Re: 2.4.38

That's contrary to how most see it, I held off replying to this thread because I wanted to put this out there, on our system admin group, which contains some 491 members from 29 countries, and includes some of the rather well known ISP and Hosting providers that are a lot bigger than a few

Re: 2.4.38

Disagree. My 2 cents as a watcher, administrator and user: 1/ they have better things to do Then don’t take the release! If a release contains security patches (so they should take it), then I don’t see how hiding the issue by holding back the release helps. 2/ it gives impression of

Re: CVE-2018-11763: mod_http2, DoS via continuous SETTINGS frames

I'm confused. Why are there no changes to mod_http2 mentioned in: http://www.apache.org/dist//httpd/CHANGES_2.4.35 to presumably address this CVE? Or does one of the other changes cover this? (No as far as I can see but could be

Re: https vhosts

> On 24 May 2018, at 12:44, Eric Covener wrote: > > On Thu, May 24, 2018 at 7:34 AM, Stefan Eissing > wrote: >> >> >>> Am 24.05.2018 um 13:28 schrieb Eric Covener : >>> >>> On Thu, May 24, 2018 at 7:23 AM, Stefan Eissing