1
0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-06 01:57:40 +00:00
Commit Graph

200 Commits

Author SHA1 Message Date
Clement Laforet
a3c785313b - Install correct apr_mysql_dbd revision
Spotted by:	Tigran Azaryantz <tigercost@yahoo.com>
2006-11-07 08:09:20 +00:00
Clement Laforet
2ca1ad3194 - Update MySQL apr_dbd to rev 57
- Add support for itk mpm
- Update doc [1]

Reported by:	Volodymyr Kostyrko <arcade@synergetica.dn.ua> [1]
2006-11-05 10:49:17 +00:00
Clement Laforet
9f63b13398 - House keeping (update to current standards: USE_RC_SUBR, USE_LDCONFIG,etc.)
- Remove python dependency unless apr_dbd_mysql is built [1]

Required by:		many [1]
2006-09-24 16:16:40 +00:00
Clement Laforet
75a3e986e9 - Fix apr_dbd_mysql stuff.
Pointyhat to:	clement
Spotted by:	Sean McNeil <sean@mcneil.com>
2006-08-07 17:10:39 +00:00
Clement Laforet
6ffdbab58e - Update to 2.2.3
- Update apr_dbd to latest version [1]
- Add forgotten mod_authn_alias [2]

Spotted by:     Jim Riggs <freebsd-lists@jimandlissa.com> [1]
                Alexander Wittig <alexander@wittig.name> [2
2006-08-05 20:37:23 +00:00
Clement Laforet
b5c6eb5f0e - Fix security issue in mod_rewrite.
All people using mod_rewrite are strongly encouraged to update.

An off-by-one flaw exists in the Rewrite module, mod_rewrite.
Depending on the manner in which Apache httpd was compiled, this
software defect may result in a vulnerability which, in combination
with certain types of Rewrite rules in the web server configuration
files, could be triggered remotely.  For vulnerable builds, the nature
of the vulnerability can be denial of service (crashing of web server
processes) or potentially allow arbitrary code execution.
This issue has been rated as having important security impact
by the Apache HTTP Server Security Team

Updates to latest versions will follow soon.

Notified by:	so@ (simon)
Obtained from:	Apache Security Team
Security: 	CVE-2006-3747
2006-07-27 20:26:29 +00:00
Edwin Groothuis
e4aa76a9be Remove USE_REINPLACE from categories starting with W 2006-05-13 04:41:22 +00:00
Clement Laforet
71b1a5bb72 - Remove obsolete patch which add support to Windows Update Service when
apache acts as a proxy.

Reported by:	Bjoern Voigt <bjoern@cs.tu-berlin.de>
2006-05-10 19:47:15 +00:00
Clement Laforet
568a8f4a76 - Update to 2.2.2
- Enable mod_version by default
2006-05-01 09:07:28 +00:00
Ade Lovett
8503536d38 Conversion to a single libtool environment.
Approved by:	portmgr (kris)
2006-02-23 10:40:44 +00:00
Jun Kuriyama
a06ee65df0 Chase shlib bump of libexpat. 2006-01-30 23:20:05 +00:00
Clement Laforet
4b2f11fc9c - Finish cleanups and fix build with threads enables. 2006-01-17 09:40:53 +00:00
Clement Laforet
c5d4c969c8 Cleanups and fixes
- remove useless options (and fix thread stuff) [1]
- move print-closest-mirror to bsd.apache.mk
- move threads configure options out of Makefile.modules
- Fix stupid logic to disable v4mapped address [2]
- and more...

Submitted/spotted by:   many, Hirohisa Yamaguchi <umq@ueo.co.jp> [1]
                        ume[2]
PR:                     ports/91813 [1]
2006-01-15 18:58:38 +00:00
Clement Laforet
09606c5f79 - Moving Makefile.modules before b.p.pre.mk leads to weird results.
First problem spotted by:	leafy <leafy@leafy.idv.tw>
2006-01-15 08:56:50 +00:00
Clement Laforet
d782b5c3b7 - SECURITY: CVE-2005-3357 (cve.mitre.org)
mod_ssl: Fix a possible crash during access control checks if a
   non-SSL request is processed for an SSL vhost (such as the
   "HTTP request received on SSL port" error message when an 400
   ErrorDocument is configured, or if using "SSLEngine optional").
   [1]
- reintroduce support of multiple instances of apache in startup
  script [2]
- Add configtest command to apache22.sh [2]
- rewrite detection of accf_http filter to make it works on all
  supported branches.
- fix rcorder [3]
- fix startup at boot time when profiles are used [4]

Spotted by:     simon [1], flz[3]
Submitted by:   Jarrod Sayers <jarrod@netleader.com.au> [2],
                Joe Horn <joehorn@mi.chu.edu.tw> [4]
PR:             ports/91154 [2], ports/90708 [4]
2006-01-14 16:03:43 +00:00
Clement Laforet
7b8f2851be - Fix some suexec CONFIGURE_ARGS for 1.3.x
- add show-categories and show-modules targets, for server ports.
  Remove these targets from www/apache22/Makefile
2006-01-14 13:42:56 +00:00
Clement Laforet
b5228994c7 - remove useless powerlogo.gif 2005-12-25 18:58:05 +00:00
Clement Laforet
16c8614c54 - Fix plist and improve dbd /mem_cache logic 2005-12-17 15:51:16 +00:00
Clement Laforet
1343a99fc9 - Fix envvars.d [1]
- Add apache22_http_accept_enable to load accf_http kernel module [2]
  Additionnally, if it's not defined, we drop accept filter support
- Drop obsolete apache22ssl_enable rc.conf option
- Sync apache22.sh behavior with apachectl
  Add graceful and graceful-stop targets
- Rework categories (add CACHE_MODULES)
- Add support for apr_dbd: MySQL, PostgrSQL and SQLite3 backends are supported
  It adds mod_auth_dbd and mod_dbd automatically

more fixes to come soon...

PR:             ports/90309 [1],
                ports/90103 [2]
Submitted by:   Simun Mikecin <sime@data.home.hr> [1],
                Melvyn Sopacua <melvyn@melvyn.homeunix.net> [2]
2005-12-13 22:26:57 +00:00
Clement Laforet
db0466bc1e SECURITY: CVE-2005-3352 (cve.mitre.org)
mod_imap: Escape untrusted referer header before outputting in HTML
     to avoid potential cross-site scripting.  Change also made to
     ap_escape_html so we escape quotes.  Reported by JPCERT.
     [Mark Cox]

Reported by:    simon
2005-12-12 20:55:14 +00:00
Clement Laforet
266ad05559 - Don't forget to add USE_BUNDLED_APR to CONFIGURE_ENV 2005-12-10 11:53:01 +00:00
Clement Laforet
fd90671f79 - Fix plist (forgot when I add mod_filter) [1]
- workaround apr detection. Now apache22 build his own apr, even if apr
  is installed, unless you define WITH_APR_FROM_PORTS.

Reported by:	pointyhat via kris [1]
2005-12-10 11:39:40 +00:00
Clement Laforet
d38b409f15 - Various package fixes
- Bump PORTREVISION
2005-12-04 14:59:41 +00:00
Clement Laforet
d97c6f0567 - Add apache 2.2.0
It's a temporary layout, I need more time to find the best.
  note that ${PREFIX}/www/(data|errors|cgi)(-dist) disappeared in favor of
  ${PREFIX}/www/apache22
2005-12-03 22:02:58 +00:00
Pav Lucistnik
8426fb5ae1 - Update to 2.1.9
PR:		ports/88707
Submitted by:	dikshie <dikshie@lapi.itb.ac.id>
Approved by:	maintainer timeout (clement; 3 weeks)
2005-11-30 00:13:39 +00:00
Ade Lovett
54a0b86543 Mass-conversion to the USE_AUTOTOOLS New World Order. The code present
in bsd.autotools.mk essentially makes this a no-op given that all the
old variables set a USE_AUTOTOOLS_COMPAT variable, which is parsed in
exactly the same way as USE_AUTOTOOLS itself.

Moreover, USE_AUTOTOOLS has already been extensively tested by the GNOME
team -- all GNOME 2.12.x ports use it.

Preliminary documentation can be found at:
	http://people.FreeBSD.org/~ade/autotools.txt

which is in the process of being SGMLized before introduction into the
Porters Handbook.

Light blue touch-paper.  Run.
2005-11-15 06:52:12 +00:00
Clement Laforet
336a225140 - Backport WANT_APACHE= common21 from development version of bsd.apache.mk
Now module selection in apache21 works properply
2005-11-02 09:13:28 +00:00
Clement Laforet
0b1f4f30b9 - Update to 2.1.8
Not all new cool stuff is supported but it will be when  2.2.0
  comes out.
2005-10-30 20:39:05 +00:00
Clement Laforet
d03aaaaa5e - make sure SSL dependency doesn't exists if WITHOUT_MODULES_SSL is defined 2005-08-01 10:04:18 +00:00
Clement Laforet
376096e543 - Update to 2.1.4
Once more, you have to rebuild all apache modules.
2005-03-17 20:32:44 +00:00
Clement Laforet
4b58bbf26b - Update to 2.1.3
If you can't fetch the distfile, fetch http://httpd.apache.org/dev/dist/httpd-2.1.3-alpha.tar.bz2
into ${PORTSDIR}/distfiles/apache21
2005-02-23 10:59:45 +00:00
Clement Laforet
38893d64f6 - Fix envvar.d stuff 2005-02-05 18:26:21 +00:00
Clement Laforet
4e80ec5376 o startup script:
- Use apache{2,21}flags variable in apache{2,21}_checkconfig().
  It fixes restart when apache2ssl_enable is set to YES in rc.conf
  and httpd.conf is "old" (i.e. non -DSSL safe) [1]

o Makefile
- split post-install target to add install-startup-script:
  User can now upgrade startup script without reinstalling apache2.
  NOTE: this is NOT package-safe and NOT supported, even if in most of
  cases they're no risk.

Noticed by:     many [1]
2005-01-11 13:45:05 +00:00
Clement Laforet
9e10a6de6c - Add forgotten patch in previous commit. This fix installation of
stalled ${PREFIX}/sbin/envvar-std

Noticed by:		our wonderful ports janitor pseudo-bot
Huge Pointy Hat to:	me
2004-12-21 08:35:51 +00:00
Clement Laforet
f923f178ec - Sync with www/apache2:
- mod_ssl fix
  - make envvars modular
- Try to make pointyhat happy [1]

Obtained from:  devel/apr [1]
2004-12-18 11:09:00 +00:00
Clement Laforet
15ee98b7a3 - Remove 2 apr related directory
Reported by:		pointyhat via kris
Huge pointyhat to:	me
2004-12-16 08:25:33 +00:00
Clement Laforet
97d30de795 - Move standard configuration files to ${EXAMPLESDIR} to not get
dist config files installed in ${PREFIX}/etc/apache21
- Add support for Event MPM and add backport from apr to support
  APR_POLLSET_THREADSAFE (needed by Event MPM and forgotten @ release
  time) [1]
- misc cleanups
- Bump PORTREVISION to reflect all cool changes which occured today ;)

Obtained from:  apr svn repository
2004-12-13 18:48:03 +00:00
Clement Laforet
61a480b7fe - Fix SHLIB stuff 2004-12-13 10:29:36 +00:00
Clement Laforet
53975fd702 - Sync apache-apr layout with devel/apr one (to avoid another hack for
subversion)
- Add support for APR_FROM_PORTS
2004-12-13 10:26:52 +00:00
Clement Laforet
b61dc875e8 - Add a missing build dependency on python
Reported by:	pointyhat via kris
2004-12-12 20:01:05 +00:00
Clement Laforet
a3468fefcb - Add apache 2.1.2
This is a development version, awaiting for 2.2
2004-12-11 18:06:04 +00:00
Clement Laforet
203ad8c8b9 - Move apache21 to Attic.
Will be back soon ;-)

Suggested by:		kris
2004-03-17 08:41:58 +00:00
Jun Kuriyama
4a868f8a2a o Bump $LIB_DEPENDS line to chase expat's shlib version.
o Bump $PORTREVISION.
2004-03-14 07:58:26 +00:00
Ade Lovett
3f651573ad Whoa there, boy, that's a mighty big commit y'all have there...
Begin autotools sanitization sequence by requiring ports to explicitly
specify which version of {libtool,autoconf,automake} they need, erasing
the concept of a "system default".

For ports-in-waiting:

	USE_LIBTOOL=YES		->	USE_LIBTOOL_VER=13
	USE_AUTOCONF=YES	->	USE_AUTOCONF_VER=213
	USE_AUTOMAKE=YES	->	USE_AUTOMAKE_VER=14

Ports attempting to use the old style system after June 1st 2004 will be
sorely disappointed.
2004-03-14 06:17:56 +00:00
Oliver Eikemeier
bb08d2c7c7 Sync FORBIDDEN tags with the FreeBSD VuXML database, please refer to the
individual database entries for details. Report errors and omissions in the
database to the FreeBSD Security Officer <security-officer@FreeBSD.org>

bump PORTREVISON for x11/linux-XFree86-libs, since the vulnerabilites are
fixed.
2004-03-11 18:48:07 +00:00
Hye-Shik Chang
c6445c3cc5 Fix build.
PR:		58711
Submitted by:	Yusuke Matsuoka <yusmat@iris.dti.ne.jp>
Approved by:	maintainer
2003-10-30 09:37:13 +00:00
Trevor Johnson
15bb1ce95f Update to 2.0.48, which has corrections for two security bugs:
- CAN-2003-0789:  information leak in mod_cgid
<URL:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0789>
- CAN-2003-0542:  buffer overflow in mod_alias and mod_rewrite
<URL:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0542>

Use a DIST_SUBDIR.  Use the DOCSDIR macro.

Add options: HTTP_PORT, IPV6_V6ONLY, NO_CGI, NO_ERROR, NO_ICONS,
NO_WWW, NO_WWWDATA, WITHOUT_AUTH, WITHOUT_DAV, WITHOUT_MODULES,
WITHOUT_MODULES, WITHOUT_PROXY, WITH_ALL_STATIC_APACHE, WITH_BERKELEYDB,
WITH_CUSTOM_AUTH, WITH_CUSTOM_PROXY, WITH_DBM, WITH_EXTRA_MODULES,
WITH_MODULES, WITH_MPM, WITH_STATIC_APACHE, WITH_STATIC_MODULES and
WITH_STATIC_SUPPORT

PR:		58654
Submitted by:	Clement Laforet (maintainer)
2003-10-29 22:46:45 +00:00
Dirk Meyer
a49e1ce266 - fix spelling in CONFLICTS 2003-10-25 20:47:38 +00:00
Christian Weisgerber
c05f2db84d Add forgotten file to plist.
PR:		58211
Submitted by:	Dimitry Andric <dimitry@andric.com>
Approved by:	maintainer
2003-10-18 17:00:18 +00:00
Dirk Meyer
23a445abcc - add CONFLICTS
Submitted by:   eikemeier@fillmore-labs.com
Approved by:    kris
2003-10-14 15:47:28 +00:00