Please keep [EMAIL PROTECTED] in the loop.
Regards,
Joey
- Forwarded message from Shane Curcuru <[EMAIL PROTECTED]> -
Date: Sat, 01 Mar 2008 21:57:05 -0500
From: Shane Curcuru <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: Interest in ApacheCon CFP for Debian folks?
X-Folder
Package: apache2.2-common
Version: 2.2.3-3.2
I guess that the file /etc/apache2/mods-available/ssl.conf is missing
the statement "Listen 443" to allow Apache 2 to actually listen to the
SSL port as well.
Regards,
Joey
--
A mathematician is a machine for converting coffee into theorems.
FWIW: I've just tried to install, reinstall and upgrade apache-ssl
inside a sarge chroot environment and the package didn't show problem.
So maybe this bug is indeed due to the many virtual hosts.
Michael should debug the postinst script, e.g. by executing it
with "sh -x" or by creative glancing
Martin Schulze wrote:
> Adam Conrad wrote:
> > Martin Schulze wrote:
> > > Are you aware of this:
> > >
> > >
> > > http://www.lucaercoli.it/advs/htdigest.txt
> > > http://www.securiteam.com/unixfocus/5EP061FEKC.html
> > > http://cve.m
Adam Conrad wrote:
> Martin Schulze wrote:
> > Are you aware of this:
> >
> >
> > http://www.lucaercoli.it/advs/htdigest.txt
> > http://www.securiteam.com/unixfocus/5EP061FEKC.html
> > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1344
>
> We
Are you aware of this:
http://www.lucaercoli.it/advs/htdigest.txt
http://www.securiteam.com/unixfocus/5EP061FEKC.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1344
Regards,
Joey
--
Everybody talks about it, but nobody does anything about it! -- Mark Twain
Please always
Alexis Sukrieh wrote:
> I'm the maintainer of an unofficial Debian package named
> apache-lingerd[1].
>
> Lingerd is a patch for apache that enables a better handling of dynamic
> pages serving.
>
> The package works fine and a couple of users reported me that they
> use it on production servers
Martin Pitt wrote:
> Martin Schulze [2004-11-01 20:18 +0100]:
> > Thanks a lot. There's another update in the work that fixes problem
> > with htpasswd. I'm attaching the patch. I haven't received a CVE Id
> > so will forward it when it is there.
>
Martin Pitt wrote:
> Hi Joey!
>
> Martin Schulze [2004-11-01 20:18 +0100]:
> > Thanks a lot. There's another update in the work that fixes problem
> > with htpasswd. I'm attaching the patch. I haven't received a CVE Id
> > so will forward it when i
Martin Pitt wrote:
> Martin Pitt [2004-10-29 14:22 +0200]:
> > I prepared a patch for fixing a mod_include buffer overflow in Ubuntu
> > and was asked by Fabio to upload a fixed sid version as well
> > (1.3.31-7).
> >
> > Please find attached the interdiff that was used for 1.3.31-7; you can
> > r
Package: apache2
Version: 2.0.51-2
Severity: critical
Tags: security
A problem has been reported to exist in Apache after upgrading to 2.0.51
which results in being able to access web pages one shouldn't be able to
access, i.e. bypassing the authentication method.
Here's a fix
> http://www.apach
Please take care of this issue. This seems to affect the version in
sid as well. Please mention the CAN from in the changelog when you
prepare an update.
Mark J Cox wrote:
> A number of users have reported that after upgrading to 2.0.51 their
> password protected pages have been served without r
12 matches
Mail list logo
