Changelog: webalizer-2.01-10
Fixes:
o Fix posible obscure buffer overflow bug in DNS resolver code
o Added additional extended character fixes
o Let code accept partial content response codes along with 200's
o Added code to catch blank hostnames (yes, they have been found!)
Will convert them into 'Unknown'
o Security fix for cross-site scripting vulnerability found by
Flavio Veloso (www.magnux.com).
Updates in languages:
webalizer_lang.czech
webalizer_lang.portuguese
webalizer_lang.spanish
-----------------
Distfiles remaden on Master site:
old tarball:
webalizer-2.01-10-src.tgz
(had an extra CVS dir)
new tarball:
webalizer-2.01-10-src.tar.bz2
-----------------
Add Option:
WEBALIZER_WITH_GD2
builds okay, but won't run without X11 if compiled with this option.
The problem is that webalizer strips down all national characters from
query strings making impossible to use its Search String report for
non-English sites.
Submitted by: ache
o Security fix for cross-site scripting vulnerability found by
Flavio Veloso (www.magnux.com).
o Fixed a TOTAL_RC off by one error, which would prevent the last
response code from being saved when using incremental mode.
was crashing everytime it was run with -M1 and it encountered a
log entry created by Opera/5.0. Here's an example entry just
for reference.
as6-5-2.kp.g.bonet.se - - [28/Jun/2001:03:32:35 -0500] "GET / HTTP/1.1" 200 2078 "-" "Opera/5.0 (Linux 2.4.5 i686; U) [en]"
Submitted by: steve
o Use new API for GD functions
PR: ports/12857
Submitted by: Dirk Meyer <dirk.meyer@dinoex.sub.org>
o Pass information to configure that will allow this port to work
for people with alternative PREFIXes
o Make this port respect CFLAGS
o Change BUILD_DEPENDS on the static gd library to a LIB_DEPENDS on the
shared library, which is what this port really uses.
o Remove a patch and a one-line(functionally) script and simply use a perl
command in pre-configure:
[Has anyone figured-out what makes the number 393 so interesting to PW, now?]
I wonder what was going through Jordan's head during his infamous
$Id$-smashing commit.
Before I forget....
Thanks to naddy@mips.rhein-neckar.de (Christian Weisgerber) for prompting
this commit. See msg-id: 7geokh$tje$1@mips.rhein-neckar.de
