On 19.02.2013 01:02, William A. Rowe Jr. wrote:
The tarball candidates for Apache httpd 2.2.24 can be found at
the usual place:
http://httpd.apache.org/dev/dist/
Please VOTE for releasing this Apache httpd 2.2.24 candidate as GA.
[X] +1 for GA: Happy Birthday, 2.2.24.
[ ] -1:
Concerning the apr_password_validate() problem in APU 1.5.1 and related
httpd release testing failures:
The bug was fixed in
http://svn.apache.org/viewvc?view=revisionrevision=1449309
Don't know how I could stare so long at the code without seeing the
obvious bug. Thanks to the reporter of PR
On 18.02.2013 21:34, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.4 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing these as Apache httpd 2.4.4 GA.
NOTE: The -deps tarballs are included here *only* to make
On 24.02.2013 09:33, Jie Gao wrote:
I have tested it on Solaris 11 on sparc hardware with gcc, and the build
succeeded.
...
httpd started OK.
Is there a test suite available for testing all functions?
For starters there's a README at:
On 19.02.2013 01:02, William A. Rowe Jr. wrote:
The tarball candidates for Apache httpd 2.2.24 can be found at
the usual place:
http://httpd.apache.org/dev/dist/
Please VOTE for releasing this Apache httpd 2.2.24 candidate as GA.
[ ] +1 for GA: Happy Birthday, 2.2.24.
[ ] -1:
On behalf of Bill who sits next to me but currently can't post to this
thread:
Bill calls the vote closed. Results are:
+1: eric(*), jim(*), rjung(*), wrowe(*), gls
+0: -
-1: -
With the final tally APPROVING release.
Thx to all voters and testers!
Bill will move the release artifacts to
Subject says it all.
On 08.03.2013 13:40, Jim Jagielski wrote:
From my somewhat limited testing, so far things look good...
Who can provide some more rigorous tests?
I never used them myself, but http://autobahn.ws/ provides a broadly
used test suite. Mark T. uses it for his development of Websockets for
Tomcat.
On 27.03.2013 22:57, jaillet...@apache.org wrote:
Author: jailletc36
Date: Wed Mar 27 21:57:44 2013
New Revision: 1461869
URL: http://svn.apache.org/r1461869
Log:
Be more clever when allocating memory for log item to be escaped.
This should save about 70-100 bytes in the request pool with
On 17.04.2013 11:07, André Malo wrote:
* André Malo wrote:
* Rainer Jung wrote:
A quick draft patch is at
http://people.apache.org/~rjung/patches/ap_escape_logitem_enhanced.patc
h
+ret = apr_palloc(p, length + 3 * escapes);
It should be still 4 * escapes ('\xHH').
Hmmm, isn't
On 17.04.2013 11:38, Plüm, Rüdiger, Vodafone Group wrote:
-Original Message-
From: André Malo [mailto:n...@perlig.de]
Sent: Mittwoch, 17. April 2013 11:04
To: dev@httpd.apache.org
Subject: Re: svn commit: r1461869 - /httpd/httpd/trunk/server/util.c
* Rainer Jung wrote:
http
On 28.04.2013 07:53, Marion Christophe JAILLET wrote:
Le 28/04/2013 01:14, minf...@apache.org a écrit :
Author: minfrin
Date: Sat Apr 27 23:14:11 2013
New Revision: 1476694
URL: http://svn.apache.org/r1476694
Log:
mod_authnz_ldap: Allow using exec: callouts like SSLPassphraseDialog
for
On 30.04.2013 01:21, Guenter Knauf wrote:
Hi Daniel,
I think you did the last revisions of these pics, so I address this
directly to you ...
it just came to my attention that the apache_pb*.gif look not so fine as
the apache_pb*.png ones:
https://www.apachehaus.net/apache_pb/
it looks to me
On 08.05.2013 20:06, William A. Rowe Jr. wrote:
On Mon, 6 May 2013 23:42:27 +0100
Tom Jones t...@inpher.com wrote:
We use process supervision and don't have a use for pid files. We
are running multiple httpd instances, and have the config management
to create a writable configured place
On 10.05.2013 06:03, Guenter Knauf wrote:
Hi all,
something went wrong with this commit:
svn ci modules\lua
Sendingmodules\lua\lua_request.c
Transmitting file data .
Committed revision 1480871.
Warning: post commit FS processing had error:
Couldn't open rep-cache database
and
To me it seems, that with r1489910 CVE-2011-4317 should be fixed.
There's some investigation by trawick in the STATUS file for 2.0 left
over after that commit. I think that all of his observations and
recommendations should be taken care of by the above commit, but it
would be good to double
mod_lua is still marked experimental because we did not yet expect it to
be complete or the APIs to be stable. So we did expect and wanted to
allow incompatible changes.
Now that a few of us are working on it I expect it would be useful if
backports could be done quicker for some time until we
As announced yesterday in the proposal thread:
I suggest to switch mod_lua in 2.4 to CTR mode.
Motivation:
mod_lua is still marked experimental because we did not yet expect it to
be complete or the APIs to be stable. So we did expect and wanted to
allow incompatible changes.
Now that a few of
On 08.06.2013 17:04, Rainer Jung wrote:
I suggest to switch mod_lua in 2.4 to CTR mode.
[XX] +1: I support this proposal
[ ] 0: I don't care
[ ] -1: I don't support this proposal, because...
+1 to mod_lua as CTR in 2.4.
Rainer
On 10.06.2013 15:37, Eric Covener wrote:
Is there some historical or other reason that the location has higher
precedence that directory/files? I think the other way is much more
intuitive
Don't know about th real motivation, but after having learned that from
the explicit description in the
I call the vote closed. Results are:
+1: covener, fuankg, humbedooh, rjung, sf
+0: -
-1: -
So mod_lua is now CTR in 2.4.
Regards,
Rainer
On 14.06.2013 16:41, André Malo wrote:
On Wednesday 12 June 2013 21:18:05 Stefan Fritsch wrote:
On Tuesday 11 June 2013, André Malo wrote:
trunk patch: http://svn.apache.org/r1491155
2.4.x patch: trunk patch works
nd: why would you do that in a stable branch?
+ sf:
On 14.06.2013 17:44, André Malo wrote:
On Friday 14 June 2013 17:34:26 Rainer Jung wrote:
On 14.06.2013 16:41, André Malo wrote:
On Wednesday 12 June 2013 21:18:05 Stefan Fritsch wrote:
On Tuesday 11 June 2013, André Malo wrote:
trunk patch: http://svn.apache.org/r1491155
2.4.x
On 17.06.2013 18:03, Guenter Knauf wrote:
Hi,
ATM I cant get the Java docu stuff working on my new dev box:
BUILD FAILED
java.lang.StackOverflowError
and also I'm short of time to look further into fixing it - therefore I
would like to ask someone for some help with the below commit to
While testing the new APR 1.4.8 I ran the httpd test suite on trunk, the
first time since long.
1) eventopt didn't run on SLES 10 32 Bit
Error message:
[Wed Jun 19 14:24:21.443541 2013] [mpm_eventopt:crit] [pid 25540:tid
3082651312] AH02406: atomics not
On 22.06.2013 15:26, Eric Covener wrote:
On Sun, Jun 6, 2010 at 6:05 PM, rj...@apache.org wrote:
Author: rjung
Date: Sun Jun 6 22:05:17 2010
New Revision: 952007
URL: http://svn.apache.org/viewvc?rev=952007view=rev
Log:
make shared moduled and module set most the default.
Static
On 26.06.2013 23:16, wr...@apache.org wrote:
Author: wrowe
Date: Wed Jun 26 21:16:53 2013
New Revision: 1497101
URL: http://svn.apache.org/r1497101
Log:
mod_dav: Sending a MERGE request against a URI handled by mod_dav_svn with
the source href (sent as part of the request body as XML)
On 23.04.2013 15:14, minf...@apache.org wrote:
Author: minfrin
Date: Tue Apr 23 13:14:34 2013
New Revision: 1470940
URL: http://svn.apache.org/r1470940
Log:
mod_dav: Make sure that when we prepare an If URL for Etag comparison,
we compare unencoded paths. PR 53910
Patch submitted by
Hi Daniel and/or Günter,
can you have a look at the trunk CHANGES file and move the lua items
that should now be in 2.4 to the 2.4 CHANGES file? We forgot that when
we synced 2.4 with trunk and it would be nice to have them in the 2.4
file before 2.4.5 gets tagged.
It would be nice if you could
On 28.06.2013 03:59, Guenter Knauf wrote:
On 28.06.2013 01:03, Rainer Jung wrote:
Hi Daniel and/or Günter,
can you have a look at the trunk CHANGES file and move the lua items
that should now be in 2.4 to the 2.4 CHANGES file? We forgot that when
we synced 2.4 with trunk and it would be nice
On 28.06.2013 19:55, William A. Rowe Jr. wrote:
Just wanted to know the opinion of some of you who are on email today.
[ ] stay at apr-util 1.4.1 (last 1.4 release)
[X] jump up to apr-util 1.5.2 (now that it is more stable)
Rainer
On 28.06.2013 23:28, William A. Rowe Jr. wrote:
Candidates are in http://httpd.apache.org/dev/dist/
+/-1
[+1] Release 2.0.65 as the final 2.0 series package
+1 for release and thanks for RM.
Tested on Solaris 8+10 Sparc, SuSE Linux Enterprise 10 32Bit, SLES 10+11
64 Bit, RedHat
On 28.06.2013 23:29, William A. Rowe Jr. wrote:
Candidates are in http://httpd.apache.org/dev/dist/
+/-1
[+1] Release 2.2.25 (apr 1.4.8, apr-util 1.5.2)
+1 to release:
- Netware src artefact not checked (missing)
- signature and hashes OK
- key in KEYS file
- gz and bz2 contents
On 03.07.2013 19:04, Eric Covener wrote:
URL:
http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/modules/ssl/ssl_engine_io.c?rev=1497466r1=1497465r2=1497466view=diff
==
---
On 09.07.2013 17:47, Joe Orton wrote:
On Thu, Jun 20, 2013 at 08:41:04AM -0400, Eric Covener wrote:
I'm only concerned with someone who was getting by with LDAPReferrals
OFF because the default gave their SDK an error. Now OFF would be
fatal too.
Just revisiting this... at least it seems
On 10.07.2013 13:14, Steinar H. Gunderson wrote:
On Tue, Jul 09, 2013 at 08:53:03AM -0400, Jeff Trawick wrote:
Do you have time to test with this patch on top of 2.4.x and report back?
http://people.apache.org/~sf/open_htaccess_hook.patch
Hi,
I've tried this, adjusted mpm-itk, and it
Hi Jeff,
On 14.07.2013 03:46, Jeff Trawick wrote:
Tested with event on FreeBSD 9 (amd64).
I'm running the test suite on an ASF FreeBSD 9 system as well. There I
get two observations:
- long (several minutes) hanging in t/apache/limits.t
Failed test 8 in t/apache/limits.t at line 141
(Read
On 11.07.2013 20:54, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.5 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing these as Apache httpd 2.4.5 GA.
NOTE: The -deps tarballs are included here *only* to make
On 11.07.2013 20:54, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.5 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing these as Apache httpd 2.4.5 GA.
NOTE: The -deps tarballs are included here *only* to make
On 14.07.2013 23:05, Rainer Jung wrote:
On 11.07.2013 20:54, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.5 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing these as Apache httpd 2.4.5 GA.
NOTE: The -deps
On 14.07.2013 23:40, Rainer Jung wrote:
On 14.07.2013 23:05, Rainer Jung wrote:
On 11.07.2013 20:54, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.5 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing
On 15.07.2013 15:20, Jeff Trawick wrote:
On Jul 15, 2013 9:07 AM, Jim Jagielski j...@jagunet.com
mailto:j...@jagunet.com wrote:
Just a FYI: I plan to TR 2.4.6 this afternoon (eastern).
It will be 2.4.5 minus r1485675. As such, 2.4.6 will still
ship with PR54948 un-patched, but I think it's
On 15.07.2013 18:48, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.6 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing these as Apache httpd 2.4.6 GA.
NOTE: The -deps tarballs are included here *only* to make
On 25.07.2013 13:43, Plüm, Rüdiger, Vodafone Group wrote:
I see many tests for mod_deflate currently failing on trunk (OS is RH5 64
Bit).
Failed Test Stat Wstat Total Fail Failed List of Failed
---
On 25.07.2013 14:55, Rainer Jung wrote:
On 25.07.2013 13:43, Plüm, Rüdiger, Vodafone Group wrote:
I see many tests for mod_deflate currently failing on trunk (OS is RH5 64
Bit).
Failed Test Stat Wstat Total Fail Failed List of Failed
On 15.05.2013 17:46, minf...@apache.org wrote:
Author: minfrin
Date: Wed May 15 15:46:01 2013
New Revision: 1482918
URL: http://svn.apache.org/r1482918
Log:
core: Stop ap_finalize_request_protocol() and ap_get_client_block() from
silently
swallowing errors from the filter stack, create
On 27.07.2013 19:14, Michael Felt wrote:
1) Congradulations on an EOL - seems it was idle for a long time anyway.
2) small typo on download page:
Unix Source: httpd-2.0.66.tar.bz2
http://mirror.sdunix.com/apache//httpd/httpd-2.0.65.tar.bz2 [ PGP
On 02.08.2013 14:41, Daniel Gruno wrote:
Hi dev@,
Though this is mainly a question for docs@, I thought I'd drop this
email into the dev@ list instead, since this is where I think
objections, if there are any, will arise.
Today, on various Internet channels, I have had to do my very best to
On 05.08.2013 13:18, Eric Covener wrote:
On Mon, Aug 5, 2013 at 2:49 AM, Thomas Eckert
thomas.r.w.eck...@gmail.com wrote:
One could do an 'OPTIONS *' request. But I am not sure if that is any
better than proxy-initial-not-pooled in terms of performance.
I don't see why an OPTIONS request
On 06.08.2013 19:36, Paul Querna wrote:
On Tue, Aug 6, 2013 at 10:32 AM, Eric Covener cove...@gmail.com wrote:
On Tue, Aug 6, 2013 at 1:24 PM, Paul Querna p...@querna.org wrote:
Hiya,
Has anyone given much thought to changes in httpd to help mitigate the
recently publicized breach attack:
On 15.09.2013 05:31, Rainer Jung wrote:
On 10.09.2013 16:13, Jim Jagielski wrote:
For completeness, a full, combined patch is:
http://people.apache.org/~jim/patches/httpd-2.4-event-test.patch
It requires a patch that knows about creating new files
when encountering /dev/null
On 25.09.2013 07:33, Kaspar Brand wrote:
On 23.09.2013 11:17, Joe Orton wrote:
On Sun, Sep 22, 2013 at 12:32:23PM +0200, Kaspar Brand wrote:
Feedback on this approach is again very welcome. Increasing the minimum
required OpenSSL version from 0.9.7 to 0.9.8a shouldn't be of concern,
IMO, as
On 01.10.2013 09:53, Ruediger Pluem wrote:
I see the following autoconf warning when executing buildconf on trunk:
rebuilding configure
configure.in:406: warning: AC_COMPILE_IFELSE was called before
AC_USE_SYSTEM_EXTENSIONS
../../lib/autoconf/specific.m4:386: AC_USE_SYSTEM_EXTENSIONS is
On 13.11.2013 18:03, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.2.26 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing these as Apache httpd 2.2.26 GA.
[X] +1: Good to go
[ ] +0: meh
[ ] -1: Danger Will
Hi Stefan,
On 17.11.2013 00:49, s...@apache.org wrote:
Author: sf
Date: Sat Nov 16 23:49:04 2013
New Revision: 1542615
URL: http://svn.apache.org/r1542615
Log:
Explicitly list in which directories to look for config*.m4 files.
If some distributor patches a config*.m4 file with quilt,
On 19.11.2013 23:45, Stefan Fritsch wrote:
Hi Rainer,
Am Sonntag, 17. November 2013, 12:47:53 schrieb Rainer Jung:
URL: http://svn.apache.org/r1542615
Log:
Explicitly list in which directories to look for config*.m4 files.
--- httpd/httpd/trunk/build/config-stubs (original)
+++ httpd
On 22.11.2013 23:03, Jim Jagielski wrote:
Anyone ever try OpenPA?
https://trac.mcs.anl.gov/projects/openpa/
It's under MIT, fwiw.
Haven't tried it but the README
http://git.mcs.anl.gov/radix/openpa.git/blob_plain/HEAD:/README
indicates only platform support based on gcc plus
On 23.11.2013 14:19, Jeff Trawick wrote:
(maybe sf already knows something about this)
[Thu Nov 21 16:20:17.035427 2013] [:emerg] [pid 1237:tid 47440161182336]
AH00017: Pre-configuration failed, exiting
Maybe main.c isn't a module, but it is probably best to put core there.
Some other
On 23.11.2013 14:15, Jeff Trawick wrote:
On Sat, Nov 23, 2013 at 8:04 AM, Rainer Jung rainer.j...@kippdata.de
mailto:rainer.j...@kippdata.de wrote:
On 22.11.2013 23:03, Jim Jagielski wrote:
Anyone ever try OpenPA?
https://trac.mcs.anl.gov/projects/openpa
On 22.11.2013 18:47, Jim Jagielski wrote:
With +1 votes from
jim,covener,trawick,gsmith,breser,noel.butler,hiding,jblond and h.reindl
and NO -1 votes, I call the voting closed with the
result of Releasing 2.4.7 as GA.
Jim I just now found out that the atomics problem for event also happens
On 24.11.2013 01:03, Eric Covener wrote:
I'm curious what other scenarios will fail though. I can try Sun Studio on
Solaris 10 x86_64 (32-bit and 64-bit builds) soon. But Sun Studio on
SPARC presumably uses different explicit code in APR and I don't have access
to that.
I will try to get
On 26.11.2013 15:58, olli hauer wrote:
On 2013-11-25 23:25, Jeff Trawick wrote:
See if this brings any happiness:
Index: network_io/unix/sockets.c
===
--- network_io/unix/sockets.c (revision 1545394)
+++
On 27.11.2013 19:15, Plüm, Rüdiger, Vodafone Group wrote:
Done (for httpd and APR). You need to have the needed permissions on
Bugzilla. Just request them from infra for your Bugzilla account.
I right now also added 2.2.26 and 1.5.3, I have the needed permissions.
If you prefer it that way, you
On 02.12.2013 13:18, j...@apache.org wrote:
Author: jim
Date: Mon Dec 2 12:18:19 2013
New Revision: 1546976
URL: http://svn.apache.org/r1546976
Log:
Merge r1544820 from trunk:
mod_lua: Fix compiler warning by using correct
APR_SIZE_T_FMT and APR_OFF_T_FMT format macro
in debug
On 08.12.2013 19:32, Jeff Trawick wrote:
On Sun, Dec 8, 2013 at 8:56 AM, Jeff Trawick traw...@gmail.com
mailto:traw...@gmail.com wrote:
On Tue, Nov 26, 2013 at 4:01 PM, Rainer Jung
rainer.j...@kippdata.de mailto:rainer.j...@kippdata.de wrote:
On 26.11.2013 15:58, olli
On 12.12.2013 10:16, Ewald Dieterich wrote:
I already asked on the mod_security developer mailing list for help, but
didn't get a response. So I'm trying my luck here.
On a Debian unstable installation (Apache 2.4.6, apr 1.4.8, apr-util
1.5.3, mod_security 2.7.5) I enabled mpm_worker and
On 12.12.2013 16:16, Ewald Dieterich wrote:
On 12/12/2013 11:53 AM, Rainer Jung wrote:
On 12.12.2013 10:16, Ewald Dieterich wrote:
On a Debian unstable installation (Apache 2.4.6, apr 1.4.8, apr-util
1.5.3, mod_security 2.7.5) I enabled mpm_worker and configured a simple
reverse proxy. When I
On 16.12.2013 20:25, William A. Rowe Jr. wrote:
On Sat, 14 Dec 2013 10:25:00 +0100
Kaspar Brand httpd-dev.2...@velox.ch wrote:
On 14.12.2013 09:36, William A. Rowe Jr. wrote:
ProxyPass is not involved in the SSL forward proxy case at all, as I
already tried to point out.
Good, we've
On 01.01.2014 18:26, Stefan Fritsch wrote:
Am Mittwoch, 1. Januar 2014, 14:06:17 schrieb Graham Leggett:
Maybe making ap_regname() accept an optional prefix string that
is
prepended to each name would be a good idea?
Maybe the use in LocationMatch and friends should add some
prefix to
On 09.01.2014 19:48, jaillet...@apache.org wrote:
Author: jailletc36
Date: Thu Jan 9 18:48:11 2014
New Revision: 1556914
URL: http://svn.apache.org/r1556914
Log:
Add missing break in 'dav_generic_do_refresh' to avoid useless computation.
Modified:
On 11.01.2014 14:02, Jeff Trawick wrote:
On Sat, Jan 11, 2014 at 2:51 AM, Ben Reser b...@reser.org
mailto:b...@reser.org wrote:
On 1/10/14, 5:38 AM, Jeff Trawick wrote:
[ ] It is an accepted practice (but not required) to obscure or
omit the
vulnerability impact in
On 20.02.2014 18:24, Jeff Trawick wrote:
BTW, do you know if there's a known collection of patches for 2.4
support or for other critical fixes?
mod_wsgi is running on eos and reliably serves wiki.apache.org using the
following patch on top of 3.4 in combination with 2.4.4, 2.4.6 and 2.4.6
On 19.02.2014 14:08, Jim Jagielski wrote:
I'd like to shoot for a TR sometime next week...
I updated aurora our US server for www.apache.org, the project sites and
also mail-archives.a.o to 2.4.8 dev svn revision 1570851 plus apr/apu
head revision of their 1.5 branches. Looks good, but only
On 22.02.2014 18:17, Rainer Jung wrote:
On 19.02.2014 14:08, Jim Jagielski wrote:
I'd like to shoot for a TR sometime next week...
I updated aurora our US server for www.apache.org, the project sites and
also mail-archives.a.o to 2.4.8 dev svn revision 1570851 plus apr/apu
head revision
On 11.03.2014 17:34, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.8 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing these as Apache httpd 2.4.8 GA.
[ ] +1: Good to go
[ ] +0: meh
[ ] -1: Danger Will
On 11.03.2014 21:41, Dr Stephen Henson wrote:
On 11/03/2014 20:29, Rainer Jung wrote:
On 11.03.2014 17:34, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.8 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing
On 11.03.2014 21:53, Rainer Jung wrote:
On 11.03.2014 21:41, Dr Stephen Henson wrote:
On 11/03/2014 20:29, Rainer Jung wrote:
On 11.03.2014 17:34, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.8 can be found
at the usual place:
http://httpd.apache.org/dev/dist
On 12.03.2014 11:37, Jim Jagielski wrote:
At the very least, upgrading from 2.4.7 to 2.4.8 should not
cause this much pain. I will let the vote run a bit more to
gauge additional feedback, but my sense says that 2.4.8
will likely be revoked/dropped and 2.4.9 will be proposed
which either (1)
On 12.03.2014 01:59, Dr Stephen Henson wrote:
On 12/03/2014 00:30, Dr Stephen Henson wrote:
The fix was applied on Feb 11 2013. That would mean that official releases
affected would be 0.9.8y, 1.0.0j and 1.0.1c. Any later official release
should
include the fix but we weren't planning to
On 12.03.2014 14:55, Dr Stephen Henson wrote:
On 12/03/2014 12:29, Rainer Jung wrote:
On 12.03.2014 11:37, Jim Jagielski wrote:
At the very least, upgrading from 2.4.7 to 2.4.8 should not
cause this much pain. I will let the vote run a bit more to
gauge additional feedback, but my sense says
On 12.03.2014 18:39, William A. Rowe Jr. wrote:
On Wed, 12 Mar 2014 00:30:57 +
Dr Stephen Henson shen...@opensslfoundation.com wrote:
On 11/03/2014 21:46, Gregg Smith wrote:
On 3/11/2014 1:29 PM, Rainer Jung wrote:
On 11.03.2014 17:34, Jim Jagielski wrote:
The pre-release test tarballs
On 13.03.2014 17:49, Jim Jagielski wrote:
The pre-release test tarballs for Apache httpd 2.4.9 can be found
at the usual place:
http://httpd.apache.org/dev/dist/
I'm calling a VOTE on releasing these as Apache httpd 2.4.9 GA.
[ ] +1: Good to go
[ ] +0: meh
[ ] -1: Danger Will
the
failures. Unfortunately I'm a bit limited on time during this weekend to
narrow down the root cause (test framework, OpenSSL, httpd) on the
failing platform.
Regards,
Rainer
On Mar 14, 2014, at 2:13 PM, Rainer Jung rainer.j...@kippdata.de wrote:
On 13.03.2014 17:49, Jim Jagielski wrote
On 15.03.2014 17:25, Rainer Jung wrote:
On 15.03.2014 14:45, Jim Jagielski wrote:
What platform? I'll try to recreate...
Solaris 10 Sparc.
I used the latest and greatest for test framework, Perl 5.18.2 and
needed Per modules build from scratch. Also OpenSSL 1.0.1f.
For the Linux
On 17.03.2014 10:59, Plüm, Rüdiger, Vodafone Group wrote:
I try to find a slot to vote on 2.2.x later today, but I guess it will be in
the evening my local time (GMT+1).
Same here, some builds and tests still running, currently looks OK.
One minor nag: out of tree build found another problem
On 17.03.2014 20:15, William A. Rowe Jr. wrote:
On Mon, 17 Mar 2014 13:25:32 +0100
Rainer Jung rainer.j...@kippdata.de wrote:
On 17.03.2014 10:59, Plüm, Rüdiger, Vodafone Group wrote:
I try to find a slot to vote on 2.2.x later today, but I guess it
will be in the evening my local time (GMT
On 15.10.2009 21:54, Jim Jagielski wrote:
Planning on pushing this out to coincide w/ ACUS09... Let's assume
head of apr 1.4...
+1
On 06.11.2009 01:12, Joe Orton wrote:
On Fri, Nov 06, 2009 at 12:00:06AM +, Joe Orton wrote:
FYI - Dirk points out that you can test this using openssl s_client by
entering a line with the single character 'R' which s_client treats as a
command to initiate a renegotiation. Joe
$
I did a first try on backporting the CVE-2009-3555 patch to 2.0:
http://people.apache.org/~rjung/patches/cve-2009-3555_httpd_2_0_x.patch
I hadn't yet time for intensive testing, but first tests looked OK.
I noticed I couldn't log the SSL_SESSION_ID, but maybe that was a
Windows thing. Hadn't yet
On 13.11.2009 01:38, Jeff Trawick wrote:
On Thu, Nov 12, 2009 at 6:52 PM, William A. Rowe Jr.
wr...@rowe-clan.net wrote:
traw...@apache.org wrote:
Author: trawick
Date: Thu Nov 12 20:14:51 2009
New Revision: 835524
URL: http://svn.apache.org/viewvc?rev=835524view=rev
Log:
pick up r834900
Hi Jeff,
On 13.11.2009 17:43, Jeff Trawick wrote:
On Thu, Nov 12, 2009 at 5:32 PM, Brian Kodl bk...@yahoo.com
mailto:bk...@yahoo.com wrote:
Ps - Is there a debug or trace httpd.conf directive to get more
information?
I see the same error on Vista. Initially it was because the
On 16.11.2009 13:14, Jeff Trawick wrote:
On Mon, Nov 16, 2009 at 5:03 AM, Danny Sadinoff da...@sadinoff.com wrote:
On Tue, Nov 10, 2009 at 1:47 AM, Danny Sadinoff da...@sadinoff.com wrote:
On Tue, Nov 10, 2009 at 12:53 AM, Jeff Trawick traw...@gmail.com wrote:
On Mon, Nov 9, 2009 at 5:16 PM,
On 16.11.2009 20:21, Jean-Marc Desperrier wrote:
Jean-Marc Desperrier wrote:
An interesting point is that firefox is *not* reusing the ssl session in
that case, for some reason it sends a SessionID of 0 after the Hello
Request from the server. I'll forward that to the NSS team, because if
On 09.11.2009 23:28, Rainer Jung wrote:
I did a first try on backporting the CVE-2009-3555 patch to 2.0:
http://people.apache.org/~rjung/patches/cve-2009-3555_httpd_2_0_x.patch
I hadn't yet time for intensive testing, but first tests looked OK.
I noticed I couldn't log the SSL_SESSION_ID
On 20.11.2009 13:09, rpl...@apache.org wrote:
Author: rpluem
Date: Fri Nov 20 12:09:17 2009
New Revision: 882528
URL: http://svn.apache.org/viewvc?rev=882528view=rev
Log:
* Comment and vote.
Modified:
httpd/httpd/branches/2.0.x/STATUS
Modified: httpd/httpd/branches/2.0.x/STATUS
I plan to have a look on Wednesday. I'll not be able earlier.
On 30.11.2009 18:32, Jeff Trawick wrote:
On Wed, Nov 25, 2009 at 5:43 PM, Paul Querna p...@querna.org wrote:
Test tarballs for Apache httpd 2.3.4-alpha are available at:
http://httpd.apache.org/dev/dist/
Your votes please;
Platform: Solaris 8 (sic!)
MPM: worker dynamically loaded
APR etc: Bundled
PCRE: 7.8
During testing of 2.3.4 I noticed crashes after restart.
I did a build with lots of modules, especially including mod_logio. The
scoreboard uses in ap_increment_counts() the optional function
On 25.11.2009 23:43, Paul Querna wrote:
Test tarballs for Apache httpd 2.3.4-alpha are available at:
http://httpd.apache.org/dev/dist/
Your votes please;
+/- 1
[ ] Release httpd-2.3.4 as Alpha
Vote closes at 18:00 UTC on Monday November 30 2009.
May your Thanksgiving be filled with
Hi Rüdiger,
On 02.12.2009 21:33, Ruediger Pluem wrote:
On 12/02/2009 09:09 PM, Rainer Jung wrote:
Platform: Solaris 8 (sic!)
MPM: worker dynamically loaded
APR etc: Bundled
PCRE: 7.8
During testing of 2.3.4 I noticed crashes after restart.
I did a build with lots of modules, especially
Hi,
during a test migration from 2.2 to 2.4 I noticed, that the new AAA does
not allow to combine ip based AAA with user based.
The goal: allow access if either client ip address satisfies conditions
or user authenticates via basic auth.
Until 2.2 one could use Satisfy Any. The resulting
401 - 500 of 1303 matches
Mail list logo