ALT Linux repositórios
S: | 2.4.57-alt2 |
D: | 2.2.9-alt11 |
5.0: | 2.2.24-alt2.M50.1 |
4.1: | 2.2.8-alt1 |
4.0: | 2.2.6-alt4 |
+updates: | 2.2.6-alt2 |
3.0: | 2.0.55-alt1 |
+backports: | 2.0.59-alt0.M30.1 |
Outros repositórios
Upstream: | 2.2.8 |
Group :: Sistema/Servidores
RPM: apache2
Main Changelog Spec Patches Sources Download Gear Bugs e FR Repocop
1 junho 2023 Andrey Limachko <liannnix at altlinux.org> 1:2.4.57-alt2
- Add missing a2enmod config for apache2-mod_ldap
- Add missing libaprutil1-ldap requirement for apache2-mod_ldap
- 2.4.57
- allow read for all /etc/sysconfig/httpd2
- 2.4.56 (Fixes: CVE-2023-25690, CVE-2023-27522)
- 2.4.55 (Fixes: CVE-2022-37436, CVE-2006-20001, CVE-2022-36760)
- a2enmod: enable mod also in mods-start.d (closes: #44044)
- NMU: tmpfiles.conf: substitution /var/lock with /run/lock
(closes: #44078)
- 2.4.54 (Fixes: CVE-2022-31813, CVE-2022-30556, CVE-2022-30522, CVE-2022-29404,
CVE-2022-28615, CVE-2022-28614, CVE-2022-28330, CVE-2022-26377)
- 2.4.53 (Fixes: CVE-2022-23943, CVE-2022-22721, CVE-2022-22720, CVE-2022-22719)
- 2.4.52 (Fixes: CVE-2021-44790, CVE-2021-44224)
- 90-apache2-base-httpd.filetrigger: do not require systemctl (closes: #41456)
- 2.4.51 (Fixes: CVE-2021-42013)
- 2.4.50 (Fixes: CVE-2021-41773, CVE-2021-41524)
- a2dismod: disable mod also in mods-start.d
- 2.4.48 -> 2.4.49 (Fixes: CVE-2021-40438, CVE-2021-39275, CVE-2021-36160,
CVE-2021-34798, CVE-2021-33193)
- add 'systemctl daemon-reload' to 90-apache2-base-httpd.filetrigger
- fix systemd service: use mpm from $HTTPD
- enable mod_systemd, drop apachectl2 in unit file (closes: #40688)
- enable mod_md
- Rebuild to reflect CVE close in the changelog (Fixes: CVE-2021-26691).
- fixed httpd restart from filetrigger
- added xml2enc module to mod_proxy_html subpackage
- 2.4.48
- added mod_proxy_html subpackage
- removed openldap-common from BuildRequires
- simplified filetriggers
- restart httpd only at the end of the update transaction (in filetriggers)
- 2.4.47
- fixed FTBFS due to openldap package renaming
- fixed apachectl -M behavior (closes: #39025)
- 2.4.46
- 2.4.43 (Fixes: CVE-2020-1927, CVE-2020-1934)
- fixed TLS 1.3 client cert authentication for POST requests
- mod_proxy_ajp: added "secret" parameter to proxy workers
- 2.4.41
- 2.4.39
- fixes:
* Apache HTTP Server privilege escalation from modules scripts. CVE-2019-0211
* mod_auth_digest access control bypass. CVE-2019-0217
* mod_ssl access control bypass. CVE-2019-0215
* Apache httpd URL normalization inconsistincy. CVE-2019-0220
- 2.4.38
- fixes:
* important: mod_ssl 2.4.37 remote DoS when used with OpenSSL 1.1.1. CVE-2019-0190
* low: mod_session_cookie does not respect expiry time. CVE-2018-17199
* low: DoS for HTTP/2 connections via slow request bodies. CVE-2018-17189
- 2.4.37
- removed TimeoutStartSec in httpd.service (closes: #27925)
- save to log remoteip instead of remote hostname for fix of work with
mod_remoteip module (closes: #34974)
- removed ubt tag
- changed rundir location to /run in tmpfiles
- disabled TLSv1 and TLSv1.1 protocols by default (closes: #34717)
- NMU: applied repocop patch
- 2.4.35
- rebuilt with openssl-1.1 (Sisyphus)
- 2.4.34
- fixes:
* CVE-2018-1333 DoS for HTTP/2 connections by crafted requests
* CVE-2018-8011 mod_md, DoS via Coredumps on specially crafted requests
- 2.4.33
- fixes:
* CVE-2018-1303 low: Possible out of bound read in mod_cache_socache
* CVE-2018-1302 low: Possible write of after free on HTTP/2 stream shutdown
* CVE-2018-1301 low: Possible out of bound access after failure in reading the HTTP request
* CVE-2018-1312 low: Weak Digest auth nonce generation in mod_auth_digest
* CVE-2017-15715 low: <FilesMatch> bypass with a trailing newline in the file name
* CVE-2017-15710 low: Out of bound write in mod_authnz_ldap when using too small Accept-Language values
* CVE-2018-1283 medium: Tampering of mod_session data for CGI applications
- Change the default access control directives according to apache 2.4 standard.
Mixing old and new directives leads to unexpected results.
- new version 2.4.29
- new version 2.4.28
- disabled NameVirtualHost directive in ports_all.conf (closes: #32269)
- increased timeout for restarting httpd on SysVinit sytems (closes: #31062)
- increased LOOPSSTART and TimeoutStartSec (closes: #33978)
- fixes:
* CVE-2017-9798 Corrupted or freed memory access
- 2.4.27
- removed use of rpm-eval.sh from spec
- removed use of some apache2_*dir macroses from spec
- dropped apache branch suffix from utils and created compatability symlinks
- 2.4.26
- added ubt tag
- deep cleaning of the specfile (remove oldest trigger* macros, commented code,
garbage defined macros and etc..)
- updated to 2.4.25 witch security fixes:
+ CVE-2016-8740 mod_http2: Mitigate DoS memory exhaustion via endless CONTINUATION frames.
+ CVE-2016-5387 core: Mitigate [f]cgi "httpoxy" issues
+ CVE-2016-2161 mod_auth_digest: Prevent segfaults during client entry allocation when the shared memory space is exhausted.
+ CVE-2016-0736 mod_session_crypto: Authenticate the session data/cookie with a MAC (SipHash) to prevent deciphering or tampering with a padding oracle attack. - increased service startup time (closes: #33491)
- cleanup spec and patches
- updated to 2.4.23
- there is no reason to not compile unixd module statically
- obsoletes mod_macro
- fixes in mod_ssl defaults
- new version 2.4.18
- peruser patch no longer supported
- itk patch became a module
- mod_disk_cache became mod_cache_disk
- updated to 2.2.31
- imported srpms as new git
- In a2enmod added a mandatory dependency checking for inclusion
(Closes: #28992)
- 2.2.24
- Security fixes (CVE-2012-3499, CVE-2012-4558, CVE-2012-0883,
CVE-2012-2687)
- Fix %name-base: Add Requires %name-mods
- Remove subpackage %name-common (create virtual package for %name-base)
- Create subpackage %name-mods
- Remove %name-%apache2_libssl_name provides
- Use docdir %apache2_docdir_prefix-%version
- Add setting %EVR for all provides: %name-httpd-prefork-like
- Add new macros %apache2_mmn to rpm-build-%name subpackage
- Subpackages %name-mod_ssl{-compat,} converted to use the default
certificate with a name %apache2_sslcertname, located in the system
certificate store - SSL certificate is the default created when you run the daemon if it
is not previously created - Add %ghost for %apache2_sites_enabled/000-default*.conf
- Added auto adjust the variable names in your %_sysconfdir/sysconfig/%apache2_htcacheclean_dname:
+ CACHEPATH in HTCACHECLEAN_PATH
+ INTERVAL in HTCACHECLEAN_DAEMON_INTERVAL
+ LIMIT in HTCACHECLEAN_SIZE
+ OPTIONS in HTCACHECLEAN_OPTIONS
- Add to %name-htcacheclean-control subpackage
- Fix start for systemd: Use TimeoutStartSec=10s (Closes: #27925)
- Add to %name-htcacheclean subpackage:
+ %_sysconfdir/sysconfig/%apache2_htcacheclean_dname
+ systemd unit file for %apache2_htcacheclean_dname (Closes: #28025)
+ cron daily script for runing %apache2_htcacheclean_dname - Update attr ang owner for %apache2_runtimedir/
- Unuse vars (in %_sysconfdir/sysconfig/%apache2_htcacheclean_dname):
+ CACHEPATH (use HTCACHECLEAN_PATH)
+ INTERVAL (use HTCACHECLEAN_DAEMON_INTERVAL)
+ LIMIT (use HTCACHECLEAN_SIZE)
+ LOCKFILE
+ OPTIONS (use HTCACHECLEAN_OPTIONS)
- %apache2_apachectl and %_initdir/%apache2_dname use variables
(WAITSTOP, WAITGRACEFULSTOP, USLEEPSTART and LOOPSSTART), if they are
defined in the file %apache2_envconf
- Fix %apache2_sbindir/apachectl%apache2_branch start: use briefstatus
loop in poststart (Closes: #27856) - Move requires %name-ab and %name-htpasswd to %name subpackage
- Fix conflicts for %name-ab and %name-htpasswd subpackage
- Move %_bindir/ab2 to %name-ab subpackage (Closes: #27860)
- Move %_bindir/htpasswd2 to %name-htpasswd subpackage
- Applied repocop fixes:
* postclean-03-private-rpm-macros for the spec file - Fix service httpd2 restart for systemd: Posted expectation actually
completing the demon (300 seconds maximum)
- Convert Summary(ru_RU.KOI8-R) for subpackage %name-cgi-bin to ru_RU.UTF-8
- Add %_unitdir/%apache2_dname.service to %name-base subpackage
- Rename %_sysconfdir/tmpfiles.d/%name to
%_sysconfdir/tmpfiles.d/%name.conf and fix permissions
- Fix %_initdir/%apache2_dname return status
- %apache2_sbindir/apachectl%apache2_branch replaced by the "official"
apachectl (patched) (Closes: #27086) - The function stop() in %_initdir/%apache2_dname now waiting
(maximum 300 seconds) of the actual completion of the demon
(Closes: #11531, #27091)
- Add %_sysconfdir/tmpfiles.d/%name (Closes: #27604)
- Add scripts for condstopstart-web
- 2.2.22
- Security fixes (CVE-2011-3368, CVE-2011-3607, CVE-2011-4317, CVE-2012-0021,
CVE-2012-0031, CVE-2012-0053)
- Security fixes (CVE-2011-3368)
- 2.2.21
- Security fixes (CVE-2011-3348)
- 2.2.20
- Security fixes (CVE-2011-3192)
- Update patchset itk for apache2.2-mpm-itk-2.2.17-01
- %_initdir/%apache2_htcacheclean_dname: Fix missing condstop target
- Use %apache2_htcacheclean_cachepath for set CacheRoot
- Move mod_disk_cache module to %name-mod_disk_cache subpackage
- Move htcacheclean (binary and init script) to %name-htcacheclean
subpackage
- 2.2.19
- Fix zz-apache2-base.filetrigger
(thanks to Sergei Epiphanov <serpiph nikiet.ru>)
- Fix httpd2 restart the upgrade.
- Trigger handle movement configuration file in to %apache2_confdir_inc
(Closes: #24960) - Condrestart and a2chkconfig script completely removed, obsoleted
by rpm file triggers - Add lsb header to init
- Fix build gcc4.5 use
- 2.2.17
- Fix <modname>.conf loaded with upgrade (Closes: #24101)
- Fix location for DavLock database (Closes: #24336)
- Use gpasswd -a in %pre %name-common (Closes: #23240)
- 2.2.16 (Closes: #23933)
- Security fixes (CVE-2009-3555, CVE-2010-0408, CVE-2010-0425,
CVE-2010-043, CVE-2010-1452, CVE-2010-2068) - Updated messages a2{en,dis}*: added an indication of the file
(Closes: #20932) - Move %apache2_extra_available/Directory_*_default.conf.in to
%apache2_confdir/include/ dir
- Fix installation %name-base (Closes: #21865)
- Move %apache2_extra_available/userdir_default.conf to
%apache2_mods_available/userdir.conf (Closes: #21160) - Add %ghost for %apache2_*_enabled/* (Closes: #11275)
- 2.2.14
- Security fixes (CVE-2009-2412, CVE-2009-2699, CVE-2009-3094, CVE-2009-3095)
- Update patchsets:
+ itk for apache2.2-mpm-itk-2.2.11-02 (Closes: #21486)
+ peruser for httpd-2.2.3-peruser-0.3.0-dc3
- Rebuild with libldap2.4
- Update README.ALT.ru_RU.* (Closes: #21084)
(thanks to Kharitonov A. Dmitry <kharpost rambler.ru>)
- 2.2.12
- Security fixes (CVE-2008-2939, CVE-2009-0023, CVE-2009-1191, CVE-2009-1195,
CVE-2009-1890, CVE-2009-1891, CVE-2009-1955 and CVE-2009-1956)
(Closes: #20218, #20674 and #20760) - Add support new MIME types (Closes: #11460)
- Add experimental MPM: %name-httpd-itk and %name-httpd-peruser subpackage
(Closes: #16460 and #16766)
- Fix Requires for LDAP support (Closes: #20122)
- Move mod_ldap and mod_authnz_ldap modules to %name-mod_ldap subpackage
- Fix build libtool 2.x use (thanks to Boris Savelev <boris altlinux.org>)
- Fix libtool 2.2.6 use
- Fix Requires
- Fix %apache2_sbindir/a2chkconfig_list (Closes: #19625)
- Update message in %pre common (#19602)
(thanks to Sergey Vlasov <vsu altlinux org>)
- Fix Provides/Requires (Closes: #11643)
- Remove libdb application switch using and %name-%apache2_libdb_name
provides
- Fix symlink for cgi-bin scripts created
- Fix permission for README.ALT.ru_RU.KOI8-R (Closes: #17377)
- Fix config files (Closes: #16914)
- Fix a2ensite (Closes: #17287)
- Add provides %name-httpd-prefork-like for %name-httpd-prefork
(Closes: #17285) - Add build subpackages:
+ %name-datadirs -- data dirs
+ %name-cgi-bin-test-cgi and %name-cgi-bin-printenv -- cgi-bin scripts
(use control for facility)
- Add build subpackages (#16353):
+ %name-base (not requires a webserver-cgi-bin, webserver-html
and webserver-icons)
+ %name-fill (requires a %name-cgi-bin, %name-html and %name-icons) - Add auto adding user %apache2_user to group %webserver_group
- Add httpd provides in %name-base subpackage (#13665)
- Remove libdb and distr application switch from this package
- Add use libdb and distr application switch from the package
rpm-macros-apache2 - Add and use %name-%apache2_libssl_name provides
- Automated rebuild due to libssl.so.6 -> libssl.so.7 soname change.
- Fix crash rpm --eval in rpm-eval.sh (Closes: #16623)
- Fix autoconf version to 2.50
- Fix permissions sets (Closes: #16568)
- Fix conflict with the package directories webserver-common (Closes: #16546)
- Add use apache_ru_compat application switch from the package
rpm-macros-apache2 (enabled by default) - Unuse rpm-macros-apache2-compat package for build
- Obsolete all macros %a_* and %apache_* (use rpm-macros-apache2-compat
package)
- Removed version of the webserver-{cgi-bin,html,icons}
- Use rpm-macros-apache2 and rpm-macros-apache2-compat
- Add build subpackage for ALT Linux RPM Packaging Policy:
+ rpm-build-%name - Use apache_ru_compat only
- Fix set SSL port in files (Closes: #16337)
- 2.2.9
- Security fixes (CVE-2008-2364, CVE-2007-6420)
- Fix #16290: update %apache_moduledir sets
- Unset BuildArch %_target_cpu
- Fix #16253
- Fix #16165:
+ unuse vhosts-filesystem package
+ remove provide favour description file for apachkconfig - Fix conflicts
- Set BuildArch to noarch for subpackages
- Add config file for icons dir
- Create subpackages for set DocumentRoot in %a2_datadir:
+ %name-compat
+ %name-mod_ssl-compat - Fix rpm group for %name-configs-A1PROXIED subpackage
- Fix sets priority for sites-available/default*.conf files
- Fix substitute the real paths in configs
- Add using webserver-common package:
+ removing Provides dirs
%apache_datadir/{,cgi-bin/,html/{,addon-modules/},icons/{,small/}}
+ adding %apache_user to %webserver_group - Adding conflicts to apache{,-*} < 1.3.41rusPL30.23-alt4.1
- Create subpackages:
+ %name-docs
+ %name-cgi-bin
+ %name-manual-addons
+ %name-html
+ %name-icons - Update subpackage %name-manual for %name-docs using
- Rebuild
- 2.2.8: security fixes (CVE-2007-6421, CVE-2007-6421, CVE-2007-6422,
CVE-2007-6388, CVE-2007-5000, CVE-2008-0005) - Fix #14601: less-than-optimal examples in conf/sites-available.
(Thanks Mikhail Gusarov <dottedmag altlinux org>)
- Fix #12898: modify packaged config files to disable directory autoindexing
by default (/home/*/public_html stay indexed though); you might want
to reconsider that in case the configuration wasn't touched at all
(thus will be replaced during package upgrade) but directory indexes
are needed. (Thanks Timur Batyrshin <batyrshin ieml ru> for
proposal/discussion/patch):
+ Update apache2-2.2.6-alt-configs-*.patch to
apache2-2.2.6-alt-configs-0.3.patch - Fix #13125: perl path to /usr/bin/perl sets in
/var/www/apache2/cgi-bin/printenv. (Thanks PeterVF <petervf front ru>)
+ Adding apache2-2.2.6-alt-cgi-0.1.patch
- Update apache2-2.2.6-alt-debian.conf-*.patch to
apache2-2.2.6-alt-debian.conf-0.3.patch:
+ fix #12933 bug - Move Provides: %apache_configs_name = %apache_configs_version
from %name-common to %name subpackage - Add Provides: %apache_configs_dirs_name = %apache_configs_dirs_version
to %name-common subpackage - Add Requires: %apache_configs_dirs_name >= %apache_configs_branch
and remove Requires: %apache_configs_name in subpackage
+ %name
+ %name-configs-A1PROXIED
+ %name-manual
+ %name-mod_ssl
+ %name-suexec - Add macros in %_sysconfdir/rpm/macros.d/%name
+ %apache_configs_dirs_name
+ %apache_configs_dirs_version
- Adding %ghost %a_sysconfdir/ssl.{crt,key}/server.{crt,key} (#12059)
- Adding Provides and Summary in any config in
{extra,ports,sites}-available/*.conf files
+ Update apache2-2.2.6-alt-configs-*.patch to
apache2-2.2.6-alt-configs-0.2.patch
+ Update apache2-alt-configs-*.tar to apache2-alt-configs-0.9.tar - Update Provides: %apache_configs_name to 2.2.0
- Update apache2-2.2.6-alt-debian.conf-*.patch to
apache2-2.2.6-alt-debian.conf-0.2.patch:
+ remove auto selecting for cgi/cgid module in /usr/sbin/a2enmod
- 2.2.6
- Adding SECURITY to upstream:
+ CVE-2007-4465 (cve.mitre.org) - Updating patchs for 2.2.6:
+ apache2-2.2.5-alt-debian.conf-0.1.patch to
apache2-2.2.6-alt-debian.conf-0.1.patch
+ apache2-2.2.5-alt-configs-0.1.patch to
apache2-2.2.6-alt-configs-0.1.patch
+ apache2-2.2.5-alt-default_https.conf.in-0.1.patch to
apache2-2.2.6-alt-default_https.conf.in-0.1.patch - Set Requires libapr1-devel >= 1.2.8-alt1.1
- Add %name-configs-A1PROXIED subpackage
- Add Provides in %name-common subpackage
+ %apache_configs_name = %apache_configs_version
+ %apache_config_tool_name = %apache_config_tool_version - Add Requires: %apache_configs_name >= %apache_configs_branch
and %apache_config_tool_name >= %apache_config_tool_branch in subpackage
+ %name
+ %name-configs-A1PROXIED
+ %name-manual
+ %name-mod_ssl
+ %name-suexec - Add macros in %_sysconfdir/rpm/macros.d/%name
+ %apache_configs_name
+ %apache_configs_branch
+ %apache_configs_version
+ %apache_config_tool_name
+ %apache_config_tool_branch
+ %apache_config_tool_version
+ %apache_mmn
+ %apache_libdb - Add file Provides: %a_sbindir/%a_dname in subpackage
+ %name-httpd-worker
+ %name-httpd-prefork
+ %name-httpd-event
- 2.2.5
- Adding SECURITY to upstream (old patchs removing):
+ CVE-2007-3847
+ CVE-2007-1863 (remove apache2-2.2.3-fedora-fix-CVE-2007-1863.patch)
+ CVE-2007-3304 (remove apache2-2.2.4-alt-fix-CVE-2007-3304.0.1.patch)
+ CVE-2006-5752 (remove apache2-2.2.3-fedora-fix-CVE-2006-5752.patch)
+ CVE-2007-1862 (remove apache2-2.2.4-asc-fix-CVE-2007-1862-0.1.patch) - Updating patchs for 2.2.5:
+ apache2-2.2.4-alt-debian.conf-0.18.patch to
apache2-2.2.5-alt-debian.conf-0.1.patch
+ apache2-2.2.4-alt-configs.0.2.patch to apache2-2.2.5-alt-configs-0.1.patch
+ apache2-2.2.4-alt-default_https.conf.in.0.1.patch to
apache2-2.2.5-alt-default_https.conf.in-0.1.patch
- Create and using docs/conf/extra-available/Directory_*_default.conf.in
+ Update apache2-2.2.4-alt-configs.*.patch to apache2-2.2.4-alt-configs.0.2.patch
+ Update apache2-alt-configs-*.tar to apache2-alt-configs-0.9.tar - Update apache2-2.2.4-alt-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.18.patch
remove bad Options in <Directory "@exp_cgidir@">
- Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.17.patch
+ %a_sbindir/a2chkconfig.in: fix find using
- Using Fedora Project patchs for security fixes:
+ CVE-2006-5752 apache2-2.2.3-fedora-fix-CVE-2006-5752.patch
+ CVE-2007-1863 apache2-2.2.3-fedora-fix-CVE-2007-1863.patch
+ CVE-2007-3304 apache2-2.2.4-alt-fix-CVE-2007-3304.0.1.patch
(apache2-2.2.3-fedora-fix-CVE-2007-3304.patch -- removing) - Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.16.patch
+ adding deleteing all broken symbolic links in %a_sysconfdir/*-enabled
in a2chkconfig - Add apache2-2.2.4-alt-configs.0.1.patch
+ moving NameVirtualHost to %a_sysconfdir/sites-available/ports_all.conf - Update *-alt-configs-* to apache2-alt-configs-0.8
+ enabled %a_sysconfdir/sites-available/ports_all.conf by default
- Add Fedora Project patchs for security fixes:
+ CVE-2006-5752 apache2-2.2.3-fedora-fix-CVE-2006-5752.patch
+ CVE-2007-1863 apache2-2.2.3-fedora-fix-CVE-2007-1863.patch
+ CVE-2007-3304 apache2-2.2.3-fedora-fix-CVE-2007-3304.patch
- Fix moving debuging messages from a2chkconfig (in rpm scripts) to /dev/null
- Renamed files *defoult* to *default*
+ update apache2-2.2.4-alt-debian.conf-*.patch to
apache2-2.2.4-alt-debian.conf-0.15.patch
+ update apache2-alt-configs-*.tar to apache2-alt-configs-0.7.tar
- Fix a2chkconfig: ignore error in a2{en,dis}* adding
+ update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.14.patch - Moving debuging messages from a2chkconfig (in rpm scripts) to /dev/null
- Fix find extra-available/*.conf to package
+ update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.13.patch
- Fix CVE-2007-1862
(see <http://issues.apache.org/bugzilla/show_bug.cgi?id=41551>)
+ use apache2-2.2.4-asc-fix-CVE-2007-1862-0.1.patch
+ add Requires libapr1-devel >= 1.2.8-alt1.2
- Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.12.patch
+ add a2chkconfig_list (for alterator-apache2 use)
+ moving mods-available/*.conf to extra-available/*.conf, and rename
+ using SSI by defoult - Update *-alt-configs-* to apache2-alt-configs-0.6
+ add sets dir_defoult and log_config_defoult to yes
- Building mod_authnz_ldap: --enable-authnz-ldap using
- Creating apache2-httpd-event subpackage
- Update apache2-alt-alternatives-*.tar to apache2-alt-alternatives-0.2.tar:
add alternative for /usr/sbin/httpd2.event
- Using --with-program-name=%a_dname for all server build:
+ only defoult program name (is %a_dname) for all %a_dname.*
+ only defoult config name (is %a_dname.conf) for all %a_dname.* - Removing %a_dname.*.conf link
- Remove Requires %name-httpd-prefork and %name-httpd-worker in
%name-devel subpackage
- Removing debug message in %pre %name
- Fix %register_alternatives for %name-httpd-worker
- Fix #11531: adding sleep 1 to init scripts
- Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.10.patch
+ fix support/a2chkconfig.in (#11395): read all string
in conf/*-start.d/*.conf
+ fix #11333: adding man to a2chkconfig (thanks to Avramenko Andrew) - Update *-alt-configs-* to apache2-alt-configs-0.4. Adding to conf/:
+ mods-start.d/010-manual.conf
+ mods-start.d/020-manual-addons.conf
+ extra-start.d/020-httpd-manual.conf (#11410)
+ extra-start.d/030-httpd-manual-addons.conf - Man to suexec moving to %name-suexec subpackage
- Add Requires %name-httpd-prefork and %name-httpd-worker to
%name-devel subpackage - Remove %name-init subpackage
- Fix packages updating
- Add Provides to %name-common subpackage:
+ %name-mmn
+ %name-libdb - Remove Provides:
+ %name-common-mmn
+ %name-common-libdb - Updating %a_sbindir/%a_dname:
+ renamed %a_sbindir/%a_dname to %a_sbindir/%a_dname.prefork
+ use alternatives for create symlinc %a_sbindir/%a_dname to
%a_sbindir/%a_dname.prefork or %a_sbindir/%a_dname.worker - Adding symlink for %a_sysconfdir/%a_dname.conf:
+ %a_sysconfdir/%a_dname.prefork.conf - Adding trigger scripts to %a_dname for update/remove
apache2-{init,httpd-{prefork,worker}}
- Creating subpackage:
+ apache2-common
+ apache2-httpd-{worker,prefork}
+ apache2-init - Update *-alt-configs-* to apache2-alt-configs-0.3
+ adding httpd-manual-addons.conf, for using @apache_addondocdir@
- Disable httpd2 service startup by default (#11280):
that might lead to undesired consequences in case of
"accidentally" installed packages and/or forgetting
about them while configuring services; see also [ru]:
http://lists.altlinux.org/pipermail/devel/2006-December/039909.html - Fix creating the %a_sysconfdir/%a_dname.conf when updating
- Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.9.patch
+ fix widely reported in the a2chkconfig (#11274)
+ fix messages from a2{en,dis}{mod,site,port,extra} (#11247)
- Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.8.patch
+ Fix #11247 - Update *-alt-configs-* to apache2-alt-configs-0.2
+ Fix #11245
+ Fix #11246 - Adding README.ALT.ru_RU.KOI8-R
- Removing apache2-2.2.4-alt-conf.in-A1PROXIED.patch (is old)
- default-0.1.a2chkconfig.tar updated to apache2-alt-configs-0.1.tar
+ add defoult configs for virtual hosts template, A1PROXIED using and
for using old @rel_sysconfdir@/addon.d - Fix User, Group and ServerAdmin sets to configs
- Unused SSL option
- Removing dirs (unused, is old):
+ %apache_vhosttempldir
+ %apache_vhostconfdir
+ %apache_addonvhostconfdir - Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.7.patch
+ fix: remove using /etc/httpd2/conf/extra/httpd-manual.conf
- Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.6.patch
+ fix support/a2chkconfig.in - Add apache2-2.2.4-alt-default_https.conf.in.0.1.patch
+ fix SSL keys patchs - Renamed macros:
+ %ad_name to %a_dname
+ %apache_apxs to %a_apxs
+ %apache_addondocdir to %a_addondocdir - Removing macros in spec:
+ %apache_basedir (use %a_prefix)
+ %apache_confdir (use %a_sysconfdir)
+ %apache_datadir (use %a_datadir)
+ %apache_htdocsdir (use %a_docsdir)
+ %apache_cgibindir (use %a_cgidir)
+ %apache_logdir (use %a_logfiledir)
+ %apache_moduledir (use %a_libexecdir) - Use sed script for substitute the real paths in all configs
- Fix scripts
- Not using old configs
+ renamed old %a_sysconfdir/%ad_name{,.worker}.conf to
%a_sysconfdir/%ad_name{,.worker}.conf.rpmold
+ create new %a_sysconfdir/%ad_name{,.worker}.conf - Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.5.patch
+ fix adding %a_sbindir/a2{en,dis}{port,extra}
+ adding create %a_sbindir/{extra,ports,sites,mods}-start.d
+ add %a_sbindir/a2chkconfig - Adding %a_sysconfdir/*-start.d/*.conf (configs files for a2chkconfig)
- Fix missed $OPTIONS variable in conftest() function in the init script
(bug#11156): use patch from Nikolay A. Fetisov <naf@altlinux.org> - Renamed old %a_manualdir to %a_manualdir.rpmold, for create symlink to
%_docdir/%a_name-manual-%apache_version/manual - Moveing %a_manualdir to %_docdir/%a_name-manual-%apache_version/manual
and create symlink from %a_manualdir - Using TMPDIR=/var/spool/apache2/tmp in init script
- Add triggerpostun fo deleting old symlink
%_docdir/apache2-manual-2.2.4/manual
- Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.4.patch
+ add %a_sbindir/a2{en,dis}{port,extra}
+ fix Makefile.in (for configs create)
- Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.3.patch
+ fix %a_sbindir/a2{en,dis}site
+ using <IfModule authz_host_module> in *.conf files
- Remove old patchs:
+ httpd-2.0.55-alt-build.patch - Add utils:
+ %a_sbindir/a2{en,dis}{mod,site}
+ %a_sbindir/check_forensic - Add mans:
+ a2{en,dis}mod.8
+ checkgid.8
+ check_forensic.8 - Update *-debian.conf-*.patch to apache2-2.2.4-alt-debian.conf-0.2.patch
- Add apache2-2.2.4-alt-debian.conf-0.1.patch, for using Debian`like
cofigs dirs:
+ %a_sysconfdir/extra-available/
+ %a_sysconfdir/extra-enabled/
+ %a_sysconfdir/mods-available/
+ %a_sysconfdir/mods-enabled/
+ %a_sysconfdir/ports-available/
+ %a_sysconfdir/ports-enabled/
+ %a_sysconfdir/sites-available/
+ %a_sysconfdir/sites-enabled/ - Remove old patchs:
+ apache2-2.2.4-alt-conf.in-include-0.1.patch
+ apache2-2.2.4-alt-Makefile.in-SSL.patch
+ apache2-2.2.4-alt-Makefile.in-LoadModule.patch
- Add dir provides:
+ %a_proxycachedir/
+ %_spooldir/apache%apache_branch/{,tmp,sessions,uploads}
- Link with system PCRE library!
- Update warning message from %pre
- set requires for %name-mod_ssl
+ %name = %apache_version-%apache_release
+ %name-libdb = %n_dbver - modufy auto update in %pre:
+ update %a_sysconfdir/httpd2{,.worker}.conf only
- use apache2-2.2.4-alt-conf.in-0.2.patch:
+ corected module name for using in <IfModule ...> - no modify defoult root page (use original upstrem page)
- remove use`nt files:
+ altlinux.html
+ altlinux.png - no corected path to perl
- moved to apache2-suexec:
+ %a_sysconfdir/modules.d/A.[0-9][0-9][0-9]_suexec.conf
+ %a_libexecdir/mod_suexec.so
- auto update %a_sysconfdir/httpd2*.conf including in %pre:
+ added "Include /etc/httpd2/conf/modules.d/A.*.conf"
+ commented all LoadModule directives - use %post_service httpd%apache_branch in mod_ssl pakage
- adding %a_sysconfdir/extra/httpd-ssl.conf to apache2-mod_ssl
- update apache2-2.2.4-alt-conf.in.patch to 0.1:
+ update patchs for SSL keys - update apache2-2.2.4-alt-conf.in-include-0.1.patch:
+ activate httpd-ssl.conf including - adding apache2-2.2.4-alt-Makefile.in-LoadModule.patch:
+ create %a_sysconfdir/modules.d/A.*.conf for LoadModule using
- 2.2.4
- use PrintPath
- add htcacheclean
- add patchs:
+ apache2-2.2.4-alt-conf.in.patch
+ apache2-2.2.4-alt-conf.in-include.patch
+ apache2-2.2.4-alt-conf.in-A1PROXIED.patch
+ apache2-2.2.4-alt-Makefile.in-SSL.patch - apache_native_apr switch delete:
+ no build native libapr
+ use external libapr1 onli - prevent build if upstream MMN differs from mmn macro
- merge 2.0.59-alt0.M24.1:
+ set pkgconfig in BuildPreReq
- fix build: add patch from Sviatoslav Sviridov <svd@altlinux.ru>
for spec
- build libdb4.4 to defoult
- add new provides: %name-libdb = %n_dbver
- turn back conditional libdb4.4-devel, libdb4.3-devel (for Compact 3.0)
or libdb4.2-devel (for Master 2.4) build
- Rebuild with libdb4.4
- 2.0.59
- rebuilt for update libldap (use libldap-2.3)
- link with no system PCRE library (old!)
- Fixed build with ld --as-needed.
- Link with system PCRE library!
- hack for --as-needed fix
- update spec for backports in 3.0
- merge 2.0.55-alt0.M24.1 (Grigory Batalov <bga@altlinux.ru>):
+ check for libapr >= 0.9.7
+ turn back conditional static build
+ delaycompress in logrotate config
+ change /usr/sbin/service to /sbin/service in logrotate config
+ change service to reload to httpd2 in logrotate config
+ log dir owned by apache2 group
+ htdocs dir owned by webmaster group - update conditional static build
- turn back conditional libdb4.3-devel or libdb4.2-devel
(for Master 2.4) build
- NMU:
- requires fixed (libdb4.2-devel-static changed to libdb4.3-devel)
- tested build for x86_64
- Require newer apr bug #8517
- fix bug #7490
- 2.0.55
- adopt to new ALT common macroses behaivour
- remove unexpanded macros apache2-suexec Bug#:7490
- 2.0.54
- fix initscript hostname handling (bug#6291)
- updated alt-configure patch to check for available libldap
and link with libldap - applied patches:
+ httpd-2.0.52-sslauth.patch
+ httpd-2.0.52-SSLCipherSuite-bypass-CAN-2004-0885.diff
+ httpd-2.0.52-memory-consumption-DoS-CAN-2004-0942.diff
+ util_ldap_cache_mgr.c.patch
- Fixed build with system libapr/libaprutil,
patch from Sviatoslav Sviridov. - Built with system libapr/libaprutil and openldap-2.2.18-alt3.
- 2.0.52
- build with native apr
- 2.0.51
- fix build failed with APR
- rpm trigger script removed
- rebuild
- 2.0.50
- provide favour description file for apachkconfig
- added vhost.d-addon directory and apache_addonvhostconfdir RPM macros
- apache now use apache2 user/group account by default
- Include only A.*.conf files from addon.d vhosts.d vhosts.d-addon dirs
to make configs been disabled by default. - Add AliasMatch to manual-addons directory. Also link is included in main
manual page
- rebuild for current Sisyphus
- use vhosts-filesystem macroses for default docroot and vhosts directory.
- provide vhosts config template to be used by upcoming vhosts management scripts.
- 2.0.49
- provide apache2-liapr* packages in case build with internal apr
otherwise make apache2-devel provide fake apache2-liapr* packages - provide conf.d and vhost.d configuration directories.
(Thank you, Sviataslau Svirydau for the ideas)
- use %make_build instead of make %{?_smp_mflags}.
- smp patch for makefile applied.
(Thanks for the above changes goes to Sviataslau Svirydau)
- build charset_lite module
- apache_native_apr switch added to enable build with external
apr. - fix buildreq
(Thanks to Sviataslau Svirydau for pointing this)
- Remove Alt layout file. Autogenerate it from spec instead
- Provide option to build packages that could be installed on
the same host with ru-apache - Make spec to look like those for russian apache
- move suexec into suexec package
- update macroses to be ru-apache compatible
- provide rpm macros in devel package
- steal distrib detection method from ru-apache package
- 2.0.48
- Fix prefix to be apache_root.
- First build for ALTLinux.
- Moved mime.types back to the default location.
- Added mod_ldap and friends, mod_cache and friends.
- Added openldap dependancy.
- Created generic Apache rpm spec file from that donated by Redhat.
- Removed Redhat specific patches and boilerplate files.
- Removed SSL related Makefiles.
- add security fix for CAN-2003-0020; replace non-printable characters
with '!' when printing to error log. - disable debuginfo on IA64.
- disable POSIX semaphores to support 2.4.18 kernel (#83324)
- require xmlto 0.0.11 or later
- fix apr_strerror on glibc2.3
- rebuilt
- add mod_cgid and httpd binary built with worker MPM (#75496)
- allow choice of httpd binary in init script
- pick appropriate CGI module based on loaded MPM in httpd.conf
- source /etc/sysconfig/httpd in apachectl to get httpd choice
- make "apachectl status" fail gracefully when links isn't found (#78159)
- rebuild for OpenSSL 0.9.7
- fix possible infinite recursion in config dir processing (#77206)
- fix memory leaks in request body processing (#79282)
- remove unstable shmht session cache from mod_ssl
- get SSL libs from pkg-config if available (Nalin Dahyabhai)
- stop "apxs -a -i" from inserting AddModule into httpd.conf (#78676)
- fix location of installbuilddir in apxs when libdir!=/usr/lib
- pass libdir to configure; clean up config_vars.mk
- package instdso.sh, fixing apxs -i (#73428)
- prevent build if upstream MMN differs from mmn macro
- remove installed but unpackaged files
- correct SERVER_NAME encoding in i18n error pages (thanks to Andre Malo)
- fix patch for CAN-2002-0840 to also cover i18n error pages
- security fixes for CAN-2002-0840 and CAN-2002-0843
- fix for possible mod_dav segfault for certain requests
- updates to the migration guide
- link httpd with libssl to avoid library loading/unloading weirdness
- add LoadModule lines for proxy modules in httpd.conf (#73349)
- fix permissions of conf/ssl.*/ directories; add Makefiles for
certificate management (#73352)
- provide "httpd-mmn" to manage module ABI compatibility
- fix SSL session cache (#69699)
- revert addition of LDAP support to apr-util
- set SIGXFSZ disposition to "ignored" (#69520)
- make dummy connections to the first listener in config (#72692)
- allow "apachectl configtest" on a 1.3 httpd.conf
- add mod_deflate
- enable LDAP support in apr-util
- don't package everything in /var/www/error as config(noreplace)
- add trigger (#68657)
- update to 2.0.40
- improve comment on use of UserDir in default config (#66886)
- use /sbin/nologin as shell for apache user (#68371)
- add patch from CVS to fix possible infinite loop when processing
internal redirects
- modify init script to detect 1.3.x httpd.conf's and direct users
to the migration guide
- patch apachectl to detect 1.3.x httpd.conf's and direct users
to the migration guide - ship the migration guide
- automated rebuild
- move /etc/httpd2 back to /etc/httpd
- add noindex.html page and poweredby logo; tweak default config
to load noindex.html if no default "/" page is present. - add patch to prevent mutex errors on graceful restart
- add patch to fix SSL mutex handling
- improved config directory patch
- initial build; based heavily on apache.spec and mod_ssl.spec
- fixes: #65214, #58490, #57376, #61265, #65518, #58177, #57245