Re: [users@httpd] Apache Timeouts, fastcgi, etc settings recommendations for Wordpress site servers?

2019-04-03 Thread Rose, John B
Yann httpd-2.4.6-88.el7.x86_64 Thanks From: Yann Ylavic Sent: Tuesday, April 2, 2019 4:29:04 PM To: users@httpd.apache.org Subject: Re: [users@httpd] Apache Timeouts, fastcgi, etc settings recommendations for Wordpress site servers? Or better, the httpd-2.4

Re: [users@httpd] Re: CVE-2019-0211 - Apache 2.2

2019-04-03 Thread Hajo Locke
Hello, Am 03.04.2019 um 11:06 schrieb Rainer Canavan: On Wed, Apr 3, 2019 at 10:18 AM LuKreme wrote: On Apr 3, 2019, at 02:05, Hajo Locke wrote: Is apache 2.2 exploitable by CVE-2019-0211 ? Description says that first affected version is 2.4.17, but may be 2.2 was not analyzed. “Apache HTT

Re: [users@httpd] Apache httpd 2.4.39 has a problem while rpmbuid

2019-04-03 Thread Yann Ylavic
Hi, thanks for your feedbacks on each release! On Wed, Apr 3, 2019 at 10:48 AM kohmoto wrote: > > I found the following module statement was missing in httpd.spec. > %{_libdir}/httpd/modules/mod_socache_redis.so I just backported the change to 2.4.x (was trunk only so far), so it will be in the

Re: [users@httpd] Re: CVE-2019-0211 - Apache 2.2

2019-04-03 Thread Yann Ylavic
On Wed, Apr 3, 2019 at 11:06 AM Rainer Canavan wrote: > > On Wed, Apr 3, 2019 at 10:18 AM LuKreme wrote: > > > > On Apr 3, 2019, at 02:05, Hajo Locke wrote: > > > Is apache 2.2 exploitable by CVE-2019-0211 ? > > > Description says that first affected version is 2.4.17, but may be 2.2 > > > was

Re: [users@httpd] Re: CVE-2019-0211 - Apache 2.2

2019-04-03 Thread Rainer Canavan
On Wed, Apr 3, 2019 at 10:18 AM LuKreme wrote: > > On Apr 3, 2019, at 02:05, Hajo Locke wrote: > > Is apache 2.2 exploitable by CVE-2019-0211 ? > > Description says that first affected version is 2.4.17, but may be 2.2 was > > not analyzed. > > “Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38”

[users@httpd] Apache httpd 2.4.39 has a problem while rpmbuid

2019-04-03 Thread kohmoto
Hi, Platform:     CentOS Linux release 7.6.1810 (Core)     kernel version: 3.10.0-957.10.1.el7.x86_64 I met a trouble during rpmbuild. RPM buid error: A installed, but not contained in the package ,file was found: (The message was given in Japanese, so the above text was translated one.)    /u

[users@httpd] Re: CVE-2019-0211 - Apache 2.2

2019-04-03 Thread LuKreme
On Apr 3, 2019, at 02:05, Hajo Locke wrote: > Is apache 2.2 exploitable by CVE-2019-0211 ? > Description says that first affected version is 2.4.17, but may be 2.2 was > not analyzed. “Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38” seems clear. -- My main job is trying to come up with new a

[users@httpd] CVE-2019-0211 - Apache 2.2

2019-04-03 Thread Hajo Locke
Hello, i have still a bunch of apache 2.2 servers. ;( Is apache 2.2 exploitable by CVE-2019-0211 ? Description says that first affected version is 2.4.17, but may be 2.2 was not analyzed. Thanks, Hajo