Public bug reported:
Apache 2 default ssl configuration should be hardened to get better
overall ssl security
my proposal:
/etc/apache2/mods-available/ssl.conf
SSLHonorCipherOrder on
SSLCipherSuite
ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256
Please sync with Debian 7:
http://ftp-master.metadata.debian.org/changelogs//main/d/drupal7/drupal7_7.14-2+deb7u1_changelog
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1206907
Title:
drupal7 packa
** Changed in: drupal7 (Ubuntu)
Status: Expired => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1206907
Title:
drupal7 packaged version 7.12 on Ubuntu warns of security upgrade
To
Don't you think it would be better to backport this for Apache 2.2?
What about all the Ubuntu 12.04 LTS versions which will be running for some
more years?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to the bug report.
https://bugs.launchpad
http://blog.ivanristic.com/2013/08/increasing-dhe-strength-on-
apache.html
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1219804
Title:
Support custom DH parameter file in apache 2.4
To manage noti
Public bug reported:
Support custom DH parameter file in apache 2.4:
https://issues.apache.org/bugzilla/show_bug.cgi?id=49559
This would allow for better Forward Secrecy Support without having a
weak key Exchange (for DHE chiphers) .
** Affects: apache2 (Ubuntu)
Importance: Undecided
I would like to see this patch included as well:
https://issues.apache.org/bugzilla/show_bug.cgi?id=49559
This would allow for better Forward Secrecy Support without having a
weak key exchange.
** Bug watch added: Apache Software Foundation Bugzilla #49559
http://issues.apache.org/bugzilla/sho
this seems to be related:
http://rt.openssl.org/Ticket/Display.html?id=2811
Changes between 1.0.1c and 1.0.1d [xx XXX ]
*) Fix possible deadlock when decoding public keys.
[Steve Henson]
*) Don't use TLS 1.0 record version number in initial client hello
if renegotiating.
*** This bug is a duplicate of bug 979720 ***
https://bugs.launchpad.net/bugs/979720
I have the same issue:
/var/log/upstart/isc-dhcp-server.log
The error was:
Internet Systems Consortium DHCP Server 4.1-ESV-R4
Copyright 2004-2011 Internet Systems Consortium.
All rights reserved.
For info, p
the fixes from openssl 1.0.1b should go into 12.04 - it looks like
otherwise TLS 1.1 will not work...
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/965371
Title:
HTTPS requests fail on some sites on
Yes, I did not have the graphics tag in the xml file before. And I
inserted it to see why the machine would not boot - but then it did...
Guest is Ubuntu 10.04 LTS
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad
** Tags added: precise
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/988819
Title:
wrong path to libxml2.so.2 in mod_security
To manage notifications about this bug go to:
https://bugs.launchpad.ne
Public bug reported:
When graphics is enabled in the libvirt xml file the virtual machine boots up
fine , when it is disabled it does not work anymore.
On Ubuntu 10.04 LTS is worked even with graphics disabled.
It works with this setting:
libvirt: 0.9.8-2ubuntu17
qemu-kvm: 1.0+noroms-0ubunt
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670247
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/988819
Title:
wrong path to libxml2.so.2 in mod_security
To manage notifications about this bug
Ubuntu 12.04 LTS
** Bug watch added: Debian Bug tracker #670247
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=670247
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/988819
Title:
wrong path to
Public bug reported:
service apache2 restart
apache2: Syntax error on line 210 of /etc/apache2/apache2.conf: Syntax error on
line 1 of /etc/apache2/mods-enabled/mod-security.load: Cannot load
/usr/lib/libxml2.so.2 into server: /usr/lib/libxml2.so.2: cannot open shared
object file: No such file
Isn't there a better solutution than disabling TLS 1.2 completely in openssl?
I need TLS 1.1 and 1.2 to monitor my servers with icinga... Better force the
admins of the broken servers to fix their stuff...
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is su
Public bug reported:
Please use openssl 1.0.1 in Ubuntu 12.04 LTS.
I really need TLS 1.1 support and cannot wait another 2 years.
** Affects: openssl (Ubuntu)
Importance: Undecided
Status: New
** Tags: openssl
--
You received this bug notification because you are a member of Ub
crap - http://www.squidguard.org/Doc/authentication.html states you need
at least version 1.2.1 for ldap support. Looks like they should update
their ldap page...
Would it be possible to ship the minor upgrade to 1.2.1 in 10.04 LTS?
--
You received this bug notification because you are a member
wrong line copied from squidguard page - should be this one:
"Before you compile squidGuard you must run configure with the ldap
option activated"
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/703812
Public bug reported:
Binary package hint: squidguard
package: squidguard 1.2.0-8.4ubuntu1.0.10.04.1
release: Ubuntu 10.04.1 LTS
Issue:
syntax or parsing error when the ldapsearch line is read in.
from http://www.squidguard.org/Doc/ldap.html:
"In order to use LDAP functionalities the system mus
It looks like v4 removed big endian support. In this case the man page
should be updated accordingly.
--
missing options -le and -be in mksquashfs
https://bugs.launchpad.net/bugs/459072
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
Public bug reported:
Binary package hint: squashfs-tools
mksquashfs is missing the options -le and -be in 9.10 RC
These options are working in 9.04 and are even displayed in the mksquashfs
manpage on 9.10
squashfs-tools: 1:4.0-1
** Affects: squashfs (Ubuntu)
Importance: Undecided
23 matches
Mail list logo
