-kr
share/httpd/manual/developer/API.html
share/httpd/manual/developer/API.html.en
share/httpd/manual/developer/debugging.html
share/httpd/manual/developer/debugging.html.en
share/httpd/manual/developer/documenting.html
share/httpd/manual/developer/documenting.html.en
share/httpd/manual/developer/filters.html
share/httpd/manual/developer/filters.html.en
share/httpd/manual/developer/hooks.html
share/httpd/manual/developer/hooks.html.en
share/httpd/manual/developer/index.html
share/httpd/manual/developer/index.html.en
share/httpd/manual/developer/modules.html
share/httpd/manual/developer/modules.html.en
share/httpd/manual/developer/modules.html.ja.euc-jp
share/httpd/manual/developer/request.html
share/httpd/manual/developer/request.html.en
share/httpd/manual/developer/thread_safety.html
share/httpd/manual/developer/thread_safety.html.en
share/httpd/manual/dns-caveats.html
share/httpd/manual/dns-caveats.html.en
Update "apache2" package to version 2.0.55. Patches supplied by Ben Collver. Addresses PR pkg/31817 by Zafer Aydogan.
2005-10-17 12:37:11 +02:00
share/httpd/manual/dns-caveats.html.es
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/dns-caveats.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/dns-caveats.html.ja.euc-jp
share/httpd/manual/dns-caveats.html.ko.euc-kr
share/httpd/manual/dso.html
share/httpd/manual/dso.html.en
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/dso.html.es
share/httpd/manual/dso.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/dso.html.ja.euc-jp
share/httpd/manual/dso.html.ko.euc-kr
share/httpd/manual/env.html
share/httpd/manual/env.html.en
Update "apache2" package to version 2.0.55. Patches supplied by Ben Collver. Addresses PR pkg/31817 by Zafer Aydogan.
2005-10-17 12:37:11 +02:00
share/httpd/manual/env.html.es
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/env.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/env.html.ja.euc-jp
share/httpd/manual/env.html.ko.euc-kr
share/httpd/manual/faq/all_in_one.html
share/httpd/manual/faq/all_in_one.html.en
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/manual/faq/all_in_one.html.ko.euc-kr
share/httpd/manual/faq/error.html
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/faq/error.html.en
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/manual/faq/error.html.ko.euc-kr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/faq/index.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/faq/index.html.en
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/faq/index.html.ko.euc-kr
share/httpd/manual/faq/support.html
share/httpd/manual/faq/support.html.en
share/httpd/manual/faq/support.html.ko.euc-kr
share/httpd/manual/filter.html
share/httpd/manual/filter.html.en
share/httpd/manual/filter.html.es
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/filter.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/filter.html.ja.euc-jp
share/httpd/manual/filter.html.ko.euc-kr
share/httpd/manual/filter.html.ru.koi8-r
share/httpd/manual/glossary.html
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/glossary.html.de
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/glossary.html.en
share/httpd/manual/glossary.html.es
share/httpd/manual/glossary.html.ko.euc-kr
share/httpd/manual/handler.html
share/httpd/manual/handler.html.en
share/httpd/manual/handler.html.es
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/handler.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/handler.html.ja.euc-jp
share/httpd/manual/handler.html.ko.euc-kr
share/httpd/manual/handler.html.ru.koi8-r
share/httpd/manual/howto/auth.html
share/httpd/manual/howto/auth.html.en
Update "apache2" package to version 2.0.55. Patches supplied by Ben Collver. Addresses PR pkg/31817 by Zafer Aydogan.
2005-10-17 12:37:11 +02:00
share/httpd/manual/howto/auth.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/howto/auth.html.ja.euc-jp
share/httpd/manual/howto/auth.html.ko.euc-kr
share/httpd/manual/howto/cgi.html
share/httpd/manual/howto/cgi.html.en
share/httpd/manual/howto/cgi.html.ja.euc-jp
share/httpd/manual/howto/cgi.html.ko.euc-kr
share/httpd/manual/howto/htaccess.html
share/httpd/manual/howto/htaccess.html.en
share/httpd/manual/howto/htaccess.html.ja.euc-jp
share/httpd/manual/howto/htaccess.html.ko.euc-kr
share/httpd/manual/howto/index.html
share/httpd/manual/howto/index.html.en
share/httpd/manual/howto/index.html.ja.euc-jp
share/httpd/manual/howto/index.html.ko.euc-kr
share/httpd/manual/howto/public_html.html
share/httpd/manual/howto/public_html.html.en
share/httpd/manual/howto/public_html.html.ja.euc-jp
share/httpd/manual/howto/public_html.html.ko.euc-kr
share/httpd/manual/howto/ssi.html
share/httpd/manual/howto/ssi.html.en
share/httpd/manual/howto/ssi.html.ja.euc-jp
share/httpd/manual/howto/ssi.html.ko.euc-kr
share/httpd/manual/images/apache_header.gif
share/httpd/manual/images/custom_errordocs.gif
share/httpd/manual/images/custom_errordocs.png
share/httpd/manual/images/down.gif
share/httpd/manual/images/favicon.ico
share/httpd/manual/images/feather.gif
share/httpd/manual/images/feather.png
share/httpd/manual/images/home.gif
share/httpd/manual/images/index.gif
share/httpd/manual/images/left.gif
share/httpd/manual/images/mod_rewrite_fig1.gif
share/httpd/manual/images/mod_rewrite_fig1.png
share/httpd/manual/images/mod_rewrite_fig2.gif
share/httpd/manual/images/mod_rewrite_fig2.png
share/httpd/manual/images/pixel.gif
share/httpd/manual/images/right.gif
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/images/ssl_intro_fig1.gif
share/httpd/manual/images/ssl_intro_fig1.png
share/httpd/manual/images/ssl_intro_fig2.gif
share/httpd/manual/images/ssl_intro_fig2.png
share/httpd/manual/images/ssl_intro_fig3.gif
share/httpd/manual/images/ssl_intro_fig3.png
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/images/sub.gif
share/httpd/manual/images/up.gif
share/httpd/manual/index.html
share/httpd/manual/index.html.de
share/httpd/manual/index.html.en
share/httpd/manual/index.html.es
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/index.html.fr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/index.html.ja.euc-jp
share/httpd/manual/index.html.ko.euc-kr
share/httpd/manual/index.html.ru.koi8-r
share/httpd/manual/install.html
share/httpd/manual/install.html.de
share/httpd/manual/install.html.en
share/httpd/manual/install.html.es
share/httpd/manual/install.html.ja.euc-jp
share/httpd/manual/install.html.ko.euc-kr
share/httpd/manual/install.html.ru.koi8-r
share/httpd/manual/invoking.html
share/httpd/manual/invoking.html.de
share/httpd/manual/invoking.html.en
share/httpd/manual/invoking.html.es
share/httpd/manual/invoking.html.ja.euc-jp
share/httpd/manual/invoking.html.ko.euc-kr
share/httpd/manual/invoking.html.ru.koi8-r
share/httpd/manual/license.html
share/httpd/manual/license.html.en
share/httpd/manual/logs.html
share/httpd/manual/logs.html.en
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/logs.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/logs.html.ja.euc-jp
share/httpd/manual/logs.html.ko.euc-kr
share/httpd/manual/misc/custom_errordocs.html
share/httpd/manual/misc/custom_errordocs.html.en
share/httpd/manual/misc/descriptors.html
share/httpd/manual/misc/descriptors.html.en
share/httpd/manual/misc/fin_wait_2.html
share/httpd/manual/misc/fin_wait_2.html.en
share/httpd/manual/misc/index.html
share/httpd/manual/misc/index.html.en
share/httpd/manual/misc/known_client_problems.html
share/httpd/manual/misc/known_client_problems.html.en
share/httpd/manual/misc/perf-tuning.html
share/httpd/manual/misc/perf-tuning.html.en
share/httpd/manual/misc/perf-tuning.html.ko.euc-kr
share/httpd/manual/misc/relevant_standards.html
share/httpd/manual/misc/relevant_standards.html.en
share/httpd/manual/misc/relevant_standards.html.ko.euc-kr
share/httpd/manual/misc/rewriteguide.html
share/httpd/manual/misc/rewriteguide.html.en
share/httpd/manual/misc/rewriteguide.html.ko.euc-kr
share/httpd/manual/misc/security_tips.html
share/httpd/manual/misc/security_tips.html.en
share/httpd/manual/misc/security_tips.html.ko.euc-kr
share/httpd/manual/misc/tutorials.html
share/httpd/manual/misc/tutorials.html.en
share/httpd/manual/mod/beos.html
share/httpd/manual/mod/beos.html.de
share/httpd/manual/mod/beos.html.en
share/httpd/manual/mod/beos.html.es
share/httpd/manual/mod/beos.html.ko.euc-kr
share/httpd/manual/mod/core.html
share/httpd/manual/mod/core.html.de
share/httpd/manual/mod/core.html.en
Update "apache2" package to version 2.0.55. Patches supplied by Ben Collver. Addresses PR pkg/31817 by Zafer Aydogan.
2005-10-17 12:37:11 +02:00
share/httpd/manual/mod/core.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/core.html.ja.euc-jp
share/httpd/manual/mod/directive-dict.html
share/httpd/manual/mod/directive-dict.html.en
share/httpd/manual/mod/directive-dict.html.es
share/httpd/manual/mod/directive-dict.html.ja.euc-jp
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/mod/directive-dict.html.ko.euc-kr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/directives.html
share/httpd/manual/mod/directives.html.de
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/manual/mod/directives.html.en
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/mod/directives.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/directives.html.ja.euc-jp
share/httpd/manual/mod/directives.html.ko.euc-kr
share/httpd/manual/mod/directives.html.ru.koi8-r
share/httpd/manual/mod/index.html
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/manual/mod/index.html.de
share/httpd/manual/mod/index.html.en
share/httpd/manual/mod/index.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/index.html.ja.euc-jp
share/httpd/manual/mod/index.html.ko.euc-kr
share/httpd/manual/mod/leader.html
- Backout recent APACHE_DEFAULT_FILES build def as some ppl are having problems with it and it also looks like it might be breaking some apache related packages.
2004-07-15 06:38:17 +02:00
share/httpd/manual/mod/leader.html.de
share/httpd/manual/mod/leader.html.en
share/httpd/manual/mod/leader.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/leader.html.ko.euc-kr
share/httpd/manual/mod/mod_access.html
share/httpd/manual/mod/mod_access.html.en
share/httpd/manual/mod/mod_access.html.ja.euc-jp
share/httpd/manual/mod/mod_actions.html
share/httpd/manual/mod/mod_actions.html.en
share/httpd/manual/mod/mod_actions.html.ja.euc-jp
share/httpd/manual/mod/mod_actions.html.ko.euc-kr
share/httpd/manual/mod/mod_alias.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/mod/mod_alias.html.en
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mod_alias.html.ja.euc-jp
share/httpd/manual/mod/mod_alias.html.ko.euc-kr
share/httpd/manual/mod/mod_asis.html
share/httpd/manual/mod/mod_asis.html.en
share/httpd/manual/mod/mod_asis.html.ja.euc-jp
share/httpd/manual/mod/mod_asis.html.ko.euc-kr
share/httpd/manual/mod/mod_auth.html
share/httpd/manual/mod/mod_auth.html.en
share/httpd/manual/mod/mod_auth.html.ja.euc-jp
share/httpd/manual/mod/mod_auth_anon.html
share/httpd/manual/mod/mod_auth_anon.html.en
share/httpd/manual/mod/mod_auth_dbm.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/mod/mod_auth_dbm.html.en
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mod_auth_digest.html
share/httpd/manual/mod/mod_auth_digest.html.en
share/httpd/manual/mod/mod_auth_digest.html.ko.euc-kr
share/httpd/manual/mod/mod_auth_ldap.html
share/httpd/manual/mod/mod_auth_ldap.html.en
share/httpd/manual/mod/mod_autoindex.html
share/httpd/manual/mod/mod_autoindex.html.en
share/httpd/manual/mod/mod_autoindex.html.ja.euc-jp
share/httpd/manual/mod/mod_autoindex.html.ko.euc-kr
share/httpd/manual/mod/mod_cache.html
share/httpd/manual/mod/mod_cache.html.en
share/httpd/manual/mod/mod_cache.html.ko.euc-kr
share/httpd/manual/mod/mod_cern_meta.html
share/httpd/manual/mod/mod_cern_meta.html.en
share/httpd/manual/mod/mod_cern_meta.html.ko.euc-kr
share/httpd/manual/mod/mod_cgi.html
share/httpd/manual/mod/mod_cgi.html.en
share/httpd/manual/mod/mod_cgi.html.ja.euc-jp
share/httpd/manual/mod/mod_cgi.html.ko.euc-kr
share/httpd/manual/mod/mod_cgid.html
share/httpd/manual/mod/mod_cgid.html.en
share/httpd/manual/mod/mod_cgid.html.ja.euc-jp
share/httpd/manual/mod/mod_cgid.html.ko.euc-kr
share/httpd/manual/mod/mod_charset_lite.html
share/httpd/manual/mod/mod_charset_lite.html.en
share/httpd/manual/mod/mod_charset_lite.html.ko.euc-kr
share/httpd/manual/mod/mod_dav.html
share/httpd/manual/mod/mod_dav.html.en
share/httpd/manual/mod/mod_dav.html.ja.euc-jp
share/httpd/manual/mod/mod_dav.html.ko.euc-kr
share/httpd/manual/mod/mod_dav_fs.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/mod/mod_dav_fs.html.en
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mod_dav_fs.html.ja.euc-jp
share/httpd/manual/mod/mod_dav_fs.html.ko.euc-kr
share/httpd/manual/mod/mod_deflate.html
share/httpd/manual/mod/mod_deflate.html.en
share/httpd/manual/mod/mod_deflate.html.ja.euc-jp
share/httpd/manual/mod/mod_deflate.html.ko.euc-kr
share/httpd/manual/mod/mod_dir.html
share/httpd/manual/mod/mod_dir.html.en
share/httpd/manual/mod/mod_dir.html.ja.euc-jp
share/httpd/manual/mod/mod_dir.html.ko.euc-kr
share/httpd/manual/mod/mod_disk_cache.html
share/httpd/manual/mod/mod_disk_cache.html.en
share/httpd/manual/mod/mod_disk_cache.html.ko.euc-kr
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/mod/mod_dumpio.html
share/httpd/manual/mod/mod_dumpio.html.en
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mod_echo.html
share/httpd/manual/mod/mod_echo.html.en
share/httpd/manual/mod/mod_echo.html.ja.euc-jp
share/httpd/manual/mod/mod_echo.html.ko.euc-kr
share/httpd/manual/mod/mod_env.html
share/httpd/manual/mod/mod_env.html.en
share/httpd/manual/mod/mod_env.html.ja.euc-jp
share/httpd/manual/mod/mod_env.html.ko.euc-kr
share/httpd/manual/mod/mod_example.html
share/httpd/manual/mod/mod_example.html.en
share/httpd/manual/mod/mod_example.html.ko.euc-kr
share/httpd/manual/mod/mod_expires.html
share/httpd/manual/mod/mod_expires.html.en
share/httpd/manual/mod/mod_expires.html.ja.euc-jp
share/httpd/manual/mod/mod_expires.html.ko.euc-kr
share/httpd/manual/mod/mod_ext_filter.html
share/httpd/manual/mod/mod_ext_filter.html.en
share/httpd/manual/mod/mod_ext_filter.html.ko.euc-kr
share/httpd/manual/mod/mod_file_cache.html
share/httpd/manual/mod/mod_file_cache.html.en
share/httpd/manual/mod/mod_file_cache.html.ko.euc-kr
share/httpd/manual/mod/mod_headers.html
share/httpd/manual/mod/mod_headers.html.en
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/mod/mod_headers.html.ko.euc-kr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mod_imap.html
share/httpd/manual/mod/mod_imap.html.en
share/httpd/manual/mod/mod_imap.html.ko.euc-kr
share/httpd/manual/mod/mod_include.html
share/httpd/manual/mod/mod_include.html.en
share/httpd/manual/mod/mod_include.html.ja.euc-jp
share/httpd/manual/mod/mod_info.html
share/httpd/manual/mod/mod_info.html.en
share/httpd/manual/mod/mod_info.html.ja.euc-jp
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/mod/mod_info.html.ko.euc-kr
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/mod/mod_isapi.html
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mod_isapi.html.en
share/httpd/manual/mod/mod_isapi.html.ko.euc-kr
share/httpd/manual/mod/mod_ldap.html
share/httpd/manual/mod/mod_ldap.html.en
share/httpd/manual/mod/mod_log_config.html
share/httpd/manual/mod/mod_log_config.html.en
share/httpd/manual/mod/mod_log_config.html.ja.euc-jp
share/httpd/manual/mod/mod_log_config.html.ko.euc-kr
share/httpd/manual/mod/mod_log_forensic.html
share/httpd/manual/mod/mod_log_forensic.html.en
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/mod/mod_logio.html
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mod_logio.html.en
share/httpd/manual/mod/mod_logio.html.ja.euc-jp
share/httpd/manual/mod/mod_logio.html.ko.euc-kr
share/httpd/manual/mod/mod_mem_cache.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/mod/mod_mem_cache.html.en
Update "apr" package to version 0.9.16.2.0.61 and "apache2" package to version 2.0.61. This update is a bug and security fix release. The following security problem hasn't been fixed in "pkgsrc" before: - CVE-2007-3847: mod_proxy: Prevent reading past the end of a buffer when parsing date-related headers.
2007-09-08 01:11:40 +02:00
share/httpd/manual/mod/mod_mem_cache.html.ja.euc-jp
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mod_mem_cache.html.ko.euc-kr
share/httpd/manual/mod/mod_mime.html
share/httpd/manual/mod/mod_mime.html.en
share/httpd/manual/mod/mod_mime.html.ja.euc-jp
share/httpd/manual/mod/mod_mime_magic.html
share/httpd/manual/mod/mod_mime_magic.html.en
share/httpd/manual/mod/mod_negotiation.html
share/httpd/manual/mod/mod_negotiation.html.en
share/httpd/manual/mod/mod_negotiation.html.ja.euc-jp
share/httpd/manual/mod/mod_nw_ssl.html
share/httpd/manual/mod/mod_nw_ssl.html.en
share/httpd/manual/mod/mod_proxy.html
share/httpd/manual/mod/mod_proxy.html.en
share/httpd/manual/mod/mod_proxy_connect.html
share/httpd/manual/mod/mod_proxy_connect.html.en
share/httpd/manual/mod/mod_proxy_ftp.html
share/httpd/manual/mod/mod_proxy_ftp.html.en
share/httpd/manual/mod/mod_proxy_http.html
share/httpd/manual/mod/mod_proxy_http.html.en
share/httpd/manual/mod/mod_rewrite.html
share/httpd/manual/mod/mod_rewrite.html.en
share/httpd/manual/mod/mod_setenvif.html
share/httpd/manual/mod/mod_setenvif.html.en
share/httpd/manual/mod/mod_setenvif.html.ja.euc-jp
share/httpd/manual/mod/mod_setenvif.html.ko.euc-kr
share/httpd/manual/mod/mod_so.html
share/httpd/manual/mod/mod_so.html.en
share/httpd/manual/mod/mod_so.html.ja.euc-jp
share/httpd/manual/mod/mod_so.html.ko.euc-kr
share/httpd/manual/mod/mod_speling.html
share/httpd/manual/mod/mod_speling.html.en
share/httpd/manual/mod/mod_speling.html.ja.euc-jp
share/httpd/manual/mod/mod_speling.html.ko.euc-kr
share/httpd/manual/mod/mod_ssl.html
share/httpd/manual/mod/mod_ssl.html.en
share/httpd/manual/mod/mod_status.html
share/httpd/manual/mod/mod_status.html.en
share/httpd/manual/mod/mod_status.html.ja.euc-jp
share/httpd/manual/mod/mod_status.html.ko.euc-kr
share/httpd/manual/mod/mod_suexec.html
share/httpd/manual/mod/mod_suexec.html.en
share/httpd/manual/mod/mod_suexec.html.ja.euc-jp
share/httpd/manual/mod/mod_suexec.html.ko.euc-kr
share/httpd/manual/mod/mod_unique_id.html
share/httpd/manual/mod/mod_unique_id.html.en
share/httpd/manual/mod/mod_unique_id.html.ja.euc-jp
share/httpd/manual/mod/mod_unique_id.html.ko.euc-kr
share/httpd/manual/mod/mod_userdir.html
share/httpd/manual/mod/mod_userdir.html.en
share/httpd/manual/mod/mod_userdir.html.ja.euc-jp
share/httpd/manual/mod/mod_userdir.html.ko.euc-kr
share/httpd/manual/mod/mod_usertrack.html
share/httpd/manual/mod/mod_usertrack.html.en
Update "apr" package to version 0.9.12.2.0.58 and "apache" package to version 2.0.58. Change since Apache relase 2.0.55: - Legal: Restored original years in copyright notices. - mod_cgid: run the get_suexec_identity hook within the request-handler instead of within cgid. Apache#36410. - core: Prevent read of unitialized memory in ap_rgetline_core. Apache#39282. - mod_proxy: Report the proxy server name correctly in the "Via:" header, when UseCanonicalName is Off. Apache#11971. - mod_isapi: Various trivial code-fixes to permit mod_isapi to load and run on Unix. - HTML-escape the Expect error message. Not classed as security as an attacker has no way to influence the Expect header a victim will send to a target site. Reported by Thiago Zaninotti <thiango nstalker.com>. - SECURITY: CVE-2005-3357 (cve.mitre.org) mod_ssl: Fix a possible crash during access control checks if a non-SSL request is processed for an SSL vhost (such as the "HTTP request received on SSL port" error message when an 400 ErrorDocument is configured, or if using "SSLEngine optional"). Apache#37791. - SECURITY: CVE-2005-3352 (cve.mitre.org) mod_imap: Escape untrusted referer header before outputting in HTML to avoid potential cross-site scripting. Change also made to ap_escape_html so we escape quotes. Reported by JPCERT. - Add APR/APR-Util Compiled and Runtime Version numbers to the output of 'httpd -V'. - Ensure that the proper status line is written to the client, fixing incorrect status lines caused by filters which modify r->status without resetting r->status_line, such as the built-in byterange filter. - Default handler: Don't return output filter apr_status_t values. Apache#31759. - mod_speling: Stop crashing with certain non-file requests. - keep the Content-Length header for a HEAD with no response body. Apache#18757 - Modify apr[util] .h detection to avoid breakage on VPATH builds using Solaris make (amoung others) and avoid breakage in ./buildconf when srclib/apr[-util] are symlinks rather than directories proper. - Avoid server-driven negotiation when a CGI script has emitted an explicit "Status:" header. Apache#38070. - mod_log_config now logs all Set-Cookie headers if the %{Set-Cookie}o format is used. Apache#27787. - mod_cache: Correctly handle responses with a 301 status. Apache#37347. - mod_proxy_http: Prevent data corruption of POST request bodies when client accesses proxied resources with SSL. Apache#37145. - Elimiated the NET_TIME filter, restructuring the timeout logic. This provides a working mod_echo on all platforms, and ensures any custom protocol module is at least given an initial timeout value based on the <VirtualHost > context's Timeout directive. - mod_ssl: Correct issue where mod_ssl does not pick up the ssl-unclean-shutdown setting when configured. Apache#34452. - Document the ReceiveBufferSize change done in r157583. - mod_deflate: Merge the Vary header, instead of Setting it. Fixes applications that send the Vary Header themselves. Apache#37559. - mod_dav: Fix a null pointer dereference in an error code path during the handling of MKCOL. - mod_mime_magic: Handle CRLF-format magic files so that it works with the default installation on Windows. - Write message to error log if AuthGroupFile cannot be opened. Apache#37566. - Add ReceiveBufferSize directive to control the TCP receive buffer. - mod_cache: Fix 'Vary: *' behavior to be RFC compliant. Apache#16125. - Remove the base href tag from proxy_ftp, as it breaks relative links for clients not using an Authorization header. - http_request.c: Add missing va_end call. - Add httxt2dbm to support/ for creating RewriteMap DBM Files. - support/check_forensic: Fix temp file usage - Chunk filter: Fix chunk filter to create correct chunks in the case that a flush bucket is surrounded by data buckets. - mod_cgi(d): Remove block on OPTIONS method so that scripts can respond to OPTIONS directly rather than via server default. Apache#15242 - Added new module mod_version, which provides version dependent configuration containers. - Add core version query function (ap_get_server_revision) and accompanying ap_version_t structure (minor MMN bump).
2006-05-07 14:35:27 +02:00
share/httpd/manual/mod/mod_version.html
share/httpd/manual/mod/mod_version.html.en
share/httpd/manual/mod/mod_version.html.ja.euc-jp
share/httpd/manual/mod/mod_version.html.ko.euc-kr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mod_vhost_alias.html
share/httpd/manual/mod/mod_vhost_alias.html.en
share/httpd/manual/mod/module-dict.html
share/httpd/manual/mod/module-dict.html.en
share/httpd/manual/mod/module-dict.html.ja.euc-jp
share/httpd/manual/mod/module-dict.html.ko.euc-kr
share/httpd/manual/mod/mpm_common.html
share/httpd/manual/mod/mpm_common.html.de
share/httpd/manual/mod/mpm_common.html.en
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/mod/mpm_common.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mod/mpm_common.html.ja.euc-jp
share/httpd/manual/mod/mpm_netware.html
share/httpd/manual/mod/mpm_netware.html.en
share/httpd/manual/mod/mpm_winnt.html
share/httpd/manual/mod/mpm_winnt.html.de
share/httpd/manual/mod/mpm_winnt.html.en
share/httpd/manual/mod/mpm_winnt.html.es
share/httpd/manual/mod/mpm_winnt.html.ja.euc-jp
share/httpd/manual/mod/mpmt_os2.html
share/httpd/manual/mod/mpmt_os2.html.en
share/httpd/manual/mod/perchild.html
share/httpd/manual/mod/perchild.html.en
share/httpd/manual/mod/prefork.html
share/httpd/manual/mod/prefork.html.de
share/httpd/manual/mod/prefork.html.en
share/httpd/manual/mod/prefork.html.es
share/httpd/manual/mod/prefork.html.ja.euc-jp
share/httpd/manual/mod/quickreference.html
share/httpd/manual/mod/quickreference.html.de
share/httpd/manual/mod/quickreference.html.en
share/httpd/manual/mod/quickreference.html.es
share/httpd/manual/mod/quickreference.html.ja.euc-jp
share/httpd/manual/mod/quickreference.html.ko.euc-kr
share/httpd/manual/mod/quickreference.html.ru.koi8-r
share/httpd/manual/mod/threadpool.html
share/httpd/manual/mod/threadpool.html.en
share/httpd/manual/mod/worker.html
share/httpd/manual/mod/worker.html.de
share/httpd/manual/mod/worker.html.en
share/httpd/manual/mod/worker.html.es
share/httpd/manual/mod/worker.html.ja.euc-jp
share/httpd/manual/mpm.html
Changes 2.0.54: *) mod_cache: Add CacheIgnoreHeaders directive. *) mod_ldap: Added the directive LDAPConnectionTimeout to configure the ldap socket connection timeout value. *) Correctly export all mod_dav public functions. *) Add a build script to create a solaris package. *) worker MPM: Fix a problem which could cause httpd processes to remain active after shutdown. *) Unix MPMs: Shut down the server more quickly when child processes are slow to exit. *) Remove formatting characters from ap_log_error() calls. These were escaped as fallout from CAN-2003-0020. *) mod_ssl: If SSLUsername is used, set r->user earlier. *) htdigest: Fix permissions of created files. *) core_input_filter: Move buckets to a persistent brigade instead of creating a new brigade. This stop a memory leak when proxying a Streaming Media Server. *) mod_win32: Ignore both PATH_INFO as well as PATH_TRANSLATED to avoid hiccups from additional path information passed in non-utf-8 format.
2005-04-25 11:13:02 +02:00
share/httpd/manual/mpm.html.de
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/mpm.html.en
share/httpd/manual/mpm.html.es
share/httpd/manual/mpm.html.ja.euc-jp
share/httpd/manual/mpm.html.ko.euc-kr
share/httpd/manual/mpm.html.ru.koi8-r
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/new_features_2_0.html
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/new_features_2_0.html.de
share/httpd/manual/new_features_2_0.html.en
share/httpd/manual/new_features_2_0.html.es
share/httpd/manual/new_features_2_0.html.fr
share/httpd/manual/new_features_2_0.html.ja.euc-jp
share/httpd/manual/new_features_2_0.html.ko.euc-kr
share/httpd/manual/new_features_2_0.html.ru.koi8-r
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/platform/ebcdic.html
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/platform/ebcdic.html.en
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/platform/ebcdic.html.ko.euc-kr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/platform/index.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/platform/index.html.en
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/platform/index.html.ko.euc-kr
share/httpd/manual/platform/netware.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/platform/netware.html.en
share/httpd/manual/platform/netware.html.ko.euc-kr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/platform/perf-hp.html
share/httpd/manual/platform/perf-hp.html.en
share/httpd/manual/platform/perf-hp.html.ko.euc-kr
share/httpd/manual/platform/win_compiling.html
share/httpd/manual/platform/win_compiling.html.en
share/httpd/manual/platform/win_compiling.html.ko.euc-kr
share/httpd/manual/platform/windows.html
share/httpd/manual/platform/windows.html.en
share/httpd/manual/platform/windows.html.ko.euc-kr
share/httpd/manual/programs/ab.html
share/httpd/manual/programs/ab.html.en
share/httpd/manual/programs/ab.html.ko.euc-kr
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/apachectl.html
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/programs/apachectl.html.en
share/httpd/manual/programs/apachectl.html.ko.euc-kr
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/apxs.html
share/httpd/manual/programs/apxs.html.en
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/programs/apxs.html.ko.euc-kr
share/httpd/manual/programs/configure.html
share/httpd/manual/programs/configure.html.en
share/httpd/manual/programs/configure.html.ko.euc-kr
share/httpd/manual/programs/dbmmanage.html
share/httpd/manual/programs/dbmmanage.html.en
share/httpd/manual/programs/dbmmanage.html.ko.euc-kr
Update "apache2" package to version 2.0.55. Patches supplied by Ben Collver. Addresses PR pkg/31817 by Zafer Aydogan.
2005-10-17 12:37:11 +02:00
share/httpd/manual/programs/htdbm.html
share/httpd/manual/programs/htdbm.html.en
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/htdigest.html
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/programs/htdigest.html.en
share/httpd/manual/programs/htdigest.html.ko.euc-kr
share/httpd/manual/programs/htpasswd.html
share/httpd/manual/programs/htpasswd.html.en
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/htpasswd.html.ko.euc-kr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/programs/httpd.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/httpd.html.en
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/programs/httpd.html.ko.euc-kr
share/httpd/manual/programs/index.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/index.html.en
share/httpd/manual/programs/index.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/programs/index.html.ko.euc-kr
share/httpd/manual/programs/index.html.ru.koi8-r
share/httpd/manual/programs/logresolve.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/logresolve.html.en
share/httpd/manual/programs/logresolve.html.ko.euc-kr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/programs/other.html
share/httpd/manual/programs/other.html.en
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/other.html.ko.euc-kr
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/programs/rotatelogs.html
share/httpd/manual/programs/rotatelogs.html.en
share/httpd/manual/programs/rotatelogs.html.ko.euc-kr
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/suexec.html
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/programs/suexec.html.en
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/programs/suexec.html.ko.euc-kr
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/rewrite/index.html
share/httpd/manual/rewrite/index.html.en
share/httpd/manual/rewrite/rewrite_guide.html
share/httpd/manual/rewrite/rewrite_guide.html.en
share/httpd/manual/rewrite/rewrite_guide_advanced.html
share/httpd/manual/rewrite/rewrite_guide_advanced.html.en
share/httpd/manual/rewrite/rewrite_intro.html
share/httpd/manual/rewrite/rewrite_intro.html.en
share/httpd/manual/rewrite/rewrite_tech.html
share/httpd/manual/rewrite/rewrite_tech.html.en
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/sections.html
share/httpd/manual/sections.html.en
Update "apache2" package to version 2.0.55. Patches supplied by Ben Collver. Addresses PR pkg/31817 by Zafer Aydogan.
2005-10-17 12:37:11 +02:00
share/httpd/manual/sections.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/sections.html.ja.euc-jp
share/httpd/manual/sections.html.ko.euc-kr
share/httpd/manual/server-wide.html
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/server-wide.html.en
Update "apache2" package to version 2.0.53. Changes since version 2.0.52: - Fix --with-apr=/usr and/or --with-apr-util=/usr. Problem report 29740. [Max Bowsher <maxb ukf.net>] - mod_proxy: Fix ProxyRemoteMatch directive. Problem report 33170. [Rici Lake <rici ricilake.net>] - mod_proxy: Respect errors reported by pre_connection hooks. [Jeff Trawick] - --with-module can now take more than one module to be statically linked: --with-module=<modtype>:<modfile>,<modtype>:<modfile>,... If the <modtype>-subdirectory doesn't exist it will be created and populated with a standard Makefile.in. [Erik Abele] - Fix the RPM spec file so that an RPM build now works. An RPM build now requires system installations of APR and APR-util. Remove some arbitrary moving around of binaries - the RPM now maps to the ASF build of httpd. [Graham Leggett] - mod_dumpio, an I/O logging/dumping module, added to the modules/expermimental subdirectory. [Jim Jagielski] - mod_auth_ldap: Handle the inconsistent way in which the MS LDAP library handles special characters. Problem report 24437. [Jess Holle] - Win32 MPM: Correct typo in debugging output. [William Rowe] - conf: Remove AddDefaultCharset from the default configuration because setting a site-wide default does more harm than good. Problem report 23421. [Roy Fielding] - Add charset to example CGI scripts. [Roy Fielding] - mod_ssl: fail quickly if SSL connection is aborted rather than making many doomed ap_pass_brigade calls. Problem report 32699. [Joe Orton] - Remove compiled-in upper limit on LimitRequestFieldSize. [Bill Stoddard] - Start keeping track of time-taken-to-process-request again for mod_status if ExtendedStatus is enabled. [Jim Jagielski] - mod_proxy: Handle client-aborted connections correctly. Problem report 32443. [Janne Hietamäki, Joe Orton] - Fix handling of files >2Gb on all platforms (or builds) where apr_off_t is larger than apr_size_t. Problem report 28898. [Joe Orton] - mod_include: Fix bug which could truncate variable expansions of N*64 characters by one byte. Problem report 32985. [Joe Orton] - Correct handling of certain bucket types in ap_save_brigade, fixing possible segfaults in mod_cgi with #include virtual. Problem report 31247. [Joe Orton] - Allow for the use of --with-module=foo:bar where the ./modules/foo directory is local only. Assumes, of course, that the required files are in ./modules/foo, but makes it easier to statically build/log "external" modules. [Jim Jagielski] - Util_ldap: Implemented the util_ldap_cache_getuserdn() API so that ldap authorization only modules have access to the util_ldap user cache without having to require ldap authentication as well. Problem report 31898. [Jari Ahonen jah progress.com, Brad Nicholes] - mod_auth_ldap: Added the directive "Requires ldap-attribute" that allows the module to only authorize a user if the attribute value specified matches the value of the user object. Problem report 31913 [Ryan Morgan <rmorgan pobox.com>] - SECURITY: CAN-2004-0942 (cve.mitre.org) Fix for memory consumption DoS in handling of MIME folded request headers. [Joe Orton] - SECURITY: CAN-2004-0885 (cve.mitre.org) mod_ssl: Fix a bug which allowed an SSLCipherSuite setting to be bypassed during an SSL renegotiation. Problem report 31505. [Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton] - mod_ssl: Fail at startup rather than segfault at runtime if a client cert is configured with an encrypted private key. Problem report 24030. [Joe Orton] - apxs: fix handling of -Wc/-Wl and "-o mod_foo.so". Problem report 31448 [Joe Orton] - mod_ldap: Fix format strings to use %APR_PID_T_FMT instead of %d. [Jeff Trawick] - mod_cache: CacheDisable will only disable the URLs it was meant to disable, not all caching. Problem report 31128. [Edward Rudd <eddie omegaware.com>, Paul Querna] - mod_cache: Try to correctly follow RFC 2616 13.3 on validating stale cache responses. [Justin Erenkrantz] - mod_rewrite: Handle per-location rules when r->filename is unset. Previously this would segfault or simply not match as expected, depending on the platform. [Jeff Trawick] - mod_rewrite: Fix 0 bytes write into random memory position. Problem report 31036. [André Malo] - mod_disk_cache: Do not store aborted content. Problem report 21492. [Rüdiger Plüm <r.pluem t-online.de>] - mod_disk_cache: Correctly store cached content type. Problem report 30278. [Rüdiger Plüm <r.pluem t-online.de>] - mod_ldap: prevent the possiblity of an infinite loop in the LDAP statistics display. Problem report 29216. [Graham Leggett] - mod_ldap: fix a bogus error message to tell the user which file is causing a potential problem with the LDAP shared memory cache. Problem report 31431 [Graham Leggett] - mod_disk_cache: Do not store hop-by-hop headers. [Justin Erenkrantz] - Fix the re-linking issue when purging elements from the LDAP cache Problem report 24801. [Jess Holle <jessh ptc.com>] - mod_disk_cache: Fix races in saving responses. [Justin Erenkrantz] - Fix Expires handling in mod_cache. [Justin Erenkrantz] - Alter mod_expires to run at a different filter priority to allow proper Expires storage by mod_cache. [Justin Erenkrantz]
2005-02-09 15:57:52 +01:00
share/httpd/manual/server-wide.html.es
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/server-wide.html.ja.euc-jp
share/httpd/manual/server-wide.html.ko.euc-kr
share/httpd/manual/sitemap.html
share/httpd/manual/sitemap.html.de
share/httpd/manual/sitemap.html.en
share/httpd/manual/sitemap.html.es
share/httpd/manual/sitemap.html.ja.euc-jp
share/httpd/manual/sitemap.html.ko.euc-kr
share/httpd/manual/ssl/index.html
share/httpd/manual/ssl/index.html.en
share/httpd/manual/ssl/index.html.ja.euc-jp
share/httpd/manual/ssl/ssl_compat.html
share/httpd/manual/ssl/ssl_compat.html.en
share/httpd/manual/ssl/ssl_faq.html
share/httpd/manual/ssl/ssl_faq.html.en
share/httpd/manual/ssl/ssl_howto.html
share/httpd/manual/ssl/ssl_howto.html.en
share/httpd/manual/ssl/ssl_intro.html
share/httpd/manual/ssl/ssl_intro.html.en
share/httpd/manual/ssl/ssl_intro.html.ja.euc-jp
share/httpd/manual/stopping.html
share/httpd/manual/stopping.html.de
share/httpd/manual/stopping.html.en
share/httpd/manual/stopping.html.es
share/httpd/manual/stopping.html.ja.euc-jp
share/httpd/manual/stopping.html.ko.euc-kr
- Update apache to 2.0.51 - Remove patch-as and patch-ah as they are now outdated and included in the src - ok'ed snj@, wiz@ - Thanks to epg@ for final check This version of Apache is principally a bug fix release. Of particular note is that 2.0.51 addresses five security vulnerabilities: An input validation issue in IPv6 literal address parsing which can result in a negative length parameter being passed to memcpy. [CAN-2004-0786] A buffer overflow in configuration file parsing could allow a local user to gain the privileges of a httpd child if the server can be forced to parse a carefully crafted .htaccess file. [CAN-2004-0747] A segfault in mod_ssl which can be triggered by a malicious remote server, if proxying to SSL servers has been configured. [CAN-2004-0751] A potential infinite loop in mod_ssl which could be triggered given particular timing of a connection abort. [CAN-2004-0748] A segfault in mod_dav_fs which can be remotely triggered by an indirect lock refresh request. [CAN-2004-0809] For further details, see http://www.apache.org/dist/httpd/Announcement2.html and http://apache.rmplc.co.uk/httpd/CHANGES_2.0.
2004-09-20 19:19:33 +02:00
share/httpd/manual/stopping.html.ru.koi8-r
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/style/build.properties
share/httpd/manual/style/common.dtd
share/httpd/manual/style/css/manual-chm.css
share/httpd/manual/style/css/manual-loose-100pc.css
share/httpd/manual/style/css/manual-print.css
share/httpd/manual/style/css/manual-zip-100pc.css
share/httpd/manual/style/css/manual-zip.css
share/httpd/manual/style/css/manual.css
share/httpd/manual/style/faq.dtd
Update "apr" package to version 0.9.12.2.0.58 and "apache" package to version 2.0.58. Change since Apache relase 2.0.55: - Legal: Restored original years in copyright notices. - mod_cgid: run the get_suexec_identity hook within the request-handler instead of within cgid. Apache#36410. - core: Prevent read of unitialized memory in ap_rgetline_core. Apache#39282. - mod_proxy: Report the proxy server name correctly in the "Via:" header, when UseCanonicalName is Off. Apache#11971. - mod_isapi: Various trivial code-fixes to permit mod_isapi to load and run on Unix. - HTML-escape the Expect error message. Not classed as security as an attacker has no way to influence the Expect header a victim will send to a target site. Reported by Thiago Zaninotti <thiango nstalker.com>. - SECURITY: CVE-2005-3357 (cve.mitre.org) mod_ssl: Fix a possible crash during access control checks if a non-SSL request is processed for an SSL vhost (such as the "HTTP request received on SSL port" error message when an 400 ErrorDocument is configured, or if using "SSLEngine optional"). Apache#37791. - SECURITY: CVE-2005-3352 (cve.mitre.org) mod_imap: Escape untrusted referer header before outputting in HTML to avoid potential cross-site scripting. Change also made to ap_escape_html so we escape quotes. Reported by JPCERT. - Add APR/APR-Util Compiled and Runtime Version numbers to the output of 'httpd -V'. - Ensure that the proper status line is written to the client, fixing incorrect status lines caused by filters which modify r->status without resetting r->status_line, such as the built-in byterange filter. - Default handler: Don't return output filter apr_status_t values. Apache#31759. - mod_speling: Stop crashing with certain non-file requests. - keep the Content-Length header for a HEAD with no response body. Apache#18757 - Modify apr[util] .h detection to avoid breakage on VPATH builds using Solaris make (amoung others) and avoid breakage in ./buildconf when srclib/apr[-util] are symlinks rather than directories proper. - Avoid server-driven negotiation when a CGI script has emitted an explicit "Status:" header. Apache#38070. - mod_log_config now logs all Set-Cookie headers if the %{Set-Cookie}o format is used. Apache#27787. - mod_cache: Correctly handle responses with a 301 status. Apache#37347. - mod_proxy_http: Prevent data corruption of POST request bodies when client accesses proxied resources with SSL. Apache#37145. - Elimiated the NET_TIME filter, restructuring the timeout logic. This provides a working mod_echo on all platforms, and ensures any custom protocol module is at least given an initial timeout value based on the <VirtualHost > context's Timeout directive. - mod_ssl: Correct issue where mod_ssl does not pick up the ssl-unclean-shutdown setting when configured. Apache#34452. - Document the ReceiveBufferSize change done in r157583. - mod_deflate: Merge the Vary header, instead of Setting it. Fixes applications that send the Vary Header themselves. Apache#37559. - mod_dav: Fix a null pointer dereference in an error code path during the handling of MKCOL. - mod_mime_magic: Handle CRLF-format magic files so that it works with the default installation on Windows. - Write message to error log if AuthGroupFile cannot be opened. Apache#37566. - Add ReceiveBufferSize directive to control the TCP receive buffer. - mod_cache: Fix 'Vary: *' behavior to be RFC compliant. Apache#16125. - Remove the base href tag from proxy_ftp, as it breaks relative links for clients not using an Authorization header. - http_request.c: Add missing va_end call. - Add httxt2dbm to support/ for creating RewriteMap DBM Files. - support/check_forensic: Fix temp file usage - Chunk filter: Fix chunk filter to create correct chunks in the case that a flush bucket is surrounded by data buckets. - mod_cgi(d): Remove block on OPTIONS method so that scripts can respond to OPTIONS directly rather than via server default. Apache#15242 - Added new module mod_version, which provides version dependent configuration containers. - Add core version query function (ap_get_server_revision) and accompanying ap_version_t structure (minor MMN bump).
2006-05-07 14:35:27 +02:00
share/httpd/manual/style/lang.dtd
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/style/latex/atbeginend.sty
share/httpd/manual/style/latex/common.xsl
share/httpd/manual/style/latex/directiveindex.xsl
share/httpd/manual/style/latex/faq.xsl
share/httpd/manual/style/latex/html.xsl
share/httpd/manual/style/latex/latex.xsl
share/httpd/manual/style/latex/manualpage.xsl
share/httpd/manual/style/latex/moduleindex.xsl
share/httpd/manual/style/latex/quickreference.xsl
share/httpd/manual/style/latex/synopsis.xsl
share/httpd/manual/style/manual.de.xsl
share/httpd/manual/style/manual.en.xsl
share/httpd/manual/style/manual.es.xsl
share/httpd/manual/style/manual.fr.xsl
share/httpd/manual/style/manual.ja.xsl
share/httpd/manual/style/manual.ko.xsl
share/httpd/manual/style/manual.ru.xsl
share/httpd/manual/style/manualpage.dtd
share/httpd/manual/style/modulesynopsis.dtd
share/httpd/manual/style/sitemap.dtd
Update "apr" package to version 0.9.12.2.0.58 and "apache" package to version 2.0.58. Change since Apache relase 2.0.55: - Legal: Restored original years in copyright notices. - mod_cgid: run the get_suexec_identity hook within the request-handler instead of within cgid. Apache#36410. - core: Prevent read of unitialized memory in ap_rgetline_core. Apache#39282. - mod_proxy: Report the proxy server name correctly in the "Via:" header, when UseCanonicalName is Off. Apache#11971. - mod_isapi: Various trivial code-fixes to permit mod_isapi to load and run on Unix. - HTML-escape the Expect error message. Not classed as security as an attacker has no way to influence the Expect header a victim will send to a target site. Reported by Thiago Zaninotti <thiango nstalker.com>. - SECURITY: CVE-2005-3357 (cve.mitre.org) mod_ssl: Fix a possible crash during access control checks if a non-SSL request is processed for an SSL vhost (such as the "HTTP request received on SSL port" error message when an 400 ErrorDocument is configured, or if using "SSLEngine optional"). Apache#37791. - SECURITY: CVE-2005-3352 (cve.mitre.org) mod_imap: Escape untrusted referer header before outputting in HTML to avoid potential cross-site scripting. Change also made to ap_escape_html so we escape quotes. Reported by JPCERT. - Add APR/APR-Util Compiled and Runtime Version numbers to the output of 'httpd -V'. - Ensure that the proper status line is written to the client, fixing incorrect status lines caused by filters which modify r->status without resetting r->status_line, such as the built-in byterange filter. - Default handler: Don't return output filter apr_status_t values. Apache#31759. - mod_speling: Stop crashing with certain non-file requests. - keep the Content-Length header for a HEAD with no response body. Apache#18757 - Modify apr[util] .h detection to avoid breakage on VPATH builds using Solaris make (amoung others) and avoid breakage in ./buildconf when srclib/apr[-util] are symlinks rather than directories proper. - Avoid server-driven negotiation when a CGI script has emitted an explicit "Status:" header. Apache#38070. - mod_log_config now logs all Set-Cookie headers if the %{Set-Cookie}o format is used. Apache#27787. - mod_cache: Correctly handle responses with a 301 status. Apache#37347. - mod_proxy_http: Prevent data corruption of POST request bodies when client accesses proxied resources with SSL. Apache#37145. - Elimiated the NET_TIME filter, restructuring the timeout logic. This provides a working mod_echo on all platforms, and ensures any custom protocol module is at least given an initial timeout value based on the <VirtualHost > context's Timeout directive. - mod_ssl: Correct issue where mod_ssl does not pick up the ssl-unclean-shutdown setting when configured. Apache#34452. - Document the ReceiveBufferSize change done in r157583. - mod_deflate: Merge the Vary header, instead of Setting it. Fixes applications that send the Vary Header themselves. Apache#37559. - mod_dav: Fix a null pointer dereference in an error code path during the handling of MKCOL. - mod_mime_magic: Handle CRLF-format magic files so that it works with the default installation on Windows. - Write message to error log if AuthGroupFile cannot be opened. Apache#37566. - Add ReceiveBufferSize directive to control the TCP receive buffer. - mod_cache: Fix 'Vary: *' behavior to be RFC compliant. Apache#16125. - Remove the base href tag from proxy_ftp, as it breaks relative links for clients not using an Authorization header. - http_request.c: Add missing va_end call. - Add httxt2dbm to support/ for creating RewriteMap DBM Files. - support/check_forensic: Fix temp file usage - Chunk filter: Fix chunk filter to create correct chunks in the case that a flush bucket is surrounded by data buckets. - mod_cgi(d): Remove block on OPTIONS method so that scripts can respond to OPTIONS directly rather than via server default. Apache#15242 - Added new module mod_version, which provides version dependent configuration containers. - Add core version query function (ap_get_server_revision) and accompanying ap_version_t structure (minor MMN bump).
2006-05-07 14:35:27 +02:00
share/httpd/manual/style/version.ent
Sort the share/httpd/manual entries in the PLIST. Added 35 share/httpd/manual entries to PLIST. Most are .ko.euc-kr, .ko, ja.euc-jp, and .ja files. I don't know when these were added. Bump PKGREVISION because now package has several more files.
2004-10-02 18:38:38 +02:00
share/httpd/manual/style/xsl/common.xsl
share/httpd/manual/style/xsl/directiveindex.xsl
share/httpd/manual/style/xsl/faq.xsl
share/httpd/manual/style/xsl/hhc.xsl
share/httpd/manual/style/xsl/hhp.xsl
share/httpd/manual/style/xsl/indexpage.xsl
share/httpd/manual/style/xsl/language.xsl
share/httpd/manual/style/xsl/maf.xsl
share/httpd/manual/style/xsl/manualpage.xsl
share/httpd/manual/style/xsl/moduleindex.xsl
share/httpd/manual/style/xsl/nroff.xsl
share/httpd/manual/style/xsl/quickreference.xsl
share/httpd/manual/style/xsl/sitemap.xsl
share/httpd/manual/style/xsl/synopsis.xsl
share/httpd/manual/style/xsl/typemap.xsl
share/httpd/manual/style/xsl/util/modtrans.xsl
share/httpd/manual/suexec.html
share/httpd/manual/suexec.html.en
share/httpd/manual/suexec.html.ja.euc-jp
share/httpd/manual/suexec.html.ko.euc-kr
share/httpd/manual/upgrading.html
share/httpd/manual/upgrading.html.de
share/httpd/manual/upgrading.html.en
share/httpd/manual/upgrading.html.es
share/httpd/manual/upgrading.html.fr
share/httpd/manual/upgrading.html.ja.euc-jp
share/httpd/manual/upgrading.html.ko.euc-kr
share/httpd/manual/upgrading.html.ru.koi8-r
share/httpd/manual/urlmapping.html
share/httpd/manual/urlmapping.html.en
share/httpd/manual/urlmapping.html.ja.euc-jp
share/httpd/manual/urlmapping.html.ko.euc-kr
share/httpd/manual/vhosts/details.html
share/httpd/manual/vhosts/details.html.en
share/httpd/manual/vhosts/details.html.ko.euc-kr
share/httpd/manual/vhosts/examples.html
share/httpd/manual/vhosts/examples.html.en
share/httpd/manual/vhosts/examples.html.ko.euc-kr
share/httpd/manual/vhosts/fd-limits.html
share/httpd/manual/vhosts/fd-limits.html.en
share/httpd/manual/vhosts/fd-limits.html.ja.euc-jp
share/httpd/manual/vhosts/fd-limits.html.ko.euc-kr
share/httpd/manual/vhosts/index.html
share/httpd/manual/vhosts/index.html.de
share/httpd/manual/vhosts/index.html.en
share/httpd/manual/vhosts/index.html.es
share/httpd/manual/vhosts/index.html.ja.euc-jp
share/httpd/manual/vhosts/index.html.ko.euc-kr
share/httpd/manual/vhosts/index.html.ru.koi8-r
share/httpd/manual/vhosts/ip-based.html
share/httpd/manual/vhosts/ip-based.html.en
share/httpd/manual/vhosts/ip-based.html.ko.euc-kr
share/httpd/manual/vhosts/mass.html
share/httpd/manual/vhosts/mass.html.en
share/httpd/manual/vhosts/mass.html.ko.euc-kr
share/httpd/manual/vhosts/name-based.html
share/httpd/manual/vhosts/name-based.html.de
share/httpd/manual/vhosts/name-based.html.en
share/httpd/manual/vhosts/name-based.html.es
share/httpd/manual/vhosts/name-based.html.ja.euc-jp
share/httpd/manual/vhosts/name-based.html.ko.euc-kr
Convert @exec/@unexec to @pkgdir or drop it.
2009-06-15 00:00:14 +02:00
@pkgdir share/httpd/manual/style/lang
Reference in a new issue Copy permalink