Sisyphus repository
Last update: 2017-08-21 14:05:46 +0400 | SRPMs: 17977 | Sign in or Sign up
en ru uk br
ALT Linux repositories
hide window
Sisyphus: 1.3.42rusPL30.24-alt8.1.1
p8: 1.3.42rusPL30.24-alt8.1
p7: 1.3.42rusPL30.24-alt5
t7: 1.3.42rusPL30.24-alt5
Platform6: 1.3.42rusPL30.24-alt3.M60T.1
t6: 1.3.42rusPL30.24-alt3.M60T.1
Platform5: 1.3.42rusPL30.24-alt3.M51.1
5.1: 1.3.42rusPL30.24-alt3.M51.1

Group :: System/Servers
Source RPM: apache

 Main   Changelog   Spec   Patches   Sources   Download   Gear   Bugs and FR (5/85)   Repocop 

2017-02-03 Igor Vlasenko <viy at altlinux.ru> 1.3.42rusPL30.24-alt8.1.1

    - rebuild with new perl 5.24.1

2015-11-25 Igor Vlasenko <viy at altlinux.ru> 1.3.42rusPL30.24-alt8.1

    - rebuild with new perl 5.22.0

2015-09-30 Michael Shigorin <mike at altlinux.org> 1.3.42rusPL30.24-alt8

    - added apache-1.3.41-mod_perl-gcc43.patch by Salvador Ortiz Garcia

2014-12-09 Igor Vlasenko <viy at altlinux.ru> 1.3.42rusPL30.24-alt7.1

    - rebuild with new perl 5.20.1

2014-12-08 Igor Vlasenko <viy at altlinux.ru> 1.3.42rusPL30.24-alt7

    - added mod_perl-perl-5.20.patch

2013-08-29 Vladimir Lettiev <crux at altlinux.ru> 1.3.42rusPL30.24-alt6

    - built for perl 5.18

2012-09-04 Vladimir Lettiev <crux at altlinux.ru> 1.3.42rusPL30.24-alt5

    - rebuilt for perl-5.16
    - fixed build

2012-02-21 Aleksey Avdeev <solo at altlinux.ru> 1.3.42rusPL30.24-alt4

    - Add condstopstart-web scripts for httpd-perl

2012-02-14 Aleksey Avdeev <solo at altlinux.ru> 1.3.42rusPL30.24-alt3

    - Add scripts for condstopstart-web

2012-02-01 Aleksey Avdeev <solo at altlinux.ru> 1.3.42rusPL30.24-alt2

    - Use gpasswd -a in %pre %name-common (Closes: #23240)

2011-10-13 Alexey Tourbin <at at altlinux.ru> 1.3.42rusPL30.24-alt1.2

    - rebuilt for perl-5.14

2010-11-07 Vladimir Lettiev <crux at altlinux.ru> 1.3.42rusPL30.24-alt1.1

    - rebuilt with perl 5.12

2010-03-16 Aleksey Avdeev <solo at altlinux.ru> 1.3.42rusPL30.24-alt1

    - 1.3.42rusPL30.24 (Closes: #22912)
    - Security fixes (CVE-2010-0010)
    - Generate SSL key from httpd-perl initscript

2009-10-12 Denis Smirnov <mithraen at altlinux.ru> 1.3.41rusPL30.23-alt8

    - generate SSL key from initscript

2009-05-22 Aleksey Avdeev <solo at altlinux.ru> 1.3.41rusPL30.23-alt7

    - Update message in %pre common (Closes: #19602)
    (thanks to Sergey Vlasov )
    - mod_perl-doc: fix package install

2008-10-28 Aleksey Avdeev <solo at altlinux.ru> 1.3.41rusPL30.23-alt6

    - Fix symlink for cgi-bin scripts created

2008-10-14 Aleksey Avdeev <solo at altlinux.ru> 1.3.41rusPL30.23-alt5

    - Add build subpackages:
    + %name-datadirs -- data dirs
    + %name-cgi-bin-test-cgi and %name-cgi-bin-printenv -- cgi-bin scripts
    (use control for facility)

2008-08-19 Aleksey Avdeev <solo at altlinux.ru> 1.3.41rusPL30.23-alt4.7

    - NMU
    - Add build subpackages (#16353):
    + %name-base and %name-mod_perl-base (not requires a webserver-cgi-bin,
    webserver-html and webserver-icons)
    + %name-fill and %name-mod_perl-full (requires a %name-cgi-bin,
    %name-html and %name-icons)
    - Add auto adding user %apache_user to group %webserver_group
    - Add httpd provides in %name-base and %name-mod_perl-base subpackages
    (#13665)

2008-08-16 Aleksey Avdeev <solo at altlinux.ru> 1.3.41rusPL30.23-alt4.6

    - NMU
    - Add %apache_datadir/apache/ dir in %name-common subpackage
    - Move manual dir (%apache_htdocsdir/manual) to %apache_datadir/apache/manual

2008-08-15 Aleksey Avdeev <solo at altlinux.ru> 1.3.41rusPL30.23-alt4.5

    - NMU
    - Rebuild due to libssl.so.6 -> libssl.so.7 soname change.

2008-07-15 Aleksey Avdeev <solo at altlinux.ru> 1.3.41rusPL30.23-alt4.4

    - NMU
    - Removed version of the webserver-{cgi-bin,html,icons}

2008-07-14 Aleksey Avdeev <solo at altlinux.ru> 1.3.41rusPL30.23-alt4.3

    - NMU
    - Unset BuildArch %_target_cpu
    - Use rpm-macros-apache (Closes: #16346)
    - Add build subpackage for ALT Linux RPM Packaging Policy:
    + rpm-build-%name

2008-06-26 Aleksey Avdeev <solo at altlinux.ru> 1.3.41rusPL30.23-alt4.2

    - NMU
    - Add using webserver-common package:
    + removing altlinux.png
    + removing Provides dirs
    %apache_datadir/{,cgi-bin/,html/{,addon-modules/},icons/{,small/}}
    + adding %apache_user to %webserver_group
    - Create subpackages:
    + %name-cgi-bin
    + %name-manual-addons
    + %name-html
    + %name-icons
    - Set BuildArch to noarch for subpackages

2008-06-14 ALT QA Team Robot <qa-robot at altlinux.org> 1.3.41rusPL30.23-alt4.1

    - Automated rebuild with libdb-4.7.so.ALT/Daedalus/apache2/spec

2008-04-19 Michael Shigorin <mike at altlinux.org> 1.3.41rusPL30.23-alt4

    - revisit #11053, complete the fix (thanks lakostis@ again)

2008-04-19 Michael Shigorin <mike at altlinux.org> 1.3.41rusPL30.23-alt3

    - added monit support
    - removed unpackaged sample configuration snippets
    - cleaned up pod files packaged into both apache-mod_perl and mod_perl-doc
    (left them in mod_perl-doc package only)

2008-03-31 Michael Shigorin <mike at altlinux.org> 1.3.41rusPL30.23-alt2

    - rediffed/applied 1.3.23 patch by Alex Pinzhenin to limit
    mod_rewrite looping potential by putting a cap on internal redirect
    count (50 by default) and RewriteRule-per-query count (300 by default);
    http://www.opennet.ru/base/patch/mod_rewrite_loop.txt.html
    http://www.lexa.ru/apache-talk/msg06354.html

2008-01-19 Michael Shigorin <mike at altlinux.org> 1.3.41rusPL30.23-alt1

    - 1.3.41 contains security fix for:
    + CVE-2007-6388: mod_status: ensure refresh parameter is numeric to prevent
    a possible XSS attack caused by redirecting to other URLs)
    - 1.3.40 (unreleased) contains security fixes for:
    + CVE-2007-5000: mod_imap: fix cross-site scripting issue
    + CVE-2007-3847: mod_proxy Windows/NetWare-specific DoS
    + CVE-2007-3304: more efficient patch, also fixes bogus "Bad pid" errors
    - http://www.apache.org/dist/httpd/CHANGES_1.3.41 for details
    - updated EAPI to hand-made 2.8.30a with build fix kindly sent in
    by Dan Muey (rolled into EAPI tarball by me;
    releasing as 2.8.30a-1.3.41 along with mod_ssl)

2007-10-03 Michael Shigorin <mike at altlinux.org> 1.3.39rusPL30.23-alt2

    - modify packaged httpd.conf to disable directory autoindexing by default
    (/home/*/public_html stay indexed though); you might want to reconsider
    that in case the configuration wasn't touched at all (thus will be replaced
    during package upgrade) but directory indexes are needed (fixes #12898,
    thanks Timur Batyrshin for proposal/discussion/patch)

2007-09-13 Michael Shigorin <mike at altlinux.org> 1.3.39rusPL30.23-alt1

    - 1.3.39 merges security fixes for:
    + CVE-2006-5752: possible XSS attack against mod_status
    (exploitation requires public server-status page and ExtendedStatus enabled
    and a browser which performs charset "detection")
    + CVE-2007-3304: ensure that the parent process cannot be forced to kill
    non-child processes by checking scoreboard PID data with parent process
    privately stored PID data [this one was fixed by a patch before]
    - upstream mime.types updated to current IANA registry and common unregistered
    types that the owners refuse to register (see apache-mime.types.default)
    - icons/README.html instead of icons/small/README.txt
    - there was no Apache 1.3.38
    - updated EAPI to 2.8.30

2007-08-30 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.23-alt6

    - changed conftest() usage in initscript so that running processes
    which are still using valid configuration wouldn't be terminated
    if current configuration test fails; thanks nginx.init by mithraen@
    for bringing this to my attention

2007-07-31 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.23-alt5

    - merged security fix from RHEL2.1 (RH#245116):
    + CVE-2007-3304 (DoS by referencing an arbitrary process ID in scoreboard
    which then gets SIGUSR1 from master process; requires scripting ability)

2007-06-26 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.23-alt4

    - verified and disambiguated mime types; thanks Denis Smirnov (mithraen@)
    for a linter pass (fixes: #12141, #11461)

2007-04-06 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.23-alt3

    - rebuilt against recent libmm

2007-03-29 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.23-alt2

    - added minimal patch for mod_perl aimed at fixing CVE-2007-1349:
    DoS possibility with specially crafted requests in "PerlRun.pm"
    that uses the "path_info" variable without properly escaping it;
    thanks Randal L. Schwartz (merlyn stonehenge com) for a patch
    (seems to be also in mod_perl SVN)
    - NB: mod_perl 1.30 is released but differs quite significantly,
    no time to fix/build/test properly

2007-03-12 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.23-alt1

    - updated RA to PL30.23
    - wrapped LogFormat in default httpd{,-perl}.conf with IfModule
    (#11053; lakostis@ proposed to borrow from apache2 package)

2006-12-22 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt9

    - disable httpd, httpd-perl services startup by default:
    that might lead to undesired consequences in case of
    "accidentally" installed packages and/or forgetting
    about them while configuring services; see also [ru]:
    http://lists.altlinux.org/pipermail/devel/2006-December/039909.html

2006-11-23 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt8

    - bring SysV vhosts configuration support to mod_perl part of apache
    (thanks Alexey I. Froloff (raorn@) for nice #10308):
    + httpd-perl.conf: Include conf/vhosts/Vhosts-perl.conf
    + add vhosts/Vhosts-perl.conf and vhosts-perl.d/
    - got back some changes from alt6 (reverted wholesale in alt7):
    + removed remnants of libdb1
    + fixed gdbm support for mod_rewrite
    + move server child hard limit constant to a macro
    (still 1024 by default, just as in patch9 still left
    in src.rpm just in case too but not applied anymore)
    (the bug was #5748, for reference)
    - added TUNING.ALT file with tips on performance tuning
    (regarding #5748 again)
    - minor spec cleanup (more intrusive one pending)

2006-10-21 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt7

    - roll back alt6* changes since they are too intrusive by now,
    those who need log files or static content larger than 2Gb
    are advised to rotate logs, use nginx for downloads, or look
    at https://bugzilla.altlinux.org/show_bug.cgi?id=9382 for
    working, but resulting in binary incompatible apache, spec
    - added hint on mod_rewrite/mod_security order to default httpd.conf

2006-10-17 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt6.1

    - few more feeble tweaks at LFS (these will likely fail -- upstream
    seems to have had hostile enough stand to "that 1.3 being preferred
    to 2.0" to break former ways of enabling LFS on it, telling people
    should wait until 2.2; see also apache bugs #17453, #36417)

2006-10-15 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt6

    - scalability improvements:
    + support large logfiles (>2Gb) by default (#9382);
    thanks eostapets@ for alarm and raorn@ for sample spec
    + hopefully fixed gdbm support for mod_rewrite (by raorn@
    in the same stripped-down/fixed-up spec)
    + move server child hard limit constant to a macro
    (still 1024 by default, just as in patch9 still left
    just in case too)
    - s/libdb1-devel/libdb4-devel/ (might break 2.2 build?)
    - folks, I need proposals on #2907...

2006-10-14 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt5

    - added application/x-java-jnlp-file, application/x-xpinstall
    to mime.types (courtesy of zerg@, see bug #10088)
    - added commented-out example of editor backup file protection
    to default httpd.conf, httpd-perl.conf (#8489)

2006-09-30 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt4.1

    - oops, ServerSignature was really belonging to later
    section (and "off" was overridden with "on" there");
    thanks to Pavel Usischev for #10055

2006-09-26 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt4

    - implement bugchancement #10038 (ServerSignature Off;
    ServerTokens ProductOnly in default configuration)
    thanks thresh@ and hiddenman@ for reminder

2006-09-01 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt3

    - fix #9928 (default mod_realip.conf); thanks vvk@

2006-08-16 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt2

    - NameVirtualHost-related fix for default sample configuration
    (what a shame on me!, and thanks Pavel Usischev for #8385)

2006-08-05 Michael Shigorin <mike at altlinux.org> 1.3.37rusPL30.22-alt1

    - 1.3.37
    + security fix for CVE-2006-3747:
    mod_rewrite: Fix an off-by-one security problem in the ldap scheme
    handling. For some RewriteRules this could lead to a pointer being
    written out of bounds. Reported by Mark Dowd of McAfee.

2006-06-19 Michael Shigorin <mike at altlinux.org> 1.3.36rusPL30.22-alt1

    - 1.3.36
    + security fixes merged upstream (patch96 removed)
    + 1.3.35 was lucky enough to get missed (regression reported,
    and fixes were irrelevant to this package ayways)

2006-03-21 Dmitry V. Levin <ldv at altlinux.org> 1.3.34rusPL30.22-alt4

    - Applied additional fixes required for ld --as-needed.
    - Added build time check for unresolved symbols in DSOs.
    - Replaced macros for standard unix commands with commands themselves.

2006-03-20 Michael Shigorin <mike at altlinux.org> 1.3.34rusPL30.22-alt3

    - applied joint fixes by Denis Smirnov (mithraen@) and Dmitry Levin (ldv@):
    + Fixed building with -Wl,--as-needed.
    + Quoted macros in changelog.
    - thanks!

2006-01-25 Michael Shigorin <mike at altlinux.org> 1.3.34rusPL30.22-alt2

    - security fix for CVE-2005-3352:
    + cross-site scripting (XSS) vulnerability in the mod_imap module of Apache
    httpd before 1.3.35-dev allows remote attackers to inject arbitrary web
    script or HTML via the Referer when using image maps.
    + patch taken from Debian

2005-10-27 Michael Shigorin <mike at altlinux.org> 1.3.34rusPL30.22-alt1

    - 1.3.34
    - official security fixes:
    + CVE-2005-2088: If a request contains both Transfer-Encoding and
    Content-Length headers, remove the Content-Length, mitigating some HTTP
    Request Splitting/Spoofing attacks.
    + Added TraceEnable [on|off|extended] per-server directive to alter the
    behavior of the TRACE method.
    + please note that CAN-2005-2088 fix (patch95) was already included
    in 1.3.33rusPL30.20-alt4
    - added default localhost configuration for mod_realip;
    thanks Denis Smirnov (mithraen@)
    - updated EAPI to 2.8.25
    - updated RA to PL30.22

2005-10-19 Alexey Gladkov <legion at altlinux.ru> 1.3.33rusPL30.20-alt6

    - NMU: rpm macros fix.

2005-10-03 Michael Shigorin <mike at altlinux.org> 1.3.33rusPL30.20-alt5

    - Mon Oct 03 2005 Artem K. Jouravsky 1.3.33rusPL30.20-alt5
    + added mod_accel to current builds; off by default (#8029)
    + removed SMP incompatible build

2005-09-08 Michael Shigorin <mike at altlinux.org> 1.3.33rusPL30.20-alt4

    - added SVN patch for CAN-2005-2088 security vulnerability:
    when acting as an HTTP proxy, Apache 1.3 allows remote attackers to poison
    the web cache, bypass web application firewall protection, and conduct XSS
    attacks via an HTTP request with both a "Transfer-Encoding: chunked" header
    and a Content-Length header, which causes Apache to incorrectly handle and
    forward the body of the request in a way that causes the receiving server
    to process it as a separate HTTP request, aka "HTTP Request Smuggling."
    + thanks for SVN pointer to Ubuntu
    - fixed small port-related problem in sample Vhosts.conf
    (thanks Alexey Borovskoy (alb@) for notify/fix; also in alt3.M24.1)

2005-09-02 Michael Shigorin <mike at altlinux.org> 1.3.33rusPL30.20-alt3

    - whoops, README.ALT wasn't getting packaged (updated too)
    - altlinux-release build dependency appears illegal
    (long unneeded though)
    - Wed Aug 24 2005 Michael Shigorin
    + exchanged httpd and httpd-perl startup/shutdown order;
    see README.ALT for further details on mod_perl setup (#4994, #6437)
    thanks combr@, tma@, solo@, Ivan Adzhubey for discussion and fixes
    (you *will* need to chkconfig them on for this to apply)
    + rolled back #2928 workarounds (should be unneeded)
    + hard kill remaining processes after normal stop() part
    + fixed #6351 (delaycompress in logrotate; may influence #3153)
    thanks dfo@, sorry ldv@
    + fixed a transition bug in /etc/init.d/httpd::conftest()
    + UseCanonicalName Off in httpd{,-perl}.conf (#7704)
    + updated and extended README.ALT
    - Thu Feb 17 2005
    + added missing NameVirtualHost directive to default Vhosts.conf
    - Sat Feb 12 2005
    + Vhosts.conf thinko fix suggested by Alexey Morozov (morozov@)
    (Aug 24: could have lost that.... can't remember details now)
    - Sat Jan 29 2005
    + macros extended (see README.ALT); also #1735, #5634, #5989
    + re-fixed #4235 (weird hostname hack)
    + implemented separate TMPDIR (addon modules should follow) (#5989)
    + disabled mod_charset for mod_perl (hm... #2941-related)
    + commented out "AddDefaultCharset iso8859-1" by default (#5754)
    + added %apache_vhostdir and %apache_vhconfdir (#5634)
    + upped HARD_SERVER_LIMIT from 256 to 1024 (#5748; needs additional
    /etc/security/limits.conf tweaking to actually happen)
    + changed %suexec_docroot from /home to /var/www (#2461)
    + changed suexec binary permissions (see #5309)
    from 4711 root:root
    to 4710 root:apache
    + changed TMPDIR in initscripts to use more specific location than /tmp
    so that you can restrict apache access to that by ACL and further
    configure php and other software running as apache (#5989)
    + added patch to consult POSIX ACLs on CGI execution decision
    (#4987; disabled by default, build --with acl_support to enable)

2004-12-20 Denis Smirnov <mithraen at altlinux.ru> 1.3.33rusPL30.20-alt2

    - mod_realip added

2004-11-02 Michael Shigorin <mike at altlinux.ru> 1.3.33rusPL30.20-alt1

    - 1.3.33 (minor security fixes)
    - security fixes officially released (patch93 removed)
    - reverse proxy functionality restored (broken in 1.3.32 -- #5435);
    thanks to Leonid Shalupov for alerting
    - added htpasswd patch by Larry Cashdollar
    (unchecked buffer operations; not much of an issue though)

2004-10-27 Michael Shigorin <mike at altlinux.ru> 1.3.32rusPL30.20-alt2.1

    - fixed build w/o mod_deflate in addition to -alt2 security fixes
    (thanks to Alexey Beleckiy )

2004-10-23 Michael Shigorin <mike at altlinux.ru> 1.3.32rusPL30.20-alt2

    - updated security fixes (CAN-2004-0940):
    mod_include.c patch from CVS (1.3.33-dev)
    thanks to Vladimir Lettiev (crux@) for reminding
    - see also changelog entry for alt1 (CAN-2004-0492)

2004-10-22 Michael Shigorin <mike at altlinux.ru> 1.3.32rusPL30.20-alt1

    - 1.3.32 (security fixes)
    - CAN-2004-0492 (cve.mitre.org):
    Reject responses from a remote server if sent an invalid (negative)
    Content-Length.
    - added fix off/for http://www.securitylab.ru/48807.html;
    thanks to Vladimir Lettiev (crux@) for alerting and verifying
    - removed log directory cleanup after package deinstallation
    (seems like a bad practice)

2004-08-16 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.20-alt10

    - fixed #5002 (wrong perms on apache-common binaries excl. sample cgi-bin/*),
    thanks Vladimir Lettiev (crux@) for notifying!

2004-08-06 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.20-alt9

    - re-fixed #4235. distributed sourcedir can be evil...
    - fixed #1735 (Include conf/addon-modules.d/*.conf), thanks to
    Igor Muratov (migor@) for buggin' me on this long-standing topic

2004-07-22 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.20-alt8

    - fixed #4859 (webmaster group could be absent at apache-common installation)
    thanks to Alexander Kuprin (ru_classic mail ru)
    - tightened permissions on /etc/httpd/conf and /var/www/icons/ as per
    Dmitry Levin's request (#2920) -- please use "webmaster" group for
    content/configuration access and "apache" group for log access

2004-07-07 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.20-alt7

    - fixed #4719 (build condition for M22);
    thanks to Pavel Usishev

2004-06-29 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.20-alt6

    - fixed remnants of older internal subpackage versioning
    which barred mod_perl-doc installation; thanks to Dmitry Levin (ldv@)

2004-06-28 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.20-alt5

    - finally fixed #3153 (log rotation), thanks to Dmitry Levin (ldv@)
    - partially reverted group change introduced in 1.3.28rusPL30.18-alt2:
    /var/log/httpd permissions changed (#2920)
    from 750,root,webmaster
    to 750,root,apache
    - reworked initscript style detection routine along ldv's advice
    as relying on "Master" in /etc/altlinux-release for old-style seems
    to be getting to the point of being wrong ;-)
    - added mod_deflate to current builds; off by default (#2905)
    - fixed altlinux.html
    - /var/www/html/*.gif and /var/www/cgi-bin/* are now
    %config(noreplace); added /var/www/html/README.txt (#3715)

2004-06-17 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.20-alt4

    - fixed default httpd{-perl,}.conf regarding Ukrainian charsets and content
    preferences; see http://lists.osdn.org.ua/wws/arc/linux/2004-06/msg00103.html,
    thanks to Bohdan Vlasyuk

2004-06-10 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.20-alt3

    - fixed mod_proxy security issue; thanks to Dmitry Levin (ldv@) for
    alert/patch. Details at http://www.guninski.com/modproxy1.html
    - fixed "forced localhost" problem (#4235) -- forward-ported the missing part
    from previous initscripts (irrelevant for M22 build)
    - RA to PL30.20 (small Referer-related httpd.conf-dist fixes only)

2004-05-14 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.19-alt2

    - fixed ALM2.2 build (release inconsistency barring installation)
    - for secfix list see -alt1 changelog record

2004-05-12 Michael Shigorin <mike at altlinux.ru> 1.3.31rusPL30.19-alt1

    - 1.3.31 (security fixes for: CAN-2003-0020, CAN-2003-0987, CAN-2004-0174,
    CAN-2003-0993)
    - updated mod_ssl/EAPI to 2.8.17 (for 1.3.31)
    - updated RA patch to PL30.19 (for 1.3.29)
    - updated mod_perl to 1.29 (minor fixes)
    - updated patch1
    - refreshed build reqs; put perl-DBM to Sisyphus req branch

2004-03-31 Michael Shigorin <mike at altlinux.ru> 1.3.29rusPL30.18-alt6

    - fixed thinko in 1.3.29rusPL30.18-alt3's changelog (s/gorev/horror/)

2004-03-14 Michael Shigorin <mike at altlinux.ru> 1.3.29rusPL30.18-alt6

    - hopefully fixed #3153, thanks to Dmitry Alexeyev

2004-02-14 Michael Shigorin <mike at altlinux.ru> 1.3.29rusPL30.18-alt5

    - rebuilt against libdb4.2

2004-01-28 Michael Shigorin <mike at altlinux.ru> 1.3.29rusPL30.18-alt4

    - brought back new and improved ugly hack (since perl and rpm compare
    1.1701 and 1.27 in different the only right ways)

2004-01-19 Michael Shigorin <mike at altlinux.ru> 1.3.29rusPL30.18-alt3

    - clarified service version dependency for Sisyphus build
    (#3245; thanks to Andy Gorev (horror@) for investigation)
    - added missing /usr/lib/perl5/vendor_perl/i386-linux/cgi_to_mod_perl.pod
    to mod_perl-doc
    - rebuilt against recent perl (#3507)

2003-11-02 Michael Shigorin <mike at altlinux.ru> 1.3.29rusPL30.18-alt2

    - applied CAN-2003-0020 fix (still not in ASF tree; thanks Dmitry Levin (ldv@)
    for implicit notice and PLD CVS for the patch file)
    - updated EAPI to 2.8.16
    - introduced %apache_conf macro (for /path/to/httpd.conf)

2003-10-28 Michael Shigorin <mike at altlinux.ru> 1.3.29rusPL30.18-alt1

    - 1.3.29 (major security fixes)
    - fixes CAN-2003-0542:
    Fix buffer overflows in mod_alias and mod_rewrite which occurred if
    one configured a regular expression with more than 9 captures.
    - 1.3.28rusPL30.18-alt9 didn't really *apply* no_zombies.patch. Oops.
    Still 1.3.29 has similar change there so should be fixed either.

2003-10-22 Michael Shigorin <mike at altlinux.ru> 1.3.28rusPL30.18-alt9

    - FIX:
    appled http://apache.org/dist/httpd/patches/apply_to_1.3.28/no_zombies.patch,
    thanks to Alexey Tourbin (at@) and Alexey Chekushkin
    (should eliminate CGI Zombies with suExec, cgiwrap and others)

2003-10-18 Michael Shigorin <mike at altlinux.ru> 1.3.28rusPL30.18-alt8

    - fixed %_sysconfdir/rpm/macros.d/apache (thanks to Alexey Gladkov (legion@)
    for proper file this time)

2003-10-13 Michael Shigorin <mike at altlinux.ru> 1.3.28rusPL30.18-alt7

    - fixed #3153 (thanks to Sergey Pinaev ):
    /etc/init.d/httpd::reload() was broken

2003-10-07 Michael Shigorin <mike at altlinux.ru> 1.3.28rusPL30.18-alt6

    - added %_sysconfdir/rpm/macros.d/apache (#2463/enhancement);
    needed that for different packages for a long time, thanks for
    initial contents to Alexey Gladkov (legion@)
    - removed versioning in perl(mod_perl.pm) provision

2003-09-28 Michael Shigorin <mike at altlinux.ru> 1.3.28rusPL30.18-alt5

    - added Provides: perl(mod_perl.pm) to apache-mod_perl
    (should probably seperate extra modules to devel
    and run proper find-requires?)

2003-09-25 Michael Shigorin <mike at altlinux.ru> 1.3.28rusPL30.18-alt4

    - updated buildrequires (fix hasher build)

2003-09-11 Michael Shigorin <mike at altlinux.ru> 1.3.28rusPL30.18-alt3

    - fixed old-style initscripts for both httpd and httpd-perl (#2950)
    (NB: no changes in Sisyphus initscripts)
    - s,/usr/local/apache,/etc/httpd,g in manpages (TODO)
    - changed startup/shutdown order from "85 15" to "81 14" in
    httpd-perl initscripts so that it starts close after httpd (80)
    and stops just before it (15). This fixes spurious message due
    to #2928 fix (the problem didn't manifest but was here).

2003-09-03 Michael Shigorin <mike at altlinux.ru> 1.3.28rusPL30.18-alt2

    - please see changelog for 1.3.28rusPL30.18-alt1
    as more important changes are there
    - commented out AddModule mod_charset.c in default config (#2941)
    (in fact, "CharsetDisable On" already keeps it off, but server
    tag would still mention RA and confuse some curious users)
    - moved (thanks to pilot@ for notice):
    * /etc/rc.d/init.d/httpd and /usr/sbin/apachectl
    from apache-common to apache
    * /usr/sbin/apachectl-perl
    from apache-common to apache-mod_perl
    - /var/log/httpd permissions changed (#2920)
    from 3770,root,apache
    to 750,root,webmaster
    - /var/cache/httpd permissions changed (#2921)
    from 750,apache_user,webmaster
    to 2770,root,apache
    - apache.logrotate cleanup/fix:
    * changed "service httpd reload" to use condreload
    * changed create mode from 0664 root.apache to 0644 root.apache
    - httpd.init.Sisyphus now checks for some situations involving httpd-perl
    when silent breakage could occur and issues warnings (#2928)
    - spec cleanup:
    * switched Url from http://apache.lexa.ru to http://httpd.apache.org:
    focus isn't on RA anymore (left in index.shtml.ru* though)
    * s|%_var/cache|%_cachedir|g and similar macro updates
    (ALM2.2 compatible)
    * removed osolete comment-outs:
    + 1.3.23's mod_proxy dance
    + specific treatment of mod_include (generic by now)
    + Obsoletes: secureweb-devel from devel subpackage

2003-08-31 Michael Shigorin <mike at altlinux.ru> 1.3.28rusPL30.18-alt1

    - 1.3.28 / RA 30.18
    - Major Bugfixes (TM)
    - WARNING: VU#379828 (addressed) is suspected to be exploitable
    - updated EAPI to 2.8.15
    - fixed mod_long_name problem in apxs (by Denis Ovsienko ;
    updated to 1.3.28 and merged into Patch1)
    - added %add_findprov_lib_path
    - APACHE_HEADER_INSTALL=1 now (#917, #2373)
    - workaround for careless: %config(noreplace) /var/www/html/*html*
    (#1067, #2510; see also bug comments for proper solution)
    - fixed includedir substitution for apxs-perl (#1254)
    - *major* revamp of mime.types file (#1331, #2468, #2848)
    (also moved 'application/x-tar' entry there from httpd.conf)
    - implemented autodetected / manual distro setting to package initscripts
    for both ALM2.2 (maintenance builds) and Sisyphus (implementation based
    somewhat on aureal-std-up.spec by Alexey Morozov )
    - /etc/httpd/conf/httpd.conf::DirectoryIndex += index.rbx
    - spec cleanup:
    * updated BuildRequires
    * fixed Source1 URL typo
    * proper %SOURCEs instead of poking around in RPM_SOURCE_DIR (%install)

2002-11-26 Dmitry V. Levin <ldv at altlinux.org> 1.3.27rusPL30.16-alt13

    - Replaced mdk-mkstemp patch with openbsd-tmp, better optimized one.

2002-11-01 Stanislav Ievlev <inger at altlinux.ru> 1.3.27rusPL30.16-alt12

    - rebuild with new perl

2002-10-21 Dmitry V. Levin <ldv at altlinux.org> 1.3.27rusPL30.16-alt11

    - /etc/rc.d/init.d/httpd: use full path (/usr/sbin/httpd).
    - /var/log/httpd: changed permissions to %attr(3770,root,apache).
    - /etc/logrotate.d/apache: added directives:
    + sharedscripts;
    + create 0664 root apache.

2002-10-10 Alexander Bokovoy <ab at altlinux.ru> 1.3.27rusPL30.16-alt10

    - Fixed:
    + access rights for /var/www/icons/small

2002-10-08 Alexander Bokovoy <ab at altlinux.ru> 1.3.27rusPL30.16-alt9

    - Security update 1.3.27
    - Updated:
    + mod_proxy has been updated to 1.3.27 as well (passes same test suite as 1.3.23's one)
    + mod_perl to 1.27
    + EAPI to 2.8.10 (fixed to be compatible with 1.3.27)

2002-08-09 Stanislav Ievlev <inger at altlinux.ru> 1.3.23rusPL30.11-alt8.1

    - fixed permisions in mod_perl subpackage

2002-06-18 Alexander Bokovoy <ab at altlinux.ru> 1.3.23rusPL30.11-alt8

    - Fixed:
    + Apache httpd: vulnerability with chunked encoding (next round)
    + Fix RA patch to suit chunked fixes
    + explicit TMPDIR=/tmp

2002-06-17 Alexander Bokovoy <ab at altlinux.ru> 1.3.23rusPL30.11-alt7

    - Fixed:
    + Apache httpd: vulnerability with chunked encoding

2002-04-03 Dmitry V. Levin <ldv at alt-linux.org> 1.3.23rusPL30.11-alt6

    - Fixed db4 build support.
    - Build with db4.
    - Build without bind-devel.

2002-02-26 Alexander Bokovoy <ab at altlinux.ru> 1.3.23rusPL30.11-alt5

    - Updated:
    + EAPI up to 2.8.7 [fixed potential buffer overflow in mod_ssl]

2002-02-22 Alexander Bokovoy <ab at altlinux.ru> 1.3.23rusPL30.11-alt4

    - Fixed:
    + Configure option SHARED_CORE rule must be exclusive
    for non-mod_perl Apache only (#0000644)
    + Changed (finally) links and logo to ALT Linux

2002-02-21 Alexander Bokovoy <ab at altlinux.ru> 1.3.23rusPL30.11-alt3

    - Added:
    + SHARED_CORE (libhttpd.so) for Kylix2 Enterprise compatibility
    - Reverted:
    + mod_proxy to 1.3.22 state (includes partial EAPI revert)
    - spec clean ups

2002-02-21 Alexander Bokovoy <ab at altlinux.ru> 1.3.23rusPL30.11-alt2

    - Fixed:
    + return codes for 'status' in service scripts

2002-02-08 Alexander Bokovoy <ab at altlinux.ru> 1.3.23rusPL30.11-alt1

    - 1.3.23 / RA 30.11 / EAPI 2.8.6
    - APXS moved to apache-common

2002-01-24 Alexander Bokovoy <ab at altlinux.ru> 1.3.22rusPL30.9-alt4

    - Fixed:
    + Non-blocked CharsetDisable directive in httpd.conf (#0000441)

2002-01-14 Alexander Bokovoy <ab at altlinux.ru> 1.3.22rusPL30.9-alt3

    - Fixed:
    + mod_proxy bug (Andrey Orlov)

2001-11-15 Alexander Bokovoy <ab at altlinux.ru> 1.3.22rusPL30.9-alt2

    - Fixed:
    + httpd-perl.conf: Multi language documentation
    + httpd-perl.conf: server side parsed html
    + httpd-perl.conf: enabled mod_negotiation in non-proxied mode

2001-10-24 Alexander Bokovoy <ab at altlinux.ru> 1.3.22rusPL30.9-alt1

    - 1.3.22
    - Russian Apache PL30.9
    - EAPI 2.8.5
    - Fixed start up scripts to use sed/tr (PR #0000093)
    - Fixed start up script for mod_perl (PR #0000036)
    - Fixed typo in Russian summary for mod_perl (PR #0000057)

2001-09-24 Dmitry V. Levin <ldv at altlinux.ru> 1.3.20rusPL30.5-alt2

    - Removed duplicated entry of /etc/httpd/conf/addon-modules/proxied_handlers.pl
    from apache-common subpackage.
    - Built with db3-3.3.11.

2001-08-01 Alexander Bokovoy <ab at altlinux.ru> 1.3.20rusPL30.5-alt1

    - New RA patch
    - New mod_perl

2001-07-25 Dmitry V. Levin <ldv at altlinux.ru> 1.3.20rusPL30.4-alt5

    - Rebuilt with new perl.

2001-06-25 Dmitry V. Levin <ldv at altlinux.ru> 1.3.20rusPL30.4-alt4

    - Rebuilt with perl-5.6.1

2001-06-04 Dmitry V. Levin <ldv at altlinux.ru> 1.3.20rusPL30.4-alt3

    - Fixed permissions on /var/www/html.

2001-06-01 Dmitry V. Levin <ldv at altlinux.ru> 1.3.20rusPL30.4-alt2

    - Fixed permissions in /var/www.
    - Updated init and %post/%preun scripts.

2001-05-21 Alexander Bokovoy <ab at avilink.net> 1.3.20rusPL30.4-alt1

    - New Apache version
    - Updated:
    + EAPI - 2.8.4
    + CharsetDisable On is set by default
    - Fixed:
    + initial fix for permissions in /var/www
    + dependency for apache-suexec fixed

2001-04-15 Alexander Bokovoy <ab at avilink.net> 1.3.19rusPL30.4-ipl4mdk

    - Introducing EAPI to Apache+mod_perl build
    - Fixed:
    + logrotate now uses /sbin/service to access httpd and httpd-perl control scripts

2001-03-18 Alexander Bokovoy <ab at avilink.net> 1.3.19rusPL30.4-ipl3mdk

    - Disabling expat again

2001-03-17 Alexander Bokovoy <ab at avilink.net> 1.3.19rusPL30.4-ipl2mdk

    - Updated:
    + SGI patches took out due unsupported state and many conflicts with 1.3.19
    + httpd.conf (SingleListen unsupported now)
    - Fixed:
    + Apache owner/group are apache/apache, not nobody/nobody for httpd.conf/httpd_perl.conf

2001-03-12 Alexander Bokovoy <ab at avilink.net> 1.3.19rusPL30.4-ipl1mdk

    - Updated:
    + EAPI 2.8.1
    + RA PL30.4
    - Fixed:
    + index.php3 added to the set of index files
    + README.EAPI added to apache-common documentation
    + Use system-wide Expat library

2001-03-05 Alexander Bokovoy <ab at avilink.net> 1.3.19rusPL30.3-ipl1mdk

    - Updated:
    + new Apache version
    + 10xpatch ported to 1.3.19 as well as some other patches which were out of sync with Apache source

2001-02-13 Alexander Bokovoy <ab at avilink.net> 1.3.17rusPL30.3-ipl8mdk

    - Fixed:
    + logrotate for Apache
    + Documentation for mod_perl
    - Updated:
    + mod_perl up to 1.25
    - Removed:
    + automatic Apache start

2001-02-08 Alexander Bokovoy <ab at avilink.net> 1.3.17rusPL30.3-ipl7mdk

    - Updated:
    + Official Russian Apache PL30.3
    - Fixed
    + SGI patch
    + buffered logs
    + Fallback to mod_perl 1.24_01
    + Symlinks to manual

2001-02-03 Mikhail Zabaluev <zabaluev at parascript.com> 1.3.17rusPL30.0-ipl6mdk

    - Updated:
    + EAPI 2.8.0
    + mod_perl 1.25
    - Added:
    + fix for insecure tempfile creation in htpasswd and htdigest,
    by Vincent Danen, Mandrakesoft

2001-02-01 Alexander Bokovoy <ab at avilink.net> 1.3.17rusPL30.0-ipl5mdk

    - Typo fix in httpd.conf
    - ra_powered.gif

2001-01-31 Alexander Bokovoy <ab at avilink.net> 1.3.17rusPL30.0-ipl4mdk

    - Port to 1.3.17, most patches refreshed
    - new httpd.init, http-perl.init

2000-12-06 Mikhail Zabaluev <mookid at sigent.ru> 1.3.14rusPL30.0-3mdk_mhz

    - Added:
    + auto-dependencies (provides) built for perl
    - Updated:
    + new, super-robust apxs patch
    + updated init script
    + minor fixes in httpd.conf, protected httpd-perl status from the outside
    + cleaned up spec, ru -> ru_RU.KOI8-R
    + provides pseudo-package 'russian-apache' including patchlevel

2000-11-16 Mikhail Zabaluev <mookid at sigent.ru> 1.3.14rusPL30.0-2mdk_mhz

    - ported 10xpatch for 1.3.14
    - changed mod_log_config_buffered patch to apply at the prep stage

2000-10-26 Mikhail Zabaluev <mookid at sigent.ru> 1.3.14rusPL30.0-1mdk_mhz

    - Thee experimental PL30.0

2000-10-25 Mikhail Zabaluev <mookid at sigent.ru> 1.3.14rusPL29.9-1mdk_mhz

    - Apache 1.3.14, EAPI 2.7.1, mod_rewrite patch
    - used the last Russian patch considered to be stable (PL30.0 pending)
    - applied 10xpatch for 1.3.12 after JMD has tweaked it down
    - changed the document root to /var/www, drifting with the RedHad/Mandrake herd
    - overhauled config files
    - Added KOffice mimetypes
    - separate release number for mod_perl-doc
    - index.html.ru.* were added to sources, so I revoked my humble one.

2000-10-18 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.7-15mdk_mhz

    - the last release before Apache 1.3.14 (waiting for 10xpatch)
    - mod_perl 1.24_01
    - compiled against perl without largefile support
    - mod_perl-doc package
    - brought configtest command back to apachectl/init script

2000-10-07 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.7-14mdk_mhz

    - merged a bunch of JMD's changes at 1.3.12-30mdk
    - added an "official" index.html.ru taken from apache 2.0alpha6
    and slightly modified
    - configure without layout using macros supplied by rpm
    - macros everywhere

2000-08-03 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.7-13mdk_mhz

    - fixed install script problems and paths

2000-07-24 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.7-12mdk_mhz

    - new Russian Apache version (further POST fixes) and mm 1.1.3

2000-07-17 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.5-1mdk_mhz

    - new version (the patch added in my previous release has been applied)

2000-07-16 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.4-11mdk_mhz

    - applied a patch by Viktor Khimenko fixing a bug in charset_bread

2000-07-12 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.4-10mdk_mhz

    - disabled EXPAT rule for both servers. PHP 4 builds with its bundled Expat,
    no questions asked
    - EAPI 2.6.5

2000-07-06 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.4-9mdk_mhz

    - disabled EXPAT rule for apache+mod_perl static build to avoid conflicts
    with XML::Parser

2000-06-26 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.4-8mdk_mhz

    - new EAPI, MM and mod_perl versions
    - Frontpage and XSSI dropped
    - rebuilt against Perl having largefile support stripped

2000-04-27 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.4-7mdk_mhz

    - MM lockfiles sit better in /var/lock

2000-04-26 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.4-6mdk_mhz

    - fixes to build under an ordinary user
    - filelist cleanup

2000-04-24 Mikhail Zabaluev <mookid at sigent.ru> 1.3.12rusPL29.4-5mdk_mhz

    - sync with 1.3.12-10mdk
    - mm thrown out to be a separate package

2000-03-28 Mikhail Zabaluev <mookid at sigent.ru>

    - moved apxs from devel to common -- the tool is too useful

2000-03-24 Mikhail Zabaluev <mookid at sigent.ru>

    - mod_perl 1.22. Still leaks memory on restarts being a DSO.

2000-03-21 Mikhail Zabaluev <mookid at sigent.ru>

    - Russian Apache 1.3.12 rusPL29.4
    - Jean-Michel's add-ons merged back
    - SGI patches for 1.3.12 (up to level 1) applied
    - index.html.ru translated to Russian :)

2000-02-28 Mikhail Zabaluev <mookid at mu.ru>

    - cleaned out apxs

2000-02-20 Mikhail Zabaluev <mookid at mu.ru>

    - fixed ServerRoot for good
    - fixed MM lockfile path
    - added -n mod_perl package for punks

2000-02-07 Mikhail Zabaluev <mookid at mu.ru>

    - updated to Russian Apache 1.3.9 rusPL29.2
    - fixed .packlist for mod_perl

2000-01-29 Mikhail Zabaluev <mookid at mu.ru>

    - ported to Russian Apache PL28.22
    - added a version with mod_perl 1.21 linked in
    - moved files common for apache and apache-mod_perl to apache-common
    - EAPI 2.4.10
    - mm and mm-devel are now separate packages too
    - most of other add-ons dropped (sorry pals)

2000-01-05 Jean-Michel Dault <jmdault at netrevolution.com>

    - moved suexec to another package so it doesn't get installed by default
    - added index.php3 as valid index.

2000-01-03 Jean-Michel Dault <jmdault at netrevolution.com>

    - final cleanup for Mandrake 7

 
© 2009–2017 Igor Zubkov