Observers of the commits list may have noticed some small cleanups to the 1.3.x branch earlier today. There are currently a number of several years-old backport/patch proposals in there too, including two marked as release show-stoppers (neither actually stopped the show, when last we had a release).
I've reviewed and tested the relatively low-hanging fruit, and cleaned up the backport proposals to be functional patches. If you really really think any of those patches are important, now is a good time to review/test/vote! Because ... stealing an idea from wrowe@ ... how about we formally deprecate the 1.3.x branch? Make one more release, but attach a notice to the effect that it will be the final release, and that in future we'll be distributing security updates by other means :-) Patch; Index: README =================================================================== --- README (revision 895672) +++ README (working copy) @@ -14,9 +14,16 @@ The Latest Version ------------------ - Details of the latest version can be found on the Apache HTTP - server project page under http://httpd.apache.org/. + As of January 2010, support for version 1.3 of Apache has been + formally deprecated. Updates will be available as patches, from + http://www.apache.org/dist/httpd/patches/ + Users are encouraged to upgrade to version 2 of Apache httpd, + and information on upgrading is available at; + + http://httpd.apache.org/docs/2.0/upgrading.html + http://httpd.apache.org/docs/2.2/upgrading.html + Documentation ------------- Index: src/CHANGES =================================================================== --- src/CHANGES (revision 895795) +++ src/CHANGES (working copy) @@ -1,6 +1,22 @@ Changes with Apache 1.3.42 + *) INFORMATIONAL: Please note that this release is considered + the final release of the Apache 1.3.x branch. Future + updates will be distributed as patches, via + http://www.apache.org/dist/httpd/patches/ + + Apache 1.3.x users who wish to avail of security releases + are advised to use Apache 2 or higher. Please see; + + http://httpd.apache.org/docs/2.0/upgrading.html + http://httpd.apache.org/docs/2.2/upgrading.html + + for information on upgrading. On behalf of the Apache + httpd group; thank you to everyone who helped make + Apache 1.3.x the most successful, and most used, + webserver software on the planet. + Changes with Apache 1.3.41 *) SECURITY: CVE-2007-6388 (cve.mitre.org) -- Colm