kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/www/apache/patches/patch-ab
jlam d0abc415ac Update apache to 1.3.14. Changes from version 1.3.12 are listed below. 
The security fixes are:
     * A problem with the Rewrite module, mod_rewrite, allowed access to
       any file on the web server under certain circumstances
     * The handling of Host: headers in mass virtual hosting
       configurations, mod_vhost_alias, could allow access to any file on
       the server
     * If a cgi-bin directory is under the document root, the source to
       the scripts inside it could be sent if using mass virtual hosting

   The main new features include:
     * Support for a directory-based configuration system. If any of the
       configuration directives point to directories instead of files,
       all files in that directory (and in subdirectories) will be also
       parsed as configuration files
     * Support name-based virtual hosting without needing to specify an
       IP address in the Apache configuration file. This enables sites
       that use dynamic IP addresses to support name-based virtual
       hosting as well as allowing identical machines to share a
       configuration file, say in a load-balanced cluster
     * The SetEnvIf and BrowserMatch range of directives are now able to
       be used in .htaccess files.
     * Administrators who are nervous about their full server version
       details being public can use the new keyword 'ProductOnly' in the
       ServerTokens directive. This keyword forces the server to only
       return the string "Apache" as the server version.
     * The new digest authentication module, mod_auth_digest has had a
       number of fixes and upgrades applied
2000-10-13 21:46:45 +00:00

20 lines
520 B
Text
Raw Blame History

$NetBSD: patch-ab,v 1.8 2000/10/13 21:46:45 jlam Exp $
--- conf/httpd.conf-dist.orig Fri Oct 13 15:58:57 2000
+++ conf/httpd.conf-dist
@@ -199,7 +199,14 @@
# the order below without expert advice.
#
# Example:
-# LoadModule foo_module libexec/mod_foo.so
+# LoadModule foo_module lib/httpd/mod_foo.so
+
+<IfDefine SSL>
+LoadFile !libcrypto.so
+LoadFile !libssl.so
+LoadModule ssl_module lib/httpd/mod_ssl.so
+AddModule mod_ssl.c
+</IfDefine>
#
# ExtendedStatus controls whether Apache will generate "full" status
Reference in a new issue View git blame Copy permalink