* Daniel Shahaf:
> You can simply email the details to d...@subversion.apache.org, in
> addition to or instead of opening a jira ticket [jira is under
> a temporary lockdown right now].
Right, and it's still suspended. I will post to dev@.
Stefan Sperling wrote on Sat, Apr 23, 2016 at 18:31:39 +0200:
> On Sat, Apr 23, 2016 at 05:55:23PM +0200, Florian Weimer wrote:
> > It seems that mod_dontdothat creates an Expat XML parser without
> > inhibiting XML entity expansion for the internal DTD subset. This
> > mi
* Stefan Sperling:
> On Sat, Apr 23, 2016 at 05:55:23PM +0200, Florian Weimer wrote:
>> It seems that mod_dontdothat creates an Expat XML parser without
>> inhibiting XML entity expansion for the internal DTD subset. This
>> might cause a denial-of-service issue when par
On Sat, Apr 23, 2016 at 05:55:23PM +0200, Florian Weimer wrote:
> It seems that mod_dontdothat creates an Expat XML parser without
> inhibiting XML entity expansion for the internal DTD subset. This
> might cause a denial-of-service issue when parsing client-submitted
> XML.
>
&g
It seems that mod_dontdothat creates an Expat XML parser without
inhibiting XML entity expansion for the internal DTD subset. This
might cause a denial-of-service issue when parsing client-submitted
XML.
There are other pieces of code in Subversion which also create Expat
parsers this way, but
On Fri, Sep 14, 2012 at 03:33:15PM +0400, Lev Serebryakov wrote:
> Hello, Users.
>
> Now tools could not be built and installed without installed apache,
> even if mod_dav_svn is disabled at configure stage.
See
http://subversion.apache.org/docs/release-notes/1.7.html#mod_dontdothat-issue
Did you search the lists archives? It's been reported and a fix is
nominated for backport to 1.7.7 in the STATUS file.
Lev Serebryakov wrote on Fri, Sep 14, 2012 at 15:33:15 +0400:
> Hello, Users.
>
> Now tools could not be built and installed without installed apache,
> even if mod_dav_svn is
Hello, Users.
Now tools could not be built and installed without installed apache,
even if mod_dav_svn is disabled at configure stage.
--
// Black Lion AKA Lev Serebryakov
On Thu, Sep 6, 2012 at 11:26 AM, Doug Hunley wrote:
> On Wed, Sep 5, 2012 at 4:46 PM, Mark Phippard wrote:
> > Assume you already looked at the code? The comments are interesting and
> > might point in a direction to go:
>
> I did, but as I read it that only makes reference to populating the
>
On Wed, Sep 5, 2012 at 4:46 PM, Mark Phippard wrote:
> Assume you already looked at the code? The comments are interesting and
> might point in a direction to go:
I did, but as I read it that only makes reference to populating the
Apache logs. Where there does it show that I can set the Apache s
On Wed, Sep 5, 2012 at 2:56 PM, Doug Hunley wrote:
> I've recently been tasked to implement mod_dontdothat, and the
> implementation is in jeopardy of being cancelled due to the apparent
> lack of ability to customize the error messaging returned to the user
> when mod_dontdo
I've recently been tasked to implement mod_dontdothat, and the
implementation is in jeopardy of being cancelled due to the apparent
lack of ability to customize the error messaging returned to the user
when mod_dontdothat disallows an action. Is there some means I'm
missing of config
Nico Kadel-Garcia wrote on Thu, Aug 16, 2012 at 23:13:12 -0400:
> On Thu, Aug 16, 2012 at 10:38 PM, Nico Kadel-Garcia wrote:
> > On Thu, Aug 16, 2012 at 6:55 PM, Daniel Shahaf
> > wrote:
> >> If you want to add targets to install individual tools, too, I imagine
> >> we would welcome a patch for
Nico Kadel-Garcia wrote on Thu, Aug 16, 2012 at 22:38:54 -0400:
> On Thu, Aug 16, 2012 at 6:55 PM, Daniel Shahaf
> wrote:
> > Nico Kadel-Garcia wrote on Thu, Aug 16, 2012 at 01:31:11 -0400:
> >> On Wed, Aug 15, 2012 at 7:52 AM, Philip Martin wrote:
> >> > I'm happy to announce the release of Apa
On Thu, Aug 16, 2012 at 10:38 PM, Nico Kadel-Garcia wrote:
> On Thu, Aug 16, 2012 at 6:55 PM, Daniel Shahaf
> wrote:
>> Nico Kadel-Garcia wrote on Thu, Aug 16, 2012 at 01:31:11 -0400:
>>> On Wed, Aug 15, 2012 at 7:52 AM, Philip Martin wrote:
>>> > I'm happy to announce the release of Apache Sub
On Thu, Aug 16, 2012 at 6:55 PM, Daniel Shahaf wrote:
> Nico Kadel-Garcia wrote on Thu, Aug 16, 2012 at 01:31:11 -0400:
>> On Wed, Aug 15, 2012 at 7:52 AM, Philip Martin wrote:
>> > I'm happy to announce the release of Apache Subversion 1.7.6.
>> > Please choose the mirror closest to you by visit
Forwarding bug report (with patch) to dev@
- Forwarded message from Roman Plessl -
> Date: Thu, 16 Aug 2012 09:48:32 +0200 (CEST)
> From: Roman Plessl
> To: users@subversion.apache.org
> Subject: Issues building svn 1.7.6 in non apache mode (module mod_dontdothat)
Nico Kadel-Garcia wrote on Thu, Aug 16, 2012 at 01:31:11 -0400:
> On Wed, Aug 15, 2012 at 7:52 AM, Philip Martin wrote:
> > I'm happy to announce the release of Apache Subversion 1.7.6.
> > Please choose the mirror closest to you by visiting:
> >
> > http://subversion.apache.org/download/#reco
Hi All,
I try to compile and installe the new subversion 1.7.6 using my build
system. I use svnserve as standalone subversion server so my build
is not using the apache bindings.
I got the following compile error for the module mod_dontdothat:
...
/bin/bash /scratch/build/subversion-1.7.6
On Wed, Aug 15, 2012 at 7:52 AM, Philip Martin wrote:
> I'm happy to announce the release of Apache Subversion 1.7.6.
> Please choose the mirror closest to you by visiting:
>
> http://subversion.apache.org/download/#recommended-release
Cool. I'm poking at getting a 1.7.6 SRPM set up for it. I
I need to install this functionality for Apache, but I don’t have apxs
and can't find a 64 bit version. Seems like I would also need Perl.
Does anyone know where to obtain apxs for 64 bit Windows?
Alternatively is there a Windows 64 pre-compiled version of
mod_dontdothat?
21 matches
Mail list logo
