Bug#230999: [CAN-2003-0987] mod_digest for Apache does not properly verify the nonce of a client response by using a AuthNonce secret.

On Tue, Feb 03, 2004 at 10:37:33PM +0100, J.H.M. Dassen (Ray) wrote: Package: apache Version: 1.3.29.0.1-5 Severity: grave Tags: security patch Candidate: CAN-2003-0987 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0987 Phase: Assigned (20031216) Category: SF Reference:

Re: Setting up apache (1.3.29.0.1-3) 510mod_gzip.info does not have a valid LoadModule entry.

Hi, just update libapache-mod-gzip as well and it will work without any problem. I relly suggest to all users to upgrade apache and their modules all together to avoid old leftovers across the time. Fabio On Wed, 4 Feb 2004, Paul Clarke wrote: Hi After upgrading to apache

Bug#231068: ssl-cert: problems with installation

Package: ssl-cert Version: 1.0-6 Severity: normal When trying to update I get the following error: Preconfiguring packages ... dpkg: syntax error: unknown user `cyrus' in statusoverride file E: Sub-process /usr/bin/dpkg returned an error code (2 -- System Information: Debian Release:

Bug#230999: [CAN-2003-0987] mod_digest for Apache does not properly verify the nonce of a client response by using a AuthNonce secret.

On Tue, Feb 03, 2004 at 14:05:25 -0800, Matt Zimmerman wrote: mod_digest for Apache does not properly verify the nonce of a client response by using a AuthNonce secret. Can anyone explain the true impact of this bug? I'm not sure, but this is my best guess/interpretation from googling

Re: unsubscribe

On Wed, Feb 04, 2004 at 01:36:54PM +0100, Thorsten Luft wrote: Please unsubscibe all user @systrade.de from this list. The user who subscribes this list are out off office - forever. Please read what is in EVERY mail: To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of

Bug#231134: Wish: Dummy LoadModule directive in apache2.conf to ease module installations through apxs (e.g. PHP5)

Package: apache2-common Version: 2.0.48-7 Severity: wishlist Other software used: PHP version 5.0.0b3 available from http://www.php.net/downloads.php When installing PHP5 into Apache 2 as a SAPI module, the 'make install' target of PHP5 calls instdso.sh, which in turn uses apxs to install the

Bug#231147: Invalid argument apr_proc_mutex_unlock error messages when restarting

Package: apache2-common Version: 2.0.48-7 Using 'en2mod ssl' and the default ssl.conf provided by apache2-common 2.0.48-7, together with apache2-mpm-worker 2.0.48-7, I get the following error messages in the error log when issuing 'apache2ctl -DSSL -k graceful': [Wed Feb 04 20:58:21 2004]

Re: Bug#231174: apache: doubled LoadModule line in /usr/lib/apache/1.3/510mod_cgi_debug.info

Please upgrade mod_gzip. This bug has been fixed a long time ago. Thanks Fabio On Thu, 5 Feb 2004, Zoran Dzelajlija wrote: Package: apache Version: 1.3.29.0.1-5 Severity: normal Broke upgrade from 1.3.29-something here. $ sudo dpkg --configure -a Setting up apache (1.3.29.0.1-5) ...