Now
MAIN commitmail json YAML
pkgsrc/www/apache22/Makefile@1.99
/
diff
pkgsrc/www/apache22/distinfo@1.58 / diff
pkgsrc/www/apache22/files/ecc2224.patch deleted
pkgsrc/www/apache22/options.mk@1.12 / diff
pkgsrc/www/apache22/patches/patch-modules_proxy_mod_proxy_connect.c@1.2 / diff
pkgsrc/www/apache22/patches/patch-modules_ssl_ssl__engine__kernel.c deleted
pkgsrc/www/apache22/distinfo@1.58 / diff
pkgsrc/www/apache22/files/ecc2224.patch deleted
pkgsrc/www/apache22/options.mk@1.12 / diff
pkgsrc/www/apache22/patches/patch-modules_proxy_mod_proxy_connect.c@1.2 / diff
pkgsrc/www/apache22/patches/patch-modules_ssl_ssl__engine__kernel.c deleted
Changes with Apache 2.2.26
*) mod_dav: dav_resource->uri treated as unencoded. This was an
unnecessary ABI changed introduced in 2.2.25.
*) mod_dav: Do not validate locks against parent collection of COPY
source URI.
*) mod_ssl: Check SNI hostname against Host header case-insensitively.
*) mod_ssl: enable support for ECC keys and ECDH ciphers. Tested against
OpenSSL 1.0.0b3.
*) mod_ssl: Change default for SSLCompression to off, as compression
causes security issues in most setups. (The so called "CRIME" attack).
*) mod_ssl: Fix compilation error when OpenSSL does not contain
support for SSLv2. Problem was introduced in 2.2.25.
*) mod_dav: Fix double encoding of URIs in XML and Location header (caused
by unintential ABI change in 2.2.25).
*) mod_dav: dav_resource->uri treated as unencoded. This was an
unnecessary ABI changed introduced in 2.2.25.
*) mod_dav: Do not validate locks against parent collection of COPY
source URI.
*) mod_ssl: Check SNI hostname against Host header case-insensitively.
*) mod_ssl: enable support for ECC keys and ECDH ciphers. Tested against
OpenSSL 1.0.0b3.
*) mod_ssl: Change default for SSLCompression to off, as compression
causes security issues in most setups. (The so called "CRIME" attack).
*) mod_ssl: Fix compilation error when OpenSSL does not contain
support for SSLv2. Problem was introduced in 2.2.25.
*) mod_dav: Fix double encoding of URIs in XML and Location header (caused
by unintential ABI change in 2.2.25).