cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
104,813 Commits 1 Branch 0 Tags
Commit Graph

71 Commits

Author SHA1 Message Date
sthen
ecf118bf1c fix miscommit that removed @rcscript (thanks, update-plist!) 2015-09-13 12:37:49 +00:00
sthen
9843dd1bd1 Move to improved version of no_ssl3 patch for apache-httpd, thanks to 
Kaspar Brand (https://bz.apache.org/bugzilla/show_bug.cgi?id=58349)
- small tweak from Kaspar's patch for 2.4 backport.
 2015-09-13 12:31:45 +00:00
ajacoutot
1c3749f791 Do not pick up gawk. 2015-09-10 10:30:04 +00:00
jca
805dbb689d Guard use of SSLv3*method. Die if SSLv3 forced in conf but unavail. 
Fixes "undefined symbol" errors at dlopen time.

Reported by Pedro de Oliveira, ok sthen@
 2015-09-07 06:32:04 +00:00
ajacoutot
09eb14f688 Don't own /var/www/htdocs/, it's part of mtree. 
Don't ship the empty example logs directory.
 2015-07-18 20:01:13 +00:00
sthen
0b10ec0e46 cope with sslv3 being disabled 2015-07-18 04:59:42 +00:00
sthen
90cbc28af4 adjust @pkgpath depending on flavour, so updates for apache-httpd--ldap work 
correctly. (in reality this wasn't a big problem as we don't build the ldap
flavoured version in bulk builds anyway, due to dependence on conflicting
versions of apr-util).
 2015-07-18 01:11:40 +00:00
ajacoutot
533ae8b9ab Update to apache-httpd-2.4.16. 
ok sthen@
 2015-07-18 00:55:09 +00:00
ajacoutot
5ecb9c4fa0 Cleanup. 2015-07-18 00:33:53 +00:00
ajacoutot
31c647ab8a Move default document root to /var/www to be able to switch between web 
servers easily; idea from stsp@
Split the package into -main and -common (which holds common files for
apache 1 and 2).

discussed with stsp@ sthen@
ok stsp@
 2015-07-17 23:57:58 +00:00
ajacoutot
349bd79515 Change the default user to "www". 
This makes it easier to switch from one web server to the other.

discussed with stsp@ sthen@
ok sthen@
 2015-07-17 19:52:06 +00:00
stsp
b016c6702e Update www/apache-httpd to 2.4.12. 
Manual configuration updates might be required, see
http://httpd.apache.org/docs/2.4/upgrading.html
MPMs can now be loaded at runtime. The default config keeps using 'prefork'.
Based on an initial diff by claudio@
ok sthen@ ajacoutot@
 2015-05-15 08:08:03 +00:00
naddy
6bb8d0674b Drop USE_GROFF from ports where the formatting differences are acceptable 
or mandoc provides the more useful output.
 2015-02-16 22:57:07 +00:00
sthen
220181f344 Drop some patches; libressl renamed SSL_CTX_use_certificate_chain to 
SSL_CTX_use_certificate_chain_mem (libssl/src/ssl/ssl.h r1.79 et al) so
this no longer conflicts.
 2015-02-06 15:19:01 +00:00
sthen
1673a28362 sync WANTLIB to fix the -ldap flavour, as found by Joe Price 
(missed during the heimdal removal because this isn't linked to the build
to avoid conflicting dependencies on apr-util and apr-util--ldap by
different ports in the tree).
 2014-11-04 21:46:55 +00:00
sthen
d181616867 rename mod_ssl's (very old) internal function, SSL_CTX_use_certificate_chain, 
because a function with the same name was added to libressl recently.

unbreaks 130-odd ports.
 2014-10-02 17:13:28 +00:00
sthen
eda157a449 apache2 FAKE_AS_ROOT tweak. We currently install suexec2 without setuid 
privileges, but the file in the fake directory is mode 4555 owned by the
user building the port, so triggering checks at package creation time
because the plist doesn't have a @mode 4555 annotation. Change the PLIST
to explicitly install this file as mode 555 (no setuid bit) to allow
packaging to succeed. This commit does not change the mode of the file
installed by the package, users wanting suexec will still need to chmod
it themselves, just allows a FAKE_AS_ROOT=No build to work.

While there, swap some /var for LOCALSTATEDIR.
 2014-09-17 10:11:08 +00:00
espie
963975501d explicitly mark the few ports that don't build with FAKE_AS_ROOT=No 2014-09-16 09:07:03 +00:00
stsp
3b4d2a1f94 update to apache-httpd 2.2.29; ok sthen 2014-09-09 10:08:23 +00:00
kili
8fe8e948eb Rename rc scripts of apache-httpd to apache resp. apache2 to get rid 
of a conflict with base httpd.

ok sthen@
 2014-07-27 10:51:37 +00:00
sthen
b7e7b4903f instead of lynx -dump, use ftp -o- | sed to strip out html tags (for 
apachectl status / fullstatus)

ok ajacoutot@
 2014-07-16 14:41:19 +00:00
pascal
2c4c24a773 Fix apache after COMP removal. 
ok naddy@
 2014-07-12 14:11:32 +00:00
stsp
86fc6931eb Fix runtime breakage in www/apache-httpd after RAND_egd() removal; ok sthen 2014-04-27 19:15:43 +00:00
ajacoutot
ec06c7f600 Regen WANTLIB for kerberos removal. 2014-04-21 22:47:07 +00:00
sthen
a91c12da19 unbreak following removal of "chil" engine in libcrypto 2014-04-14 19:23:31 +00:00
stsp
3c8a19c25f Update www/apache-httpd to 2.2.17. 
Fixes CVE-2014-0098 and CVE-2013-6438 among other changes.
ok sthen
 2014-04-09 22:11:32 +00:00
sthen
52de8091f8 tweak DESCR/remove MESSAGE which are talking about base httpd 2014-03-09 20:57:40 +00:00
brad
90b644f241 This is the Apache 2.0 license. 2013-12-01 02:58:30 +00:00
stsp
5b2a68b2d6 Update to Apache HTTPD 2.2.26. Mostly rolls in patches we had already. 2013-11-25 17:00:47 +00:00
stsp
bfd94d0ce7 Add upstream patches to fix Apache HTTPD PR 55397, a regression in 2.2.25 
that breaks handling of special characters in filenames for Subversion.
ok landry sthen
 2013-10-17 14:05:41 +00:00
stsp
87a6165750 Add patches from upstream to fix regressions in mod_dav since httpd-2.2.25. 
Unbreaks 'svn copy URL1 URL2' and restores compliance with RFC 4918 (WebDAV).
See https://issues.apache.org/bugzilla/show_bug.cgi?id=55304
and https://issues.apache.org/bugzilla/show_bug.cgi?id=55306
ok sthen
 2013-10-09 12:54:16 +00:00
sthen
bfa9b1b83d regen patch; no pkg change 2013-07-15 07:40:18 +00:00
stsp
0a155c8490 Update Apache HTTPD 2 to version 2.2.25. Fixes CVE-2013-1896 and CVE-2013-1862. 
ok giovanni@
 2013-07-12 13:21:25 +00:00
ajacoutot
25b3041f91 Unbreak after hx509 and ntlm removal from Kerberos. 2013-06-20 06:54:36 +00:00
ajacoutot
8613536758 Some trivial WANTLIB and tweaks to unbreak after the Heimdal update. 
Stop hardcoding the Kerberos libs and use krb5-config(1).
 2013-06-17 19:28:36 +00:00
ajacoutot
58f1a6f9f6 USE_LIBTOOL=Yes is the default now. 2013-03-21 08:45:11 +00:00
espie
eae66e4a7b PERMIT_* / REGRESS->TEST sweep 2013-03-11 11:35:43 +00:00
sthen
f5a323c546 Don't use ${FLAVOR:L}, we only support lower-case flavours now. 
OK ajacoutot@ espie@
 2013-02-09 14:49:50 +00:00
giovanni
f3cf748e56 Update to 2.2.23, fixes CVE-2012-2687 and CVE-2012-0883. 
ok sthen@
 2012-10-18 08:12:16 +00:00
sthen
32268b7d14 Update to the Apache HTTP server 2.2.22, the current release on the 2.2 branch. 
Merged from diffs from myself, Rodolfo Gouveia and with an rc script from
giovanni@.

This is a security update, fixing CVE-2011-3348, CVE-2011-3368, CVE-2011-3607,
CVE-2011-4317, CVE-2012-0021, CVE-2012-0031 and CVE-2012-0053.
 2012-07-18 08:45:42 +00:00
stsp
adb88b2247 Needs bump because of devel/apr update; don't depend on removed 'mt' flavour 2012-04-28 09:54:44 +00:00
ajacoutot
609acea29b Fix build with pcre >= 8.30 (from upstream) 2012-02-17 08:33:03 +00:00
giovanni
8ecb2ff1c7 Update to latest version, fixes CVE-2011-3192 
ok fkr@
 2011-09-01 13:40:09 +00:00
pea
9b749c36f3 Fix CVE-2010-1452 
ok sthen@, landry@
 2011-02-12 21:05:38 +00:00
espie
e50b98837f new depends 2010-11-22 08:36:47 +00:00
sthen
89d5cdea52 new-style LIB_DEPENDS/REVISION/WANTLIB 2010-11-11 12:35:09 +00:00
espie
c82c4422b0 USE_GROFF=Yes 2010-10-19 08:02:53 +00:00
robert
0be52ed9fc update to 2.2.15 2010-06-27 17:27:03 +00:00
bernd
a9f214f6ce Security update to apache-httpd-2.2.14. (CVE-2009-3095, CVE-2009-3094) 2009-12-01 13:38:23 +00:00
fkr
8d5431b8ad Update to 2.2.13 
SECURITY: CVE-2009-2412, CVE-2009-1891, CVE-2009-1195, CVE-2009-1890,
CVE-2009-1191, CVE-2009-0023, CVE-2009-1955, CVE-2009-1956

Update the Makefile to properly depend on the mt version of apr-util
in ldap flavour. (from bernd@)

ok jasper@, ajacoutot@
 2009-08-30 18:06:07 +00:00