The FreeBSD Ports Archive
FreeBSD www  : apache13-ssl
Apache secure webserver integrating OpenSSL
Apache + OpenSSL (Apache-SSL)
Uses the public domain SSL implementation known as OpenSSL, integrated
into the Apache server to provide a public domain HTTPS server using
Netscape Secure Sockets Layer (SSL), versions 2 and 3 and TLS version
1. There are licensing issues in connection with use of the OpenSSL
code in the US, and there are ITAR restrictions on export, even though
the OpenSSL code is obtained from an overseas location.
Full details can be found on the web at:
http://www.apache-ssl.org
|
apache13-ssl history
v. 1.121
date: 2007/06/17 16:59:26; author: anders; state: Exp; lines: +1 -1
Remove thttpd from conflicts list, it has a different name for its
passwd program now.
Approved by: maintainers/erwin
v. 1.120
date: 2007/03/18 17:13:58; author: clement; state: Exp; lines: +1 -2
- Update to 1.3.37-1.57
v. 1.119
date: 2006/07/27 20:26:28; author: clement; state: Exp; lines: +1 -1
- Fix security issue in mod_rewrite.
All people using mod_rewrite are strongly encouraged to update.
An off-by-one flaw exists in the Rewrite module, mod_rewrite.
Depending on the manner in which Apache httpd was compiled, this
software defect may result in a vulnerability which, in combination
with certain types of Rewrite rules in the web server configuration
files, could be triggered remotely. For vulnerable builds, the nature
of the vulnerability can be denial of service (crashing of web server
processes) or potentially allow arbitrary code execution.
This issue has been rated as having important security impact
by the Apache HTTP Server Security Team
Updates to latest versions will follow soon.
Notified by: so@ (simon)
Obtained from: Apache Security Team
Security: CVE-2006-3747
v. 1.118
date: 2006/01/16 10:13:26; author: clement; state: Exp; lines: +4 -5
- Remove duplicated mor_dir entries
- Always build (mod_)apache_ssl statically.
- Fix MAN8 logic [1]
Reported by: pointyhat via kris [1]
v. 1.117
date: 2006/01/14 13:59:20; author: clement; state: Exp; lines: +16 -46
- Update to 1.3.34+1.37
- Use new apache framework.
v. 1.116
date: 2005/12/12 20:31:52; author: clement; state: Exp; lines: +1 -1
SECURITY: CVE-2005-3352 (cve.mitre.org)
mod_imap: Escape untrusted referer header before outputting in HTML
to avoid potential cross-site scripting. Change also made to
ap_escape_html so we escape quotes. Reported by JPCERT.
[Mark Cox]
Reported by: simon
v. 1.115
date: 2005/10/03 06:07:19; author: linimon; state: Exp; lines: +0 -1
Remove obsolete mastersite.
Source: distfile survey
v. 1.114
date: 2005/07/26 13:57:42; author: clement; state: Exp; lines: +1 -0
- Fix CAN-2005-2088
Obtained from: Apache repository
v. 1.113
date: 2005/06/06 15:16:30; author: clement; state: Exp; lines: +1 -1
- While I'm here, kick portname from COMMENT
v. 1.112
date: 2005/06/06 15:09:55; author: clement; state: Exp; lines: +1 -1
- En1arge its maintainership
v. 1.111
date: 2004/12/13 21:06:17; author: clement; state: Exp; lines: +1 -0
- move default configuration files to ${EXAMPLESDIR} and keep
${PREFIX}/etc/apache clean.
v. 1.110
date: 2004/12/13 11:16:46; author: clement; state: Exp; lines: +6 -2
- Xmas for apache13-ssl!
Give it a rcNG startup script
Also requested by: sem
v. 1.109
date: 2004/11/12 10:40:51; author: clement; state: Exp; lines: +1 -1
- Update to 1.3.33.1.55
v. 1.108
date: 2004/07/31 11:56:38; author: clement; state: Exp; lines: +1 -2
- update to 1.3.29+1.55
v. 1.107
date: 2004/06/11 12:19:04; author: clement; state: Exp; lines: +1 -1
- Security Fix
mod_proxy buffer overflow CAN-2004-0492
Shamefully stolen from: apache13-mod-ssl port
v. 1.106
date: 2004/04/07 13:47:37; author: clement; state: Exp; lines: +3 -3
- tar -> ${TAR}
While I'm here put --target=httpsd at the right place.
v. 1.105
date: 2004/03/18 20:50:09; author: dinoex; state: Exp; lines: +4 -1
- CONFLICTS extended
v. 1.104
date: 2004/03/08 13:29:47; author: clement; state: Exp; lines: +1 -0
Fix a bug in the parsing of Allow/Deny rules using IP addresses.
http://www.vuxml.org/freebsd/09d418db-70fd-11d8-873f-0020ed76ef5a.html
Reported by: nectar
Obtained from: Apache CVS
v. 1.103
date: 2004/02/06 22:40:34; author: clement; state: Exp; lines: +5 -5
- Update to apache 1.3.29
- Update to patchset 1.53
***** SECURITY FIX *****
http://www.apache-ssl.org/advisory-20040206.txt
Time to ask eik how to add it to portaudit
v. 1.102
date: 2004/01/21 09:32:13; author: clement; state: Exp; lines: +1 -1
Rename patch.
post-patch-conf:httpd.conf-dist.orig =>
post-patch-conf:httpd.conf-dist
Pointed out by: kris,
Koop Mast
v. 1.101
date: 2004/01/13 15:04:48; author: clement; state: Exp; lines: +1 -1
- Update my email address
Approved and reviewed by: erwin (mentor)
v. 1.100
date: 2003/11/20 11:25:42; author: jeh; state: Exp; lines: +2 -3
update apache-ssl patch to 1.52.
apache 1.3.29 is not yet supported.
PR: 59355
Submitted by: Maintainer
v. 1.99
date: 2003/11/12 21:09:27; author: jeh; state: Exp; lines: +3 -1
Here's the patch.
files/patch-FixPatch was missing too.
Submitted by: MAINTAINER
v. 1.98
date: 2003/11/09 00:42:20; author: jeh; state: Exp; lines: +16 -9
Changelog:
- Sync with apache13 layout (and some patches)
- use DOCSDIR
- Add no_zombies.patch
- use DIST_SUBDIR=apache
Removed files:
- files/patch-aq
- files/patch-ar
Added files:
- files/patch-httpd.conf-dist
- files/post-patch-conf:httpd.conf-dist.orig
- files/patch-FixPatch
- files/patch-SSLpatch
- files/patch-Makefile.tmpl
- files/patch-src::modules::standard::mod_auth_db.module
- files/patch-src::support::dbmanage
- files/patch-src::support::log_server_status
- files/patch-configure
PR: 58403
Submitted By: MAINTAINER
v. 1.97
date: 2003/10/25 20:47:37; author: dinoex; state: Exp; lines: +1 -1
- fix spelling in CONFLICTS
v. 1.96
date: 2003/10/14 15:47:28; author: dinoex; state: Exp; lines: +3 -0
- add CONFLICTS
Submitted by: eikemeier@fillmore-labs.com
Approved by: kris
v. 1.95
date: 2003/09/28 07:19:54; author: dinoex; state: Exp; lines: +64 -18
- Update to 1.3.28.1.49.
- Add suexec support
- Misc changes
- Add a footnote for users, to announce them that next version
will be a complete resync with apache13 ports layout.
PR: 57300
Submitted by: sheepkiller@cultdeadsheep.org
v. 1.94
date: 2003/09/24 17:26:47; author: dinoex; state: Exp; lines: +1 -1
- change ECHO -> ECHO_CMD
PR: 56847
v. 1.93
date: 2003/09/06 21:20:44; author: dinoex; state: Exp; lines: +1 -14
- drop defunctional MASTER_SITES
v. 1.92
date: 2003/08/30 08:02:23; author: dinoex; state: Exp; lines: +2 -2
- change YES -> yes
v. 1.91
date: 2003/08/28 15:38:35; author: dinoex; state: Exp; lines: +27 -28
- use hook for bsd.openssl.mk
- Cleanup Makefile
v. 1.90
date: 2003/04/05 06:55:55; author: dinoex; state: Exp; lines: +1 -1
- caption in MAINTAINER
v. 1.89
date: 2003/04/03 19:39:55; author: dinoex; state: Exp; lines: +1 -1
- use bsd.openssl.mk
v. 1.88
date: 2003/02/20 19:15:22; author: knu; state: Exp; lines: +1 -0
De-pkg-comment.
v. 1.87
date: 2003/02/13 15:04:03; author: naddy; state: Exp; lines: +1 -6
Use MASTER_SITE_APACHE*.
PR: 47984
Submitted by: Kimura Fuyuki
v. 1.86
date: 2003/01/27 17:05:36; author: dinoex; state: Exp; lines: +6 -3
- Use user and group "www"
- fix PLIST
- add patch from ports/36363 (from ryan@servercity.com)
- verify ports/36361
- fix ports/36364
v. 1.85
date: 2003/01/20 18:06:38; author: dinoex; state: Exp; lines: +1 -1
- update SSL support.
defaults to openssl port (now 0.9.6.h)
New options:
use the lastest version (now 0.9.7)
USE_OPENSSL_BETA=yes
use the base version with
USE_OPENSSL_BASE=yes
v. 1.84
date: 2002/11/10 16:48:20; author: lioux; state: Exp; lines: +0 -2
o Rollback PORTCOMMENT modifications while this feature's implementation
is better studied
o Turn PORTCOMMENT variable in Makefile back into pkg-comment files
Approved by: kris (portmgr hat),
portmgr, re (silence)
v. 1.83
date: 2002/11/06 22:47:12; author: adamw; state: Exp; lines: +2 -0
Use PORTCOMMENT in the Makefile, and whack the pkg-comment.
Approved by: pat
v. 1.82
date: 2002/11/06 16:01:59; author: joerg; state: Exp; lines: +0 -2
Unmark this port from being forbidden; the reason by its time was that
the port had been updated to 1.2.27 and ssl-1.48 which simply did not
exist then.
Now they do exist. Since it builds, installs and runs correctly with
no further changes, and all the other apache-1.2.27-based ports are
back alive again, there's no reason to keep this one forbidden.
Don't be alarmed that the MD5 sum changes: the previous one in
distinfo was actually the checksum from apache_1.3.26+ssl_1.48.tar.gz,
since the last update to that file only changed the name but not the
MD5 sum. Alas, i could not find any authoritative MD5 on
http://www.apache-ssl.org/ to verify against.
v. 1.81
date: 2002/10/12 21:57:11; author: knu; state: Exp; lines: +19 -18
Add MASTER_SITE_RINGSERVER to MASTER_SITES.
Tag apache-ssl sites with :ssl.
v. 1.80
date: 2002/10/05 09:18:45; author: kris; state: Exp; lines: +3 -1
Update to apache 1.3.27 and 2.0.43. This fixes a security vulnerability.
Mark apache13-ssl FORBIDDEN because the new version does not yet exist.
Partially based on patches submitted by below authors.
Submitted by: "Sergey A. Osokin" ,
Udo Schweigert ,
Lev A. Serebryakov
PR: ports/43682, ports/43688, ports/43666, ports/43681
v. 1.79
date: 2002/09/15 12:34:16; author: dinoex; state: Exp; lines: +3 -6
Update to 1.3.26+ssl_1.48
removed FORBIDDEN
v. 1.78
date: 2002/09/01 16:07:56; author: dwcjr; state: Exp; lines: +1 -0
${PERL} -> ${REINPLACE_CMD}
PR: 40784
Submitted by: corecode@corecode.ath.cx
Reviewed by: flynn@energyhq.homeip.net
v. 1.77
date: 2002/06/18 12:33:14; author: nectar; state: Exp; lines: +3 -0
Mark FORBIDDEN until an update is available.
See .
v. 1.76
date: 2002/03/28 22:53:08; author: petef; state: Exp; lines: +1 -1
Fix a master site.
PR: 36409
Submitted by: Kimura Fuyuki
v. 1.75
date: 2002/03/23 19:34:51; author: nectar; state: Exp; lines: +1 -3
Patch buffer overflow described in
.
v. 1.74
date: 2002/03/01 19:39:17; author: jedgar; state: Exp; lines: +2 -1
Change BROKEN to FORBIDDEN due to security vulnerabilities.
Add SSL vulnerability to the list:
http://www.apache-ssl.org/advisory-20020301.txt
v. 1.73
date: 2001/12/21 19:31:33; author: nectar; state: Exp; lines: +1 -1
Oops, forgot to quote the parens. Quoting makes the line > 80
characters, so take a slightly different approach.
v. 1.72
date: 2001/12/21 19:25:38; author: nectar; state: Exp; lines: +4 -2
Set MAINTAINER to freebsd-ports. Previous maintainer says, ``i no
longer support this port as i got fed up with the port committers
ignoring my updates.''
Mark BROKEN, as this version of Apache contains several minor
vulnerabilities.
v. 1.71
date: 2001/01/01 10:15:15; author: will; state: Exp; lines: +1 -3
Goodbye, YEAR2000. Hello, 2001.
Approved by: asami
v. 1.70
date: 2000/10/29 22:43:41; author: steve; state: Exp; lines: +3 -2
Run 'make certificate' from the correct directory.
v. 1.69
date: 2000/09/22 01:59:05; author: kris; state: Exp; lines: +2 -13
Update all ports using OpenSSL and RSA to work without rsaref since
it is no longer required. Apologies to the various maintainers whom I
did not yet hear back from, but the ports freeze is coming up in a few
hours and I will be verifying all of these ports on a 4.1 machine
myself to catch any problems.
v. 1.68
date: 2000/08/22 03:41:05; author: kuriyama; state: Exp; lines: +16 -10
Cosmetic changes to reduce difference between apache13 ports.
(whitespace/tab, re-ordering, same $DISTNAME)
This is preparation for ports/18788 updates.
Approved by: adam@algroup.co.uk, sumikawa
No response from: ache (sorry for stepping on your toes)
v. 1.67
date: 2000/08/09 17:47:16; author: cpiazza; state: Exp; lines: +2 -2
Fix up MASTER_SITES
PR: 20478
Submitted by: Mario Sergio Fujikawa Ferreira
v. 1.66
date: 2000/04/27 16:31:59; author: knu; state: Exp; lines: +1 -1
This is a null commit with a log message that contains a correction
and a supplement to the previous message. (For some reason, the
previous message wasn't mailed due to a CVS problem)
* * *
Correction:
- For `update to 1.3.9+1.40' read `update to 1.3.12+1.40'.
Supplement:
- Change the versioning scheme according to the Handbook. Now
PORTVERSION is described as `1.3.x+1.y', not `1.3.x.1.y'.
v. 1.65
date: 2000/04/27 15:20:09; author: knu; state: Exp; lines: +42 -25
- Update to apache 1.3.9 + ssl 1.40.
- Add MASTER_SITES.
PR: ports/18036
Submitted by: MAINTAINER
- Add patch-an (back) to correctly build on FreeBSD 5.0+.
PR: ports/17404
Submitted by: Khetan H. Gajjar
- Portlint in many respects.
- Mark `WWW:'.
- Put variables in order.
- Unexpand. (Change space to tab)
v. 1.64
date: 2000/04/10 00:04:25; author: cpiazza; state: Exp; lines: +4 -5
Update with the new PORTNAME/PORTVERSION variables
v. 1.63
date: 2000/02/12 09:02:43; author: kris; state: Exp; lines: +10 -26
USE_OPENSSL
Submitted by: Jim Bloom
v. 1.62
date: 1999/11/07 22:25:32; author: dirk; state: Exp; lines: +3 -3
Change dependencies from static to shared openssl libraries,
because openssl also builds shared libraries, now.
v. 1.61
date: 1999/09/27 02:21:28; author: steve; state: Exp; lines: +9 -10
Update this to version 1.3.9+1.37.
PR: 13804
Submitted by: maintainer
v. 1.60
date: 1999/08/31 02:42:41; author: peter; state: Exp; lines: +1 -1
$Id$ -> $FreeBSD$
v. 1.59
date: 1999/07/04 18:44:30; author: obrien; state: Exp; lines: +8 -8
Be noisy at "pre-configure" where it matters, rather than at "pre-fetch".
v. 1.58
date: 1999/06/28 09:00:47; author: asami; state: Exp; lines: +2 -2
Change PKGNAMEs to conform to guidelines.
apache-1.3.6+mod_ssl-2.3.3 -> apache+mod_ssl-1.3.6+2.3.3
apache-1.3.6+ssl_1.35 -> apache+ssl-1.3.6+1.35
Reviewed by: maintainers of both ports
v. 1.57
date: 1999/06/02 07:20:36; author: dirk; state: Exp; lines: +3 -2
- Upgrade to Apache-SSL 1.35.
- include ${PREFIX}/include/openssl due to openssl upgrade.
Submitted by: Ralf S. Engelschall
v. 1.56
date: 1999/04/10 07:53:03; author: dirk; state: Exp; lines: +27 -38
Upgrade to Apache 1.3.6 and Apache-SSL 1.32.
PR: ports/10966
Submitted by: Adam Laurie
v. 1.55
date: 1999/03/26 08:49:50; author: dirk; state: Exp; lines: +7 -6
${PREFIX}/bin/ssleay -> ${PREFIX}/bin/openssl and
${PREFIX}/etc/ssleay.cnf -> ${PREFIX}/lib/openssl.cnf
due to openssl upgrade.
Replaced GNU_CONFIGURE with HAS_CONFIGURE and
CONFIGURE_ARGS+=--prefix=${PREFIX} because GNU_CONFIGURE=yes adds
${CONFIGURE_TARGET} to ${CONFIGURE_ARGS} now.
v. 1.54
date: 1999/03/13 17:11:04; author: billf; state: Exp; lines: +16 -2
Add the Apache mirror sites. For ports with 'mods' attached to them, the MASTER_SITEs
were alternated so the user does not have to get 10 apache MASTER_SITEs when all
they need is one 'mod' MASTER_SITE, which is what would happen if we used a
MASTER_SITE_APACHE or added all of the mirrors in a row.
Approved By: apache maintainers, asami
Submitted By: Brian Feldman , billf
v. 1.53
date: 1999/01/10 14:11:19; author: dirk; state: Exp; lines: +2 -2
Change dependencies from SSLeay to openssl, the successor of SSLeay.
v. 1.52
date: 1999/01/08 18:25:23; author: fenner; state: Exp; lines: +2 -2
Add missing trailing slash to MASTER_SITES
Found by: distfile checker
v. 1.51
date: 1998/12/22 08:40:47; author: asami; state: Exp; lines: +2 -2
MAINTAINER should be a simple mail address, otherwise we might confuse
some scripts.
v. 1.50
date: 1998/12/11 22:58:37; author: billf; state: Exp; lines: +1 -3
Fix patches/ and pkg/ due to committer error when committing the new
information.
Screwed Up By: billf
v. 1.49
date: 1998/12/11 22:46:14; author: billf; state: Exp; lines: +3 -1
This now breaks on the patch stage, which it didn't in my sandbox. I'm
marking it broken until I figure out why.
v. 1.48
date: 1998/12/11 22:37:09; author: billf; state: Exp; lines: +74 -59
Retire apache-ssl, activate apache12-ssl and apache13-ssl!
PR: ports/8448
Submitted By: Adam Laurie , Member of Apache-SSL
v. 1.47
date: 1998/12/11 13:47:06; author: asami; state: Exp; lines: +3 -1
Mark these broken until billf can fix them up after a repository copy.
v. 1.46
date: 1998/12/01 11:14:55; author: obrien; state: Exp; lines: +2 -2
ftp.ox.ac.uk reorganized their directory layout.
(this port really needs some extra MASTER_SITES's)
v. 1.45
date: 1998/04/12 09:53:50; author: markm; state: Exp; lines: +5 -5
Upgrade to Apache1.2.6.
v. 1.44
date: 1998/02/20 00:43:40; author: steve; state: Exp; lines: +7 -3
Instead of using ssleay.cnf.sample warn the user that they must
first create ssleay.cnf before 'make certificate' will work.
Suggested by: Mark Murray
v. 1.43
date: 1998/02/17 21:16:02; author: markm; state: Exp; lines: +2 -7
Fix this port for RSAref. Fix the location of SSLeay config file.
v. 1.42
date: 1998/02/17 12:52:26; author: markm; state: Exp; lines: +52 -22
Upgrade to Apache 1.2.5+SSL 1.13.
Lots of bug fixes, plus repair to the "make certificate" target.
NOTE!! NOTE!! NOTE!!
This port is broken for NorteAmericanos. Someone who has the latest
RSAref would make me eternally grateful by fixing this for the
.US/.CA case and sending me patches.
v. 1.41
date: 1997/10/13 15:03:39; author: markm; state: Exp; lines: +3 -3
ipdate the SSL/Crypto to v11. Bug fixes.
v. 1.40
date: 1997/09/22 19:44:48; author: markm; state: Exp; lines: +24 -27
Update to Apache 1.2.4 and SSL patches 1.9
v. 1.39
date: 1997/08/16 16:01:10; author: andreas; state: Exp; lines: +7 -1
target post-install informs now about "make certificate"
make certificate creates an own temporary certificate
cd ${WRKSRC}; ${MAKE} ${MAKE_ENV} $@
and installs it into the suitable location:
cp ${WRKSRC}/SSLconf/conf/httpsd.pem ${PREFIX}/certs/cert.pem
v. 1.38
date: 1997/08/16 04:45:27; author: peter; state: Exp; lines: +2 -2
The path to the SSLeay port is "security/SSLeay", not "security/SSLeay-0.8.1"
v. 1.37
date: 1997/08/15 15:44:27; author: markm; state: Exp; lines: +30 -15
Upgrade to Apache 1.2.1 and SSLeay 0.8.1. Add SSL3 and many other features.
Submitted by: Richard Seaman
Apologies to: All the other who sent me helpful comments and tips and
who I forgot :-)
v. 1.36
date: 1997/08/12 14:21:12; author: peter; state: Exp; lines: +14 -53
Revive apache-1.1.1+SSL which doesn't work because it needs SSLeay 0.6.4
and not 0.6.6 as in ports. There's probably enough code "out there" to
make a 1.2.1+SSL version now.
Yes, the Makefile is a bit of a mess.
v. 1.35
date: 1997/07/08 13:04:09; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2.1
v. 1.34
date: 1997/06/06 13:45:07; author: ache; state: Exp; lines: +4 -4
Update to 1.2.0
v. 1.33
date: 1997/05/31 20:34:09; author: ache; state: Exp; lines: +1 -1
More fixing of OPTIM replacement
v. 1.32
date: 1997/05/31 20:26:38; author: ache; state: Exp; lines: +1 -1
Fix OPTIM= patching
v. 1.31
date: 1997/05/31 20:16:01; author: ache; state: Exp; lines: +5 -5
Upgrade to 1.2b11
v. 1.30
date: 1997/05/02 18:22:03; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2b10
v. 1.29
date: 1997/04/14 18:54:26; author: ache; state: Exp; lines: +9 -6
Upgrade to 1.2b8
v. 1.28
date: 1997/02/26 01:23:10; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2b7
v. 1.27
date: 1997/01/28 05:39:31; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2b6
v. 1.26
date: 1997/01/02 16:39:55; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2b4
v. 1.25
date: 1996/12/25 22:53:22; author: ache; state: Exp; lines: +8 -8
Upgrade to 1.2b3
Submitted by: mostly by peter
v. 1.24
date: 1996/12/11 21:04:21; author: markm; state: Exp; lines: +3 -1
Mark the SSL'ed version as BROKEN, until the official patches appear. Also
add myself as maintainer of the SSL version.
v. 1.23
date: 1996/12/11 19:09:59; author: ache; state: Exp; lines: +6 -23
Upgrade to 1.2b2
v. 1.22
date: 1996/11/18 11:40:33; author: asami; state: Exp; lines: +2 -2
Use MAN? macros. CATEGORIES+= -> CATEGORIES.
v. 1.21
date: 1996/11/07 01:53:14; author: ache; state: Exp; lines: +7 -4
Add information URLs comment
v. 1.20
date: 1996/11/07 01:49:46; author: ache; state: Exp; lines: +34 -1
Conditionalize all my patches
v. 1.19
date: 1996/10/31 17:42:13; author: markm; state: Exp; lines: +2 -2
Uncomment the DEPENDS= line. Sheesh.
Reminded by: ache
v. 1.18
date: 1996/10/26 18:49:52; author: markm; state: Exp; lines: +15 -3
FINALLY - commit the SSL'ed version of this. (ye gods, this has been a while
:-) )
v. 1.17
date: 1996/08/11 14:49:21; author: markm; state: Exp; lines: +22 -2
1) Add the ability to build a secure (SSL'ed) server, conditionalised
on the presence of SECURE_SERVER.
2) Clean up the installation in accordance with BSD religion:
Now all the configs go in ${PREFIX}/etc/apache and the
data (documents) stay in ${PREFIX}/www.
v. 1.16
date: 1996/07/12 10:27:53; author: asami; state: Exp; lines: +2 -5
Remove unnecessary DISTFILES and EXTRACT_ONLY.
Remove pst's address from MAINTAINER, I don't know if any script
will fail if we have two addresses here so I don't want to risk
breaking something right before the release.
v. 1.15
date: 1996/07/12 06:41:05; author: pst; state: Exp; lines: +2 -2
...just changed maintainer to match reality
v. 1.14
date: 1996/07/11 11:03:17; author: ache; state: Exp; lines: +6 -10
Upgrade to 1.1.1
OK-ed by: gpalmer
v. 1.13
date: 1996/06/15 17:51:08; author: jkh; state: Exp; lines: +7 -5
Slight revision: If startup file already there, leave it alone.
v. 1.12
date: 1996/06/15 16:58:06; author: jkh; state: Exp; lines: +7 -1
Install an apache.sh startup file in /usr/local/etc/rc.d/
Now that apache_httpd is gone from /etc/sysconfig, this is the canonical
way to make apache start automatically in a new system installation.
v. 1.11
date: 1996/05/20 07:37:06; author: asami; state: Exp; lines: +6 -5
Variable reorderization.
v. 1.10
date: 1996/05/19 22:21:42; author: ache; state: Exp; lines: +9 -8
Use mod_env.c to pass environment to CGI instead of local hack
v. 1.9
date: 1996/04/21 08:54:24; author: pst; state: Exp; lines: +3 -3
Update to Apache 1.0.5 (security fix)
v. 1.8
date: 1996/02/22 21:54:58; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.0.3
v. 1.7
date: 1996/02/07 03:15:26; author: jfieber; state: Exp; lines: +3 -3
Upgrade to 1.0.2.
v. 1.6
date: 1995/12/04 12:56:18; author: jfieber; state: Exp; lines: +7 -2
Fix MASTER_SITES.
v. 1.5
date: 1995/12/02 23:07:08; author: jfieber; state: Exp; lines: +4 -4
Update to 1.0
v. 1.4
date: 1995/11/27 04:10:09; author: asami; state: Exp; lines: +2 -2
Change categories to "www". gn has "net" in there too.
v. 1.3
date: 1995/09/23 18:47:45; author: pst; state: Exp; lines: +5 -3
Upgrade apache to 0.8.14, completely restructure port, and list myself as
maintainer.
v. 1.2
date: 1995/09/19 07:03:17; author: pst; state: Exp; lines: +4 -4
Upgrade apache to 0.8.13
v. 1.1
date: 1995/08/28 13:28:45; author: jkh; state: Exp;
branches: 1.1.1;
Initial revision
v. 1.1.1.1
date: 1995/08/28 13:28:45; author: jkh; state: Exp; lines: +0 -0
Port of the APACHE web server.
Submitted by: "Eric L. Hernes"
=============================================================================
v. 1.121
date: 2007/06/17 16:59:26; author: anders; state: Exp; lines: +1 -1
Remove thttpd from conflicts list, it has a different name for its
passwd program now.
Approved by: maintainers/erwin
v. 1.120
date: 2007/03/18 17:13:58; author: clement; state: Exp; lines: +1 -2
- Update to 1.3.37-1.57
v. 1.119
date: 2006/07/27 20:26:28; author: clement; state: Exp; lines: +1 -1
- Fix security issue in mod_rewrite.
All people using mod_rewrite are strongly encouraged to update.
An off-by-one flaw exists in the Rewrite module, mod_rewrite.
Depending on the manner in which Apache httpd was compiled, this
software defect may result in a vulnerability which, in combination
with certain types of Rewrite rules in the web server configuration
files, could be triggered remotely. For vulnerable builds, the nature
of the vulnerability can be denial of service (crashing of web server
processes) or potentially allow arbitrary code execution.
This issue has been rated as having important security impact
by the Apache HTTP Server Security Team
Updates to latest versions will follow soon.
Notified by: so@ (simon)
Obtained from: Apache Security Team
Security: CVE-2006-3747
v. 1.118
date: 2006/01/16 10:13:26; author: clement; state: Exp; lines: +4 -5
- Remove duplicated mor_dir entries
- Always build (mod_)apache_ssl statically.
- Fix MAN8 logic [1]
Reported by: pointyhat via kris [1]
v. 1.117
date: 2006/01/14 13:59:20; author: clement; state: Exp; lines: +16 -46
- Update to 1.3.34+1.37
- Use new apache framework.
v. 1.116
date: 2005/12/12 20:31:52; author: clement; state: Exp; lines: +1 -1
SECURITY: CVE-2005-3352 (cve.mitre.org)
mod_imap: Escape untrusted referer header before outputting in HTML
to avoid potential cross-site scripting. Change also made to
ap_escape_html so we escape quotes. Reported by JPCERT.
[Mark Cox]
Reported by: simon
v. 1.115
date: 2005/10/03 06:07:19; author: linimon; state: Exp; lines: +0 -1
Remove obsolete mastersite.
Source: distfile survey
v. 1.114
date: 2005/07/26 13:57:42; author: clement; state: Exp; lines: +1 -0
- Fix CAN-2005-2088
Obtained from: Apache repository
v. 1.113
date: 2005/06/06 15:16:30; author: clement; state: Exp; lines: +1 -1
- While I'm here, kick portname from COMMENT
v. 1.112
date: 2005/06/06 15:09:55; author: clement; state: Exp; lines: +1 -1
- En1arge its maintainership
v. 1.111
date: 2004/12/13 21:06:17; author: clement; state: Exp; lines: +1 -0
- move default configuration files to ${EXAMPLESDIR} and keep
${PREFIX}/etc/apache clean.
v. 1.110
date: 2004/12/13 11:16:46; author: clement; state: Exp; lines: +6 -2
- Xmas for apache13-ssl!
Give it a rcNG startup script
Also requested by: sem
v. 1.109
date: 2004/11/12 10:40:51; author: clement; state: Exp; lines: +1 -1
- Update to 1.3.33.1.55
v. 1.108
date: 2004/07/31 11:56:38; author: clement; state: Exp; lines: +1 -2
- update to 1.3.29+1.55
v. 1.107
date: 2004/06/11 12:19:04; author: clement; state: Exp; lines: +1 -1
- Security Fix
mod_proxy buffer overflow CAN-2004-0492
Shamefully stolen from: apache13-mod-ssl port
v. 1.106
date: 2004/04/07 13:47:37; author: clement; state: Exp; lines: +3 -3
- tar -> ${TAR}
While I'm here put --target=httpsd at the right place.
v. 1.105
date: 2004/03/18 20:50:09; author: dinoex; state: Exp; lines: +4 -1
- CONFLICTS extended
v. 1.104
date: 2004/03/08 13:29:47; author: clement; state: Exp; lines: +1 -0
Fix a bug in the parsing of Allow/Deny rules using IP addresses.
http://www.vuxml.org/freebsd/09d418db-70fd-11d8-873f-0020ed76ef5a.html
Reported by: nectar
Obtained from: Apache CVS
v. 1.103
date: 2004/02/06 22:40:34; author: clement; state: Exp; lines: +5 -5
- Update to apache 1.3.29
- Update to patchset 1.53
***** SECURITY FIX *****
http://www.apache-ssl.org/advisory-20040206.txt
Time to ask eik how to add it to portaudit
v. 1.102
date: 2004/01/21 09:32:13; author: clement; state: Exp; lines: +1 -1
Rename patch.
post-patch-conf:httpd.conf-dist.orig =>
post-patch-conf:httpd.conf-dist
Pointed out by: kris,
Koop Mast
v. 1.101
date: 2004/01/13 15:04:48; author: clement; state: Exp; lines: +1 -1
- Update my email address
Approved and reviewed by: erwin (mentor)
v. 1.100
date: 2003/11/20 11:25:42; author: jeh; state: Exp; lines: +2 -3
update apache-ssl patch to 1.52.
apache 1.3.29 is not yet supported.
PR: 59355
Submitted by: Maintainer
v. 1.99
date: 2003/11/12 21:09:27; author: jeh; state: Exp; lines: +3 -1
Here's the patch.
files/patch-FixPatch was missing too.
Submitted by: MAINTAINER
v. 1.98
date: 2003/11/09 00:42:20; author: jeh; state: Exp; lines: +16 -9
Changelog:
- Sync with apache13 layout (and some patches)
- use DOCSDIR
- Add no_zombies.patch
- use DIST_SUBDIR=apache
Removed files:
- files/patch-aq
- files/patch-ar
Added files:
- files/patch-httpd.conf-dist
- files/post-patch-conf:httpd.conf-dist.orig
- files/patch-FixPatch
- files/patch-SSLpatch
- files/patch-Makefile.tmpl
- files/patch-src::modules::standard::mod_auth_db.module
- files/patch-src::support::dbmanage
- files/patch-src::support::log_server_status
- files/patch-configure
PR: 58403
Submitted By: MAINTAINER
v. 1.97
date: 2003/10/25 20:47:37; author: dinoex; state: Exp; lines: +1 -1
- fix spelling in CONFLICTS
v. 1.96
date: 2003/10/14 15:47:28; author: dinoex; state: Exp; lines: +3 -0
- add CONFLICTS
Submitted by: eikemeier@fillmore-labs.com
Approved by: kris
v. 1.95
date: 2003/09/28 07:19:54; author: dinoex; state: Exp; lines: +64 -18
- Update to 1.3.28.1.49.
- Add suexec support
- Misc changes
- Add a footnote for users, to announce them that next version
will be a complete resync with apache13 ports layout.
PR: 57300
Submitted by: sheepkiller@cultdeadsheep.org
v. 1.94
date: 2003/09/24 17:26:47; author: dinoex; state: Exp; lines: +1 -1
- change ECHO -> ECHO_CMD
PR: 56847
v. 1.93
date: 2003/09/06 21:20:44; author: dinoex; state: Exp; lines: +1 -14
- drop defunctional MASTER_SITES
v. 1.92
date: 2003/08/30 08:02:23; author: dinoex; state: Exp; lines: +2 -2
- change YES -> yes
v. 1.91
date: 2003/08/28 15:38:35; author: dinoex; state: Exp; lines: +27 -28
- use hook for bsd.openssl.mk
- Cleanup Makefile
v. 1.90
date: 2003/04/05 06:55:55; author: dinoex; state: Exp; lines: +1 -1
- caption in MAINTAINER
v. 1.89
date: 2003/04/03 19:39:55; author: dinoex; state: Exp; lines: +1 -1
- use bsd.openssl.mk
v. 1.88
date: 2003/02/20 19:15:22; author: knu; state: Exp; lines: +1 -0
De-pkg-comment.
v. 1.87
date: 2003/02/13 15:04:03; author: naddy; state: Exp; lines: +1 -6
Use MASTER_SITE_APACHE*.
PR: 47984
Submitted by: Kimura Fuyuki
v. 1.86
date: 2003/01/27 17:05:36; author: dinoex; state: Exp; lines: +6 -3
- Use user and group "www"
- fix PLIST
- add patch from ports/36363 (from ryan@servercity.com)
- verify ports/36361
- fix ports/36364
v. 1.85
date: 2003/01/20 18:06:38; author: dinoex; state: Exp; lines: +1 -1
- update SSL support.
defaults to openssl port (now 0.9.6.h)
New options:
use the lastest version (now 0.9.7)
USE_OPENSSL_BETA=yes
use the base version with
USE_OPENSSL_BASE=yes
v. 1.84
date: 2002/11/10 16:48:20; author: lioux; state: Exp; lines: +0 -2
o Rollback PORTCOMMENT modifications while this feature's implementation
is better studied
o Turn PORTCOMMENT variable in Makefile back into pkg-comment files
Approved by: kris (portmgr hat),
portmgr, re (silence)
v. 1.83
date: 2002/11/06 22:47:12; author: adamw; state: Exp; lines: +2 -0
Use PORTCOMMENT in the Makefile, and whack the pkg-comment.
Approved by: pat
v. 1.82
date: 2002/11/06 16:01:59; author: joerg; state: Exp; lines: +0 -2
Unmark this port from being forbidden; the reason by its time was that
the port had been updated to 1.2.27 and ssl-1.48 which simply did not
exist then.
Now they do exist. Since it builds, installs and runs correctly with
no further changes, and all the other apache-1.2.27-based ports are
back alive again, there's no reason to keep this one forbidden.
Don't be alarmed that the MD5 sum changes: the previous one in
distinfo was actually the checksum from apache_1.3.26+ssl_1.48.tar.gz,
since the last update to that file only changed the name but not the
MD5 sum. Alas, i could not find any authoritative MD5 on
http://www.apache-ssl.org/ to verify against.
v. 1.81
date: 2002/10/12 21:57:11; author: knu; state: Exp; lines: +19 -18
Add MASTER_SITE_RINGSERVER to MASTER_SITES.
Tag apache-ssl sites with :ssl.
v. 1.80
date: 2002/10/05 09:18:45; author: kris; state: Exp; lines: +3 -1
Update to apache 1.3.27 and 2.0.43. This fixes a security vulnerability.
Mark apache13-ssl FORBIDDEN because the new version does not yet exist.
Partially based on patches submitted by below authors.
Submitted by: "Sergey A. Osokin" ,
Udo Schweigert ,
Lev A. Serebryakov
PR: ports/43682, ports/43688, ports/43666, ports/43681
v. 1.79
date: 2002/09/15 12:34:16; author: dinoex; state: Exp; lines: +3 -6
Update to 1.3.26+ssl_1.48
removed FORBIDDEN
v. 1.78
date: 2002/09/01 16:07:56; author: dwcjr; state: Exp; lines: +1 -0
${PERL} -> ${REINPLACE_CMD}
PR: 40784
Submitted by: corecode@corecode.ath.cx
Reviewed by: flynn@energyhq.homeip.net
v. 1.77
date: 2002/06/18 12:33:14; author: nectar; state: Exp; lines: +3 -0
Mark FORBIDDEN until an update is available.
See .
v. 1.76
date: 2002/03/28 22:53:08; author: petef; state: Exp; lines: +1 -1
Fix a master site.
PR: 36409
Submitted by: Kimura Fuyuki
v. 1.75
date: 2002/03/23 19:34:51; author: nectar; state: Exp; lines: +1 -3
Patch buffer overflow described in
.
v. 1.74
date: 2002/03/01 19:39:17; author: jedgar; state: Exp; lines: +2 -1
Change BROKEN to FORBIDDEN due to security vulnerabilities.
Add SSL vulnerability to the list:
http://www.apache-ssl.org/advisory-20020301.txt
v. 1.73
date: 2001/12/21 19:31:33; author: nectar; state: Exp; lines: +1 -1
Oops, forgot to quote the parens. Quoting makes the line > 80
characters, so take a slightly different approach.
v. 1.72
date: 2001/12/21 19:25:38; author: nectar; state: Exp; lines: +4 -2
Set MAINTAINER to freebsd-ports. Previous maintainer says, ``i no
longer support this port as i got fed up with the port committers
ignoring my updates.''
Mark BROKEN, as this version of Apache contains several minor
vulnerabilities.
v. 1.71
date: 2001/01/01 10:15:15; author: will; state: Exp; lines: +1 -3
Goodbye, YEAR2000. Hello, 2001.
Approved by: asami
v. 1.70
date: 2000/10/29 22:43:41; author: steve; state: Exp; lines: +3 -2
Run 'make certificate' from the correct directory.
v. 1.69
date: 2000/09/22 01:59:05; author: kris; state: Exp; lines: +2 -13
Update all ports using OpenSSL and RSA to work without rsaref since
it is no longer required. Apologies to the various maintainers whom I
did not yet hear back from, but the ports freeze is coming up in a few
hours and I will be verifying all of these ports on a 4.1 machine
myself to catch any problems.
v. 1.68
date: 2000/08/22 03:41:05; author: kuriyama; state: Exp; lines: +16 -10
Cosmetic changes to reduce difference between apache13 ports.
(whitespace/tab, re-ordering, same $DISTNAME)
This is preparation for ports/18788 updates.
Approved by: adam@algroup.co.uk, sumikawa
No response from: ache (sorry for stepping on your toes)
v. 1.67
date: 2000/08/09 17:47:16; author: cpiazza; state: Exp; lines: +2 -2
Fix up MASTER_SITES
PR: 20478
Submitted by: Mario Sergio Fujikawa Ferreira
v. 1.66
date: 2000/04/27 16:31:59; author: knu; state: Exp; lines: +1 -1
This is a null commit with a log message that contains a correction
and a supplement to the previous message. (For some reason, the
previous message wasn't mailed due to a CVS problem)
* * *
Correction:
- For `update to 1.3.9+1.40' read `update to 1.3.12+1.40'.
Supplement:
- Change the versioning scheme according to the Handbook. Now
PORTVERSION is described as `1.3.x+1.y', not `1.3.x.1.y'.
v. 1.65
date: 2000/04/27 15:20:09; author: knu; state: Exp; lines: +42 -25
- Update to apache 1.3.9 + ssl 1.40.
- Add MASTER_SITES.
PR: ports/18036
Submitted by: MAINTAINER
- Add patch-an (back) to correctly build on FreeBSD 5.0+.
PR: ports/17404
Submitted by: Khetan H. Gajjar
- Portlint in many respects.
- Mark `WWW:'.
- Put variables in order.
- Unexpand. (Change space to tab)
v. 1.64
date: 2000/04/10 00:04:25; author: cpiazza; state: Exp; lines: +4 -5
Update with the new PORTNAME/PORTVERSION variables
v. 1.63
date: 2000/02/12 09:02:43; author: kris; state: Exp; lines: +10 -26
USE_OPENSSL
Submitted by: Jim Bloom
v. 1.62
date: 1999/11/07 22:25:32; author: dirk; state: Exp; lines: +3 -3
Change dependencies from static to shared openssl libraries,
because openssl also builds shared libraries, now.
v. 1.61
date: 1999/09/27 02:21:28; author: steve; state: Exp; lines: +9 -10
Update this to version 1.3.9+1.37.
PR: 13804
Submitted by: maintainer
v. 1.60
date: 1999/08/31 02:42:41; author: peter; state: Exp; lines: +1 -1
$Id$ -> $FreeBSD$
v. 1.59
date: 1999/07/04 18:44:30; author: obrien; state: Exp; lines: +8 -8
Be noisy at "pre-configure" where it matters, rather than at "pre-fetch".
v. 1.58
date: 1999/06/28 09:00:47; author: asami; state: Exp; lines: +2 -2
Change PKGNAMEs to conform to guidelines.
apache-1.3.6+mod_ssl-2.3.3 -> apache+mod_ssl-1.3.6+2.3.3
apache-1.3.6+ssl_1.35 -> apache+ssl-1.3.6+1.35
Reviewed by: maintainers of both ports
v. 1.57
date: 1999/06/02 07:20:36; author: dirk; state: Exp; lines: +3 -2
- Upgrade to Apache-SSL 1.35.
- include ${PREFIX}/include/openssl due to openssl upgrade.
Submitted by: Ralf S. Engelschall
v. 1.56
date: 1999/04/10 07:53:03; author: dirk; state: Exp; lines: +27 -38
Upgrade to Apache 1.3.6 and Apache-SSL 1.32.
PR: ports/10966
Submitted by: Adam Laurie
v. 1.55
date: 1999/03/26 08:49:50; author: dirk; state: Exp; lines: +7 -6
${PREFIX}/bin/ssleay -> ${PREFIX}/bin/openssl and
${PREFIX}/etc/ssleay.cnf -> ${PREFIX}/lib/openssl.cnf
due to openssl upgrade.
Replaced GNU_CONFIGURE with HAS_CONFIGURE and
CONFIGURE_ARGS+=--prefix=${PREFIX} because GNU_CONFIGURE=yes adds
${CONFIGURE_TARGET} to ${CONFIGURE_ARGS} now.
v. 1.54
date: 1999/03/13 17:11:04; author: billf; state: Exp; lines: +16 -2
Add the Apache mirror sites. For ports with 'mods' attached to them, the MASTER_SITEs
were alternated so the user does not have to get 10 apache MASTER_SITEs when all
they need is one 'mod' MASTER_SITE, which is what would happen if we used a
MASTER_SITE_APACHE or added all of the mirrors in a row.
Approved By: apache maintainers, asami
Submitted By: Brian Feldman , billf
v. 1.53
date: 1999/01/10 14:11:19; author: dirk; state: Exp; lines: +2 -2
Change dependencies from SSLeay to openssl, the successor of SSLeay.
v. 1.52
date: 1999/01/08 18:25:23; author: fenner; state: Exp; lines: +2 -2
Add missing trailing slash to MASTER_SITES
Found by: distfile checker
v. 1.51
date: 1998/12/22 08:40:47; author: asami; state: Exp; lines: +2 -2
MAINTAINER should be a simple mail address, otherwise we might confuse
some scripts.
v. 1.50
date: 1998/12/11 22:58:37; author: billf; state: Exp; lines: +1 -3
Fix patches/ and pkg/ due to committer error when committing the new
information.
Screwed Up By: billf
v. 1.49
date: 1998/12/11 22:46:14; author: billf; state: Exp; lines: +3 -1
This now breaks on the patch stage, which it didn't in my sandbox. I'm
marking it broken until I figure out why.
v. 1.48
date: 1998/12/11 22:37:09; author: billf; state: Exp; lines: +74 -59
Retire apache-ssl, activate apache12-ssl and apache13-ssl!
PR: ports/8448
Submitted By: Adam Laurie , Member of Apache-SSL
v. 1.47
date: 1998/12/11 13:47:06; author: asami; state: Exp; lines: +3 -1
Mark these broken until billf can fix them up after a repository copy.
v. 1.46
date: 1998/12/01 11:14:55; author: obrien; state: Exp; lines: +2 -2
ftp.ox.ac.uk reorganized their directory layout.
(this port really needs some extra MASTER_SITES's)
v. 1.45
date: 1998/04/12 09:53:50; author: markm; state: Exp; lines: +5 -5
Upgrade to Apache1.2.6.
v. 1.44
date: 1998/02/20 00:43:40; author: steve; state: Exp; lines: +7 -3
Instead of using ssleay.cnf.sample warn the user that they must
first create ssleay.cnf before 'make certificate' will work.
Suggested by: Mark Murray
v. 1.43
date: 1998/02/17 21:16:02; author: markm; state: Exp; lines: +2 -7
Fix this port for RSAref. Fix the location of SSLeay config file.
v. 1.42
date: 1998/02/17 12:52:26; author: markm; state: Exp; lines: +52 -22
Upgrade to Apache 1.2.5+SSL 1.13.
Lots of bug fixes, plus repair to the "make certificate" target.
NOTE!! NOTE!! NOTE!!
This port is broken for NorteAmericanos. Someone who has the latest
RSAref would make me eternally grateful by fixing this for the
.US/.CA case and sending me patches.
v. 1.41
date: 1997/10/13 15:03:39; author: markm; state: Exp; lines: +3 -3
ipdate the SSL/Crypto to v11. Bug fixes.
v. 1.40
date: 1997/09/22 19:44:48; author: markm; state: Exp; lines: +24 -27
Update to Apache 1.2.4 and SSL patches 1.9
v. 1.39
date: 1997/08/16 16:01:10; author: andreas; state: Exp; lines: +7 -1
target post-install informs now about "make certificate"
make certificate creates an own temporary certificate
cd ${WRKSRC}; ${MAKE} ${MAKE_ENV} $@
and installs it into the suitable location:
cp ${WRKSRC}/SSLconf/conf/httpsd.pem ${PREFIX}/certs/cert.pem
v. 1.38
date: 1997/08/16 04:45:27; author: peter; state: Exp; lines: +2 -2
The path to the SSLeay port is "security/SSLeay", not "security/SSLeay-0.8.1"
v. 1.37
date: 1997/08/15 15:44:27; author: markm; state: Exp; lines: +30 -15
Upgrade to Apache 1.2.1 and SSLeay 0.8.1. Add SSL3 and many other features.
Submitted by: Richard Seaman
Apologies to: All the other who sent me helpful comments and tips and
who I forgot :-)
v. 1.36
date: 1997/08/12 14:21:12; author: peter; state: Exp; lines: +14 -53
Revive apache-1.1.1+SSL which doesn't work because it needs SSLeay 0.6.4
and not 0.6.6 as in ports. There's probably enough code "out there" to
make a 1.2.1+SSL version now.
Yes, the Makefile is a bit of a mess.
v. 1.35
date: 1997/07/08 13:04:09; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2.1
v. 1.34
date: 1997/06/06 13:45:07; author: ache; state: Exp; lines: +4 -4
Update to 1.2.0
v. 1.33
date: 1997/05/31 20:34:09; author: ache; state: Exp; lines: +1 -1
More fixing of OPTIM replacement
v. 1.32
date: 1997/05/31 20:26:38; author: ache; state: Exp; lines: +1 -1
Fix OPTIM= patching
v. 1.31
date: 1997/05/31 20:16:01; author: ache; state: Exp; lines: +5 -5
Upgrade to 1.2b11
v. 1.30
date: 1997/05/02 18:22:03; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2b10
v. 1.29
date: 1997/04/14 18:54:26; author: ache; state: Exp; lines: +9 -6
Upgrade to 1.2b8
v. 1.28
date: 1997/02/26 01:23:10; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2b7
v. 1.27
date: 1997/01/28 05:39:31; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2b6
v. 1.26
date: 1997/01/02 16:39:55; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.2b4
v. 1.25
date: 1996/12/25 22:53:22; author: ache; state: Exp; lines: +8 -8
Upgrade to 1.2b3
Submitted by: mostly by peter
v. 1.24
date: 1996/12/11 21:04:21; author: markm; state: Exp; lines: +3 -1
Mark the SSL'ed version as BROKEN, until the official patches appear. Also
add myself as maintainer of the SSL version.
v. 1.23
date: 1996/12/11 19:09:59; author: ache; state: Exp; lines: +6 -23
Upgrade to 1.2b2
v. 1.22
date: 1996/11/18 11:40:33; author: asami; state: Exp; lines: +2 -2
Use MAN? macros. CATEGORIES+= -> CATEGORIES.
v. 1.21
date: 1996/11/07 01:53:14; author: ache; state: Exp; lines: +7 -4
Add information URLs comment
v. 1.20
date: 1996/11/07 01:49:46; author: ache; state: Exp; lines: +34 -1
Conditionalize all my patches
v. 1.19
date: 1996/10/31 17:42:13; author: markm; state: Exp; lines: +2 -2
Uncomment the DEPENDS= line. Sheesh.
Reminded by: ache
v. 1.18
date: 1996/10/26 18:49:52; author: markm; state: Exp; lines: +15 -3
FINALLY - commit the SSL'ed version of this. (ye gods, this has been a while
:-) )
v. 1.17
date: 1996/08/11 14:49:21; author: markm; state: Exp; lines: +22 -2
1) Add the ability to build a secure (SSL'ed) server, conditionalised
on the presence of SECURE_SERVER.
2) Clean up the installation in accordance with BSD religion:
Now all the configs go in ${PREFIX}/etc/apache and the
data (documents) stay in ${PREFIX}/www.
v. 1.16
date: 1996/07/12 10:27:53; author: asami; state: Exp; lines: +2 -5
Remove unnecessary DISTFILES and EXTRACT_ONLY.
Remove pst's address from MAINTAINER, I don't know if any script
will fail if we have two addresses here so I don't want to risk
breaking something right before the release.
v. 1.15
date: 1996/07/12 06:41:05; author: pst; state: Exp; lines: +2 -2
...just changed maintainer to match reality
v. 1.14
date: 1996/07/11 11:03:17; author: ache; state: Exp; lines: +6 -10
Upgrade to 1.1.1
OK-ed by: gpalmer
v. 1.13
date: 1996/06/15 17:51:08; author: jkh; state: Exp; lines: +7 -5
Slight revision: If startup file already there, leave it alone.
v. 1.12
date: 1996/06/15 16:58:06; author: jkh; state: Exp; lines: +7 -1
Install an apache.sh startup file in /usr/local/etc/rc.d/
Now that apache_httpd is gone from /etc/sysconfig, this is the canonical
way to make apache start automatically in a new system installation.
v. 1.11
date: 1996/05/20 07:37:06; author: asami; state: Exp; lines: +6 -5
Variable reorderization.
v. 1.10
date: 1996/05/19 22:21:42; author: ache; state: Exp; lines: +9 -8
Use mod_env.c to pass environment to CGI instead of local hack
v. 1.9
date: 1996/04/21 08:54:24; author: pst; state: Exp; lines: +3 -3
Update to Apache 1.0.5 (security fix)
v. 1.8
date: 1996/02/22 21:54:58; author: ache; state: Exp; lines: +4 -4
Upgrade to 1.0.3
v. 1.7
date: 1996/02/07 03:15:26; author: jfieber; state: Exp; lines: +3 -3
Upgrade to 1.0.2.
v. 1.6
date: 1995/12/04 12:56:18; author: jfieber; state: Exp; lines: +7 -2
Fix MASTER_SITES.
v. 1.5
date: 1995/12/02 23:07:08; author: jfieber; state: Exp; lines: +4 -4
Update to 1.0
v. 1.4
date: 1995/11/27 04:10:09; author: asami; state: Exp; lines: +2 -2
Change categories to "www". gn has "net" in there too.
v. 1.3
date: 1995/09/23 18:47:45; author: pst; state: Exp; lines: +5 -3
Upgrade apache to 0.8.14, completely restructure port, and list myself as
maintainer.
v. 1.2
date: 1995/09/19 07:03:17; author: pst; state: Exp; lines: +4 -4
Upgrade apache to 0.8.13
v. 1.1
date: 1995/08/28 13:28:45; author: jkh; state: Exp;
branches: 1.1.1;
Initial revision
v. 1.1.1.1
date: 1995/08/28 13:28:45; author: jkh; state: Exp; lines: +0 -0
Port of the APACHE web server.
Submitted by: "Eric L. Hernes"
=============================================================================
v. 1.121
date: 2007/06/17 16:59:26; author: anders; state: Exp; lines: +1 -1
Remove thttpd from conflicts list, it has a different name for its
passwd program now.
Approved by: maintainers/erwin
v. 1.120
date: 2007/03/18 17:13:58; author: clement; state: Exp; lines: +1 -2
- Update to 1.3.37-1.57
v. 1.119
date: 2006/07/27 20:26:28; author: clement; state: Exp; lines: +1 -1
- Fix security issue in mod_rewrite.
All people using mod_rewrite are strongly encouraged to update.
An off-by-one flaw exists in the Rewrite module, mod_rewrite.
Depending on the manner in which Apache httpd was compiled, this
software defect may result in a vulnerability which, in combination
with certain types of Rewrite rules in the web server configuration
files, could be triggered remotely. For vulnerable builds, the nature
of the vulnerability can be denial of service (crashing of web server
processes) or potentially allow arbitrary code execution.
This issue has been rated as having important security impact
by the Apache HTTP Server Security Team
Updates to latest versions will follow soon.
Notified by: so@ (simon)
Obtained from: Apache Security Team
Security: CVE-2006-3747
v. 1.118
date: 2006/01/16 10:13:26; author: clement; state: Exp; lines: +4 -5
- Remove duplicated mor_dir entries
- Always build (mod_)apache_ssl statically.
- Fix MAN8 logic [1]
Reported by: pointyhat via kris [1]
v. 1.117
date: 2006/01/14 13:59:20; author: clement; state: Exp; lines: +16 -46
- Update to 1.3.34+1.37
- Use new apache framework.
v. 1.116
date: 2005/12/12 20:31:52; author: clement; state: Exp; lines: +1 -1
SECURITY: CVE-2005-3352 (cve.mitre.org)
mod_imap: Escape untrusted referer header before outputting in HTML
to avoid potential cross-site scripting. Change also made to
ap_escape_html so we escape quotes. Reported by JPCERT.
[Mark Cox]
Reported by: simon
v. 1.115
date: 2005/10/03 06:07:19; author: linimon; state: Exp; lines: +0 -1
Remove obsolete mastersite.
Source: distfile survey
v. 1.114
date: 2005/07/26 13:57:42; author: clement; state: Exp; lines: +1 -0
- Fix CAN-2005-2088
Obtained from: Apache repository
v. 1.113
date: 2005/06/06 15:16:30; author: clement; state: Exp; lines: +1 -1
- While I'm here, kick portname from COMMENT
v. 1.112
date: 2005/06/06 15:09:55; author: clement; state: Exp; lines: +1 -1
- En1arge its maintainership
v. 1.111
date: 2004/12/13 21:06:17; author: clement; state: Exp; lines: +1 -0
- move default configuration files to ${EXAMPLESDIR} and keep
${PREFIX}/etc/apache clean.
v. 1.110
date: 2004/12/13 11:16:46; author: clement; state: Exp; lines: +6 -2
- Xmas for apache13-ssl!
Give it a rcNG startup script
Also requested by: sem
v. 1.109
date: 2004/11/12 10:40:51; author: clement; state: Exp; lines: +1 -1
- Update to 1.3.33.1.55
v. 1.108
date: 2004/07/31 11:56:38; author: clement; state: Exp; lines: +1 -2
- update to 1.3.29+1.55
v. 1.107
date: 2004/06/11 12:19:04; author: clement; state: Exp; lines: +1 -1
- Security Fix
mod_proxy buffer overflow CAN-2004-0492
Shamefully stolen from: apache13-mod-ssl port
v. 1.106
date: 2004/04/07 13:47:37; author: clement; state: Exp; lines: +3 -3
- tar -> ${TAR}
While I'm here put --target=httpsd at the right place.
v. 1.105
date: 2004/03/18 20:50:09; author: dinoex; state: Exp; lines: +4 -1
- CONFLICTS extended
v. 1.104
date: 2004/03/08 13:29:47; author: clement; state: Exp; lines: +1 -0
Fix a bug in the parsing of Allow/Deny rules using IP addresses.
http://www.vuxml.org/freebsd/09d418db-70fd-11d8-873f-0020ed76ef5a.html
Reported by: nectar
Obtained from: Apache CVS
v. 1.103
date: 2004/02/06 22:40:34; author: clement; state: Exp; lines: +5 -5
- Update to apache 1.3.29
- Update to patchset 1.53
***** SECURITY FIX *****
http://www.apache-ssl.org/advisory-20040206.txt
Time to ask eik how to add it to portaudit
v. 1.102
date: 2004/01/21 09:32:13; author: clement; state: Exp; lines: +1 -1
Rename patch.
post-patch-conf:httpd.conf-dist.orig =>
post-patch-conf:httpd.conf-dist
Pointed out by: kris,
Koop Mast
v. 1.101
date: 2004/01/13 15:04:48; author: clement; state: Exp; lines: +1 -1
- Update my email address
Approved and reviewed by: erwin (mentor)
v. 1.100
date: 2003/11/20 11:25:42; author: jeh; state: Exp; lines: +2 -3
update apache-ssl patch to 1.52.
apache 1.3.29 is not yet supported.
PR: 59355
Submitted by: Maintainer
v. 1.99
date: 2003/11/12 21:09:27; author: jeh; state: Exp; lines: +3 -1
Here's the patch.
files/patch-FixPatch was missing too.
Submitted by: MAINTAINER
v. 1.98
date: 2003/11/09 00:42:20; author: jeh; state: Exp; lines: +16 -9
Changelog:
- Sync with apache13 layout (and some patches)
- use DOCSDIR
- Add no_zombies.patch
- use DIST_SUBDIR=apache
Removed files:
- files/patch-aq
- files/patch-ar
Added files:
- files/patch-httpd.conf-dist
- files/post-patch-conf:httpd.conf-dist.orig
- files/patch-FixPatch
- files/patch-SSLpatch
- files/patch-Makefile.tmpl
- files/patch-src::modules::standard::mod_auth_db.module
- files/patch-src::support::dbmanage
- files/patch-src::support::log_server_status
- files/patch-configure
PR: 58403
Submitted By: MAINTAINER
v. 1.97
date: 2003/10/25 20:47:37; author: dinoex; state: Exp; lines: +1 -1
- fix spelling in CONFLICTS
v. 1.96
date: 2003/10/14 15:47:28; author: dinoex; state: Exp; lines: +3 -0
- add CONFLICTS
Submitted by: eikemeier@fillmore-labs.com
Approved by: kris
v. 1.95
date: 2003/09/28 07:19:54; author: din |
| |
|