SECURITY: CVE-2009-2412, CVE-2009-1891, CVE-2009-1195, CVE-2009-1890,
CVE-2009-1191, CVE-2009-0023, CVE-2009-1955, CVE-2009-1956
Update the Makefile to properly depend on the mt version of apr-util
in ldap flavour. (from bernd@)
ok jasper@, ajacoutot@
- install the binary under ${TRUEPREFIX}/sbin/suexec2
- change suexec-caller to _apache2
- log to /var/log/suexec2_log similar to the suexec in base
Inputs and OK sthen@, simon@
fixes various vulnerabilities:
CVE-2007-3847, CVE-2007-1863, CVE-2007-3304, CVE-2006-5752, CVE-2007-1862
more details can be found at:
http://www.apache.org/dist/httpd/CHANGES_2.2.6
ok merdely@
define prefix the way apache likes it.
this is because apache2 has a different understanding of what the prefix
means, and our understanding and application of it on this port leads to
extremely confused paths in a lot of its generated files.
our understanding of prefix is to mean the path at which the binaries,
libs, manpages, and so on are stored, ie, /usr/local. apache2 understands
prefix to mean "install architecture-independent files", or in real terms
the ServerRoot. obviously using /usr/local as the server root when we want
to use /var/apache2 for that purpose is uncomfortable for it, and it leads
to things like broken paths in the default config files and builds of
modules.
ok robert@
- put config files in /etc/apache2 instead of /var since this is not
chrooted
- make a couple of comments that refer to 'httpd' refer to 'httpd2'
instead
- don't install the build makefiles
ideas from bernd@ and steven@, ok steven@
back and forth in email messages doesn't make any sense when we have a
cvs tree to work in.
So, not hooked into the package builds yet.
Original work and port name from dlg.
ok robert@, dlg@