| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
| |
PR: 121479
Submitted by: Laurent Frigault
|
| | |
|
| |
|
|
|
|
|
| |
Security: CVE-2007-6388
Security: CVE-2007-5000
Security: CVE-2007-3847
Reported by: Thomas Vogt
|
| |
|
|
| |
- merge Configure patches
|
| |
|
|
|
| |
Security: CVE-2006-5752
Security: CVE-2007-3304
|
| |
|
|
| |
PR: 96703
|
| | |
|
| |
|
|
| |
Security: CVE-2006-3747
|
| |
|
|
|
| |
- update to mod_accel-1.0.34
- remove patch, verfied it is in distribution
|
| |
|
|
|
|
|
| |
We have not checked for this KEYWORD for a long time now, so this
is a complete noop, and thus no PORTREVISION bump. Removing it at
this point is mostly for pedantic reasons, and partly to avoid
perpetuating this anachronism by copy and paste to future scripts.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
base rcorder, hard coded variable values in these scripts
are overriding the values in /etc/rc.conf[.local] (due to
the way that variables from the latter are read at boot time).
Therefore, change the boot scripts to set default values only
if the variable is unset in /etc/rc.conf[.local]. This will
allow the service to start at boot time if it's been enabled
as the user would expect.
This change will be a noop for users who have systems that
have not yet been upgraded to the new rc.d code in the base.
In many cases there are other variables in the scripts that
should get similar treatment, however I did not change
anything other than the _enable lines. I'll leave the rest
up to the maintainers to do as they see fit.
Bump PORTREVISION to make sure that users and packages
pick up this change.
|
| |
|
|
|
|
| |
SECURITY: CVE-2005-3352 (cve.mitre.org)
Obtained from: ports
|
| | |
|
| |
|
|
|
| |
PR: 84150
Submitted by: Bjoern Koenig
|
| | |
|
| |
|
|
|
| |
- de-ugly-ing filename
Obtained from: ports/www/apache13-modperl/files/patch-src:support:apxs.pl
|
| |
|
|
|
|
|
|
| |
that patches rotatelogs to always keep a hardlink to the latest log
file, but without the seconds-since-epoch integer. Just as a
convenience - when developing web apps, it makes it easier to just
check the log file.
Submitted by: Palle Girgensohn
|
| |
|
|
|
|
|
| |
checking a password using "dbmmanage passwdfile check". This patch
fixes this.
(no need to bump PORTVERSION)
Submitted by: Palle Girgensohn
|
| | |
|
| |
|
|
|
| |
CAN-2004-Ã0940
Obtained from: apache-1.3.33
|
| |
|
|
|
| |
PR: 71961
Submitted by: Kenneth Vestergaard Schmidt
|
| |
|
|
| |
mod_proxy buffer overflow CAN-2004-0492
|
| |
|
|
| |
- detect fnmatch.h conficts
|
| |
|
|
| |
Submitted by: nork
|
| |
|
|
|
| |
Pointed out by: Dan Langille <dan@langille.org>
Pointy hat to: nork
|
| |
|
|
|
|
|
|
|
| |
Submitted by: nork
WARNING installing the package will overwrite your "etc/rc.d/apache.sh"
installing from port is safe
- new option WITHOUT_RC_SUBR
|
| |
|
|
|
|
| |
Submitted by: Denis Shaposhniko
- CONFLICTS extended
|
| |
|
|
| |
- cleanup mod_snmp option
|
| |
|
|
|
|
|
|
|
|
| |
http://www.apacheweek.com/features/security-13
Source:
http://cvs.apache.org/viewcvs.cgi/apache-1.3/src/modules/standard/mod_access.c?r1=1.46&r2=1.47
Link from: nectar
Reviewed by: Munechika Sumikawa (IPV6)
|
| |
|
|
|
|
|
| |
PR: 42427
Submitted by: sec@42.org
- fix Usage
|
| |
|
|
|
|
|
|
| |
PR: 43997
Submitted by: zin@the.ne.jp
- update to 2.8.16-1.3.29
- remove the now obsolte fixes.
|
| |
|
|
| |
http://www.apache.org/dist/httpd/Announcement.html
|
| |
|
|
|
|
| |
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=21737
http://marc.theaimsgroup.com/?l=apache-httpd-dev&m=105952652425849&w=2
Suggested by: efortenb@sdccd.cc.ca.us
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
- Fix clobbering ${PREFIX}/www on install and warnings coughing up
on deinstall when ${PREFIX}/www is not empty
- Remove pkg-deinstall
PR: ports/39645, ports/36804
Submitted by: Charles Sprickman <freebsd@fasttrackmonkey.com>,
Peter C. Lai <sirmoo@cowbert.2y.net>
|
| |
|
|
| |
Fixes chunking vulnerability, so now no longer FORBIDDEN.
|
| |
|
|
|
| |
so it can be called within an path or dir.
e.g. in: /usr/local/etc/rc.local/apache.sh
|
| |
|
|
|
| |
- The standard apache distribution now comes with a FreeBSD layout
that is the same as the one that was in files/FreeBSD.layout
|
| | |
|
| |
|
|
|
|
|
| |
because we have OpenSSL in the base system, now. Thus no need to fiddle
around with ${PREFIX}.
Reported by: many
|
| |
|
|
|
| |
PR: 15123
Submitted by: Matt Behrens <matt@zigg.com>
|
| |
|
|
| |
Don't put 'manual' link to the Apache manual.
|
| | |
|
| |
|
|
| |
Submitted by: Masahiro TAKEMURA <mastake@msel.t.u-tokyo.ac.jp>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
space as www/apache13 does, so that other apache-dependendent ports
DTRT regardless of which one is installed.
Nothing concrete (other than we're working on a real cleanup of the
apache ports) has been heard from any of the maintainers. Obviously
that is the best solution, but with 4.2-RELEASE just around the
corner, we have an opportunity here to at least remove a few bogons.
Both times I've raised this issue on -ports, however, there has been
significant interest in the patches, and now plenty of confirmations
that the modifications do not break the port in other ways.
|
| |
|
|
|
| |
Apache 1.3.12 -> 1.3.14
mod_ssl 2.6.6 -> 2.7.1
|
| |
|
|
|
|
|
| |
options `start' and `stop' now (unless I have forgotten any). This allows
us to call the scripts from /etc/rc.shutdown with the correct option.
The (42 or so) ports that already DTRT before are unchanged.
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Upgrade to Apache 1.3.9 and mod_ssl 2.4.0
|
| |
|
|
| |
- Cleaned up the port
|
| |
|
|
|
|
|
| |
- Upgrade to mod_ssl 2.1.7
- Add additional master site
- Add Y2K link
- Make portlint happy
|
|
|
the original Apache 1.3.1 with mod_ssl 2.0.5 (the Apache
Interface to SSLeay).
|
