All:
I've been working on integrating mod_ssl and mod_authnz_ldap for
non-password-based environments. I contemplate AuthType Certificate
in https://issues.apache.org/bugzilla/show_bug.cgi?id=48780 . This
enhancement is targeted for environments where the user is authenticated
if they:
1)
Greetings,
Is there anyone who can confirm that there will be no ApacheCon *Europe* in
2010? There is no news about it on the apachecon/apache sites and there have
been no announcements. Is the absence of evidence equivalent to evidence of
absence?
Rgds,
Owen Boyle
Disclaimer: Any disclaimer
There will be no ApacheCon Europe in 2010.
We're working on other events, starting with the Apache Retreat next
month in Ireland (http://apache.eventbrite.com/). We're also planning
to have a presence at the Open World Forum in Paris in the autumn,
although details are still up in the air.
If
On Tue, Mar 23, 2010 at 5:53 PM, traw...@apache.org wrote:
Author: trawick
Date: Tue Mar 23 17:53:27 2010
New Revision: 117
Log:
text/plain for easy viewing in browser
Modified:
release/httpd/patches/apply_to_2.0.63/CVE-2010-0425.patch (props changed)
On 3/24/2010 6:21 AM, Jeff Trawick wrote:
On Tue, Mar 23, 2010 at 5:53 PM, traw...@apache.org wrote:
Author: trawick
Date: Tue Mar 23 17:53:27 2010
New Revision: 117
Log:
text/plain for easy viewing in browser
Modified:
release/httpd/patches/apply_to_2.0.63/CVE-2010-0425.patch
On Wed, Mar 24, 2010 at 8:16 AM, William A. Rowe Jr.
wr...@rowe-clan.net wrote:
On 3/24/2010 6:21 AM, Jeff Trawick wrote:
On Tue, Mar 23, 2010 at 5:53 PM, traw...@apache.org wrote:
Author: trawick
Date: Tue Mar 23 17:53:27 2010
New Revision: 117
Log:
text/plain for easy viewing in browser
On 3/24/2010 7:38 AM, Jeff Trawick wrote:
But I just noticed that my raw HTTP test request was sent to
archive.apache.org instead of www.apache.org; I guess svn isn't
serving archive.apache.org, so the svn property isn't consulted? The
request to www.apache.org is getting the proper mime
Rainer Jung wrote:
On 22.03.2010 14:52, William A. Rowe Jr. wrote:
Wondering if we are comfortable tagging and releasing 2.0.64 in the
I agree there should be a release fixing (at least) CVE-2009-3555 (ssl
reneg). My tests were positive, but more eyes are very welcome.
Rainer,
XP SP2
Hi Gregg,
thanks for testing, see comments below.
On 24.03.2010 23:17, Gregg L. Smith wrote:
Rainer Jung wrote:
On 22.03.2010 14:52, William A. Rowe Jr. wrote:
Wondering if we are comfortable tagging and releasing 2.0.64 in the
I agree there should be a release fixing (at least)
On 3/24/2010 5:51 PM, Rainer Jung wrote:
The server only needs server initiated renegotiations.
As repeated several times, there are apparently micro SSL implementations
out there in the wild, e.g. cell phone browsers, who choose to renegotiate
and - seeing an alert that it is not supported,
On 25.03.2010 00:20, William A. Rowe Jr. wrote:
On 3/24/2010 5:51 PM, Rainer Jung wrote:
The server only needs server initiated renegotiations.
As repeated several times, there are apparently micro SSL implementations
out there in the wild, e.g. cell phone browsers, who choose to renegotiate
11 matches
Mail list logo
