Fix some memory leaks and a video device close hang issue. [1]
Update webcamd.conf script, to use the new notify system MFC'd in r207397. [2]
Note that the old script didn't work at all. And the new one only doesn't work
if you use an older version of 8-stable or 8.0-release.
Submitted by: maintainer [1], Andrew Thompson [2]
This fixes both bundled apr using the port (devel/apr for WITH_APR_FROM_PORTS)
PR: ports/134577
Requested by: Pascal Vizeli <pvizeli@yahoo.de>
With Hat: apache@
--with-ldap switches on LDAP library linking in apr-util
--enable-ldap option switches on the LDAP caching module
--enable-authnz-ldap option switches on the LDAP authentication module
[AAA was rewritten in 3 peices in 2.4.x, hence the option change]
- no custom patch, the linking was fixed in 2.2.x
- ldap is not in the default package, so no PORTREVISION bump
PR: ports/128079
Reported by: koitsu, skreuzer
With Hat: apache@
--with-ldap switches on LDAP library linking in apr-util
--enable-ldap option switches on the LDAP caching module
--enable-auth-ldap option switches on the LDAP authentication module
also apply a custom patch to fix the linking
- add a missing quote to OPTIONS desc
- ldap is not in the default package, so no PORTREVISION bump
PR: ports/128079
Reported by: koitsu, skreuzer
With Hat: apache@
[1]: Fix gitk to exec wish8.5 and not wish.
[2]: Add a CONTRIB knob, default to on, which installs contrib scripts.
Use COPYTREE_SHARE for installing GITWEB stuff.
Whitespace cleanup in P4 OPTION definition and installation.
Note CONTRIB information in pkg-message.
Changelog: http://www.kernel.org/pub/software/scm/git/docs/RelNotes-1.7.1.txt
PR: [1]: ports/146016
Submitted by: [1]: Bruce Cran <bruce@cran.org.uk>
[2]: Martin Sugioarto (based upon a patch via private mail)
which allow mod_auth_digest to build
next www/apache2* need to pass it through
Default package doesn't change
PR: ports/134577
Requested by: Pascal Vizeli <pvizeli@yahoo.de>
With Hat: apache@
[from CHANGES file]
*) SECURITY: CVE-2009-3555 (cve.mitre.org)
mod_ssl: Comprehensive fix of the TLS renegotiation prefix injection
attack when compiled against OpenSSL version 0.9.8m or later. Introduces
the 'SSLInsecureRenegotiation' directive to reopen this vulnerability
and offer unsafe legacy renegotiation with clients which do not yet
support the new secure renegotiation protocol, RFC 5746.
[Joe Orton, and with thanks to the OpenSSL Team]
*) SECURITY: CVE-2009-3555 (cve.mitre.org)
mod_ssl: A partial fix for the TLS renegotiation prefix injection attack
for OpenSSL versions prior to 0.9.8l; reject any client-initiated
renegotiations. Forcibly disable keepalive for the connection if there
is any buffered data readable. Any configuration which requires
renegotiation for per-directory/location access control is still
vulnerable, unless using openssl 0.9.8l or later.
[Joe Orton, Ruediger Pluem, Hartmut Keil <Hartmut.Keil adnovum.ch>]
*) SECURITY: CVE-2010-0408 (cve.mitre.org)
mod_proxy_ajp: Respond with HTTP_BAD_REQUEST when the body is not sent
when request headers indicate a request body is incoming; not a case of
HTTP_INTERNAL_SERVER_ERROR. [Niku Toivola <niku.toivola sulake.com>]
*) SECURITY: CVE-2010-0425 (cve.mitre.org)
mod_isapi: Do not unload an isapi .dll module until the request
processing is completed, avoiding orphaned callback pointers.
[Brett Gervasoni <brettg senseofsecurity.com>, Jeff Trawick]
*) SECURITY: CVE-2010-0434 (cve.mitre.org)
Ensure each subrequest has a shallow copy of headers_in so that the
parent request headers are not corrupted. Eliminates a problematic
optimization in the case of no request body. PR 48359.
[Jake Scott, William Rowe, Ruediger Pluem]
0) its like 7yrs old
0) the new version have speed,bug,&security fixes
0) www/apache22 already does this
0) www/apache23+ no longer bundle pcre [or apr* for that matter]
- Bump PORTREVISION
With Hat: apache@
