On Fri, Jan 04, 2008 at 03:00:46PM -0500, Jim Jagielski wrote:
The latest versions of all 3 variants of Apache HTTP Server (1.3.40,
2.0.62 and 2.2.7) have been tagged.
2.2.7 tested and working on BS2000 and FreeBSD-4.x.
Martin
--
[EMAIL PROTECTED]| Fujitsu Siemens
On 01/07/2008 06:38 PM, Justin Erenkrantz wrote:
On Jan 7, 2008 2:34 AM, Joe Orton [EMAIL PROTECTED] wrote:
I've added a test case to t/modules/proxy.t in perl-framework which
exercises the non-blockingness of the chunked encoding parser a little
by dripfeeding a chunked response at it, byte
Thanks Brad, that certainly clears things up for me.
I haven't got time at the moment to work out what the new scheme means for
mod_perl in general. For now I will work around it.
Rolf
On Mon, 07 Jan 2008 11:29:43 +0100
Ruediger Pluem [EMAIL PROTECTED] wrote:
Nick could you please test latest trunk (already contains
optimizations) and 2.2.x with r609394 and (minimum stuff to
fix all aspects of the bug including chunk extensions) backported
which should apply cleanly, again?
Not acked, maybe already forwarded.
--
#kenP-)}
Ken Coar, Sanagendamgagwedweinini http://Ken.Coar.Org/
Author, developer, opinionist http://Apache-Server.Com/
Millennium hand and shrimp!
---BeginMessage---
It's really annoying that no contact email is listed for apache.org or
On Mon, 07 Jan 2008 11:29:43 +0100
Ruediger Pluem [EMAIL PROTECTED] wrote:
Once the tests are positive I will propose r609394 and r609538 for
backport such that TR of 2.2.x and all other branches can start soon.
It works, but a couple of niggles reviewing those. Taking line
numbers on a diff
[EMAIL PROTECTED] wrote:
+ *) SECURITY: CVE-2008-0005 (cve.mitre.org)
I thought we concur that (short of direct html injection in the page's
head) the browser misdetection of UTF-7, contrary on it's face to
RFC2616, was a client specific problem? If so, this is a related to
CVE-2008-0005
Rudiger, it appears you blasted the commit log. You might want to
take a try at svn propedit --revprop -r##, which is a little bit
more intuitive to use that propset (becoming a big fan of it for
such things).
Bill
---BeginMessage---
Author: rpluem
Revision: 609953
Modified property:
On 01/08/2008 05:09 PM, William A. Rowe, Jr. wrote:
Rudiger, it appears you blasted the commit log. You might want to
take a try at svn propedit --revprop -r##, which is a little bit
more intuitive to use that propset (becoming a big fan of it for
such things).
Thanks for the hint
On 01/08/2008 05:12 PM, William A. Rowe, Jr. wrote:
[EMAIL PROTECTED] wrote:
+ *) SECURITY: CVE-2008-0005 (cve.mitre.org)
I thought we concur that (short of direct html injection in the page's
head) the browser misdetection of UTF-7, contrary on it's face to
RFC2616, was a client
On 01/08/2008 03:30 PM, Nick Kew wrote:
On Mon, 07 Jan 2008 11:29:43 +0100
Ruediger Pluem [EMAIL PROTECTED] wrote:
Once the tests are positive I will propose r609394 and r609538 for
backport such that TR of 2.2.x and all other branches can start soon.
It works, but a couple of niggles
On Jan 8, 2008, at 5:37 AM, [EMAIL PROTECTED] wrote:
Not acked, maybe already forwarded.
What the are we supposed to do with an e-mail written:
Date: April 17, 2004 10:21:24 PM PDT
??!
Chris has probably graduated a long time ago and moved back into his
mom's basement.
It's
On 08.01.2008, at 17:52, Sander Temme wrote:
On Jan 8, 2008, at 5:37 AM, [EMAIL PROTECTED] wrote:
Not acked, maybe already forwarded.
What the are we supposed to do with an e-mail written:
Date: April 17, 2004 10:21:24 PM PDT
??!
Chris has probably graduated a long time ago and
On Tue, 08 Jan 2008 16:38:15 -
[EMAIL PROTECTED] wrote:
+if ((len == 0) || (lineend[len - 1] != APR_ASCII_LF)) {
return APR_EAGAIN;
}
Isn't that a potential infinite loop? The zero-length bucket
will still be there next time round.
if (len == 0) { remove(b); try
William A. Rowe, Jr. wrote on 2008-01-02:
Please fetch up the newly prepared httpd-mod_ftp-0.9.1.tar.gz, or the
win32/netware/os2 suitable package httpd-mod_ftp-0.9.1-crlf.zip (and
their md5/asc sigs), take it for a spin, and cast your choice
There is one binding +1, no other votes. I count
Okay, I found a new bug in the 2.2.7 proxy while testing SSL
and non-SSL CONNECTions both with and without a ProxyRemote
directive.
verbose
To recap, totally different things happen in the presence or
absence of a ProxyRemote:
* with ProxyRemote, the web server acts as a forwarder, and
William A. Rowe, Jr. wrote:
Tom Donovan wrote:
Steffen wrote:
William A. Rowe, Jr. wrote:
Tom Donovan's confirmed the state of mpm_winnt as again working
with mod perl across service, console, and -X modes (and some
other slightly more obscure models).
I'll backport the correction to 2.0.63
Tom Donovan wrote:
With an earlier patch from comment #6 in bug 43534, mod_perl and the
Apache window seem fine in all startup cases I can think to try - but
there is a concern about exactly when stdout gets directed to the null
device.
I don't quite follow this concern - but I'm sure
On 01/08/2008 06:25 PM, Nick Kew wrote:
On Tue, 08 Jan 2008 16:38:15 -
[EMAIL PROTECTED] wrote:
+if ((len == 0) || (lineend[len - 1] != APR_ASCII_LF)) {
return APR_EAGAIN;
}
Isn't that a potential infinite loop? The zero-length bucket
will still be there next
On 01/08/2008 06:41 PM, Martin Kraemer wrote:
Okay, I found a new bug in the 2.2.7 proxy while testing SSL
and non-SSL CONNECTions both with and without a ProxyRemote
directive.
verbose
To recap, totally different things happen in the presence or
absence of a ProxyRemote:
*
On 01/08/2008 05:47 PM, Ruediger Pluem wrote:
On 01/08/2008 05:12 PM, William A. Rowe, Jr. wrote:
[EMAIL PROTECTED] wrote:
+ *) SECURITY: CVE-2008-0005 (cve.mitre.org)
I thought we concur that (short of direct html injection in the page's
head) the browser misdetection of UTF-7, contrary
On Tue, Jan 08, 2008 at 08:37:10PM +0100, Ruediger Pluem wrote:
Very, very strange because in the SSL proxy forward case you
1. use mod_proxy_connect which wasn't touched in 2.2.x for the last 11 month,
so I doubt that this is a regression-
I must confess that I have always tested the
I am having a similar problem to what's mentioned at
http://svn.haxx.se/users/archive-2005-03/1424.shtml -- namely when
exposing an HTTPS server that proxies DAV requests to a server running
mod_dav over HTTP, copy/move requests fail because the destination
sent by the client for the copy/move
tis 2008-01-08 klockan 18:10 -0500 skrev David Sklar:
The attached patch attempts to remedy the problem by adding two
configuration directives, DAVForcedScheme and DAVForcedPort. If
DAVForcedScheme is set then the uri that dav_lookup_uri() is asked
to lookup is modified to explicitly use the
Henrik Nordström wrote:
tis 2008-01-08 klockan 18:10 -0500 skrev David Sklar:
The attached patch attempts to remedy the problem by adding two
configuration directives, DAVForcedScheme and DAVForcedPort. If
DAVForcedScheme is set then the uri that dav_lookup_uri() is asked
to lookup is modified
Hi,
I have a couple issues with mod_proxy:
1) HTTP Keep-Alive on an SSL Connection:
In the source for Apache 2.2.6, around line 1704 of
modules/proxy/mod_proxy_http.c there is this code that causes HTTPS
connections to not use Keep-Alive's:
backend-is_ssl = is_ssl;
/*
* TODO: Currently we
On Mon, 07 Jan 2008 11:29:43 +0100
Ruediger Pluem [EMAIL PROTECTED] wrote:
I will also propose the optimizations. If someone has cycles to
review then fine, if not then in 2.2.9 :-).
At lines 364 and 460 (trunk), you set HTTP_SERVICE_UNAVAILABLE
when broken chunking is encountered. I don't
On Jan 8, 2008, at 3:10 PM, David Sklar wrote:
Any comments on the patch would be appreciated -- it's wonderful, it's
a good solution but could be improved, it's a ridiculous way to solve
this problem, etc.
Doesn't setting the global directive:
ServerName https://foo.bar:443
already do
28 matches
Mail list logo
