John Zhang wrote:
--- Ray Morris [EMAIL PROTECTED] wrote:
I am using the apr_* functions to allocate
memory (most of the time from the request-pool).
If there are few places where you allocate from
othr than the reqquest pool, I'd look at those
first.
I used the
--- Joe Lewis [EMAIL PROTECTED] wrote:
Your buckets can still be created using the
request-pool . My created
buckets in my output filter are done that way. Have
you tried it? You
still use the request-connection-bucket_alloc for
the other parameter,
but the request-pool for the memory
I would like to know the request type in my module
(handler/filter), is there any way to know that (HTTP
vs HTTPS)?
Thanks,
John
On Dec 17, 2007 9:23 PM, John Zhang [EMAIL PROTECTED] wrote:
I would like to know the request type in my module
(handler/filter), is there any way to know that (HTTP
vs HTTPS)?
apr_table_get(r-subprocess_env, HTTPS) might be what you want
--
Eric Covener
[EMAIL PROTECTED]
On Dec 17, 2007, at 6:36 PM, Eric Covener wrote:
I would like to know the request type in my module
(handler/filter), is there any way to know that (HTTP
vs HTTPS)?
apr_table_get(r-subprocess_env, HTTPS) might be what you want
That gets set in the Fixup hook, relatively late in the
On 18/12/2007, Sander Temme [EMAIL PROTECTED] wrote:
On Dec 17, 2007, at 6:36 PM, Eric Covener wrote:
I would like to know the request type in my module
(handler/filter), is there any way to know that (HTTP
vs HTTPS)?
apr_table_get(r-subprocess_env, HTTPS) might be what you want
Den Friday 14 December 2007 22.09.00 skrev William A. Rowe, Jr.:
William A. Rowe, Jr. wrote:
There's a simple way of not-so-rudely saying ...
Sorry if this came across harshly Odin, I watch those dialogs
daily on php-dev, I'd hate to see httpd-dev polluted with the
same volume of self
On Dec 10, 2007 4:09 AM, Nick Kew [EMAIL PROTECTED] wrote:
On Fri, 7 Dec 2007 17:55:40 -0500
Eric Covener [EMAIL PROTECTED] wrote:
It seems like a network I/O error while sending an http proxy request
will result in an apr_status_t being returned all the way up through
the handler.
You
On Mon, 17 Dec 2007 10:22:02 -0500
Eric Covener [EMAIL PROTECTED] wrote:
Thanks; Any particular concerns about the generic fix for 2.0.x?
Haven't looked, but if it applies cleanly, then +1 on doing so.
--
Nick Kew
Application Development with Apache - the Apache Modules Book
On Dec 17, 2007 10:27 AM, Nick Kew [EMAIL PROTECTED] wrote:
On Mon, 17 Dec 2007 10:22:02 -0500
Eric Covener [EMAIL PROTECTED] wrote:
Thanks; Any particular concerns about the generic fix for 2.0.x?
Haven't looked, but if it applies cleanly, then +1 on doing so.
same here
On Dec 7, 2007 5:55 PM, Eric Covener [EMAIL PROTECTED] wrote:
The particular instance I'm looking at is during the write of the post
body. In this case I assume HTTP_BAD_GATEWAY should be returned from
proxy_http instead of the status returned from pass_brigade?
I'd guess
On Dec 17, 2007, at 11:20 AM, Jeff Trawick wrote:
On Dec 17, 2007 10:27 AM, Nick Kew [EMAIL PROTECTED] wrote:
On Mon, 17 Dec 2007 10:22:02 -0500
Eric Covener [EMAIL PROTECTED] wrote:
Thanks; Any particular concerns about the generic fix for 2.0.x?
Haven't looked, but if it applies
--- Ray Morris [EMAIL PROTECTED] wrote:
I am using the apr_* functions to allocate
memory (most of the time from the request-pool).
If there are few places where you allocate from
othr than the reqquest pool, I'd look at those
first.
I used the bucket/brigade for my data that
Hi,
RewriteRule does tilde expansion even without mod_userdir being
loaded, and it does so without the usual public_html component being
added. This is a) not mod_rewrite's business and b) a practically
unknown feature. I'd like to see this feature removed.
There's also an issue with the
William A. Rowe, Jr. wrote:
I'm thinking that httpd/mod_ftp/trunk/tests/perl-framework might move
over to httpd/test/trunk/mod_ftp-perl-framework for now. After it
has a few more eyeballs, that could just be merged into the actual
.../perl-framework tree (as long as it stays out of the way
On Sun, Dec 16, 2007 at 08:37:08PM +0100, Stefan Fritsch wrote:
*) http_protocol: Escape request method in 413 error reporting.
Determined to be not generally exploitable, but a flaw in any case.
PR 44014 [Victor Stinner victor.stinner inl.fr]
This is CVE-2007-6203. Maybe you
Hi Bill,
Please fetch up the newly prepared httpd-mod_ftp-0.9.0.tar.[gz|bz2]
(and its md5/asc sigs) from:
http://httpd.apache.org/dev/dist/mod_ftp/
review, take it for a spin, and cast your choice
[ ] -1 for release of 0.9.0
[ ] +1 to release as 0.9.0-alpha
[ ] +1 to release
William A. Rowe, Jr. wrote:
I suggest
httpd/test/
httpd/
(all testing modules related to httpd core)
test/[trunk|tags|branches]
(renaming perl-framework, which is too wordy anyways)
Rethought this; framework makes sense (the fact that it's written
in perl is beside the point)
Joe Orton wrote:
On Sun, Dec 16, 2007 at 08:37:08PM +0100, Stefan Fritsch wrote:
*) http_protocol: Escape request method in 413 error reporting.
Determined to be not generally exploitable, but a flaw in any case.
PR 44014 [Victor Stinner victor.stinner inl.fr]
This is CVE-2007-6203.
Guenter Knauf wrote:
the files from the tarball compile cleanly for NetWare without any change for
both 2.0.x and 2.2.x;
nothing more yet tested for the moment...
That's in-tree, then, or using ./configure.apxs? The reason this couldn't
work out-of-tree without defining FTP_APXS_BUILD is
On Monday 17 December 2007, William A. Rowe, Jr. wrote:
This is CVE-2007-6203. Maybe you should add the reference to the
CHANGES file?
I don't think that's a good idea since we don't want to mislead
users into thinking a security issue exists here.
it potentially does, just not of
Stefan Fritsch wrote:
I agree. It might be exploitable with buggy browser plugins using HTTP
request splitting. See e.g.
http://www.adobe.com/support/security/advisories/apsa06-01.html
Request splitting was previously addressed in httpd.
Hi all,
another user pointed out that it seems that mod_ssl doesnt support SNI yet:
http://www.g-loaded.eu/2007/08/10/ssl-enabled-name-based-apache-virtual-hosts-with-mod_gnutls/
one of the reader comments contains a link to a mod_ssl patch which enables
this:
Guenter Knauf wrote:
Hi all,
another user pointed out that it seems that mod_ssl doesnt support SNI yet:
http://www.g-loaded.eu/2007/08/10/ssl-enabled-name-based-apache-virtual-hosts-with-mod_gnutls/
one of the reader comments contains a link to a mod_ssl patch which enables
this:
Hi Steve,
A patch is also in bug #34607. Originally no released version of OpenSSL
supported SNI it was an experimental addition to the HEAD which will
become 0.9.9-dev.
I recently backported it as an option to 0.9.8f. By option I mean it
is not compiled in by default but will be included if
Hi,
I hope that this is the correct mailing list for this question, and that you can
easily provide a quick response.
I am currently working within the UK Ministry of Defence, and am trying to get
Apache web server accredited as software able to be installed on one of our
defence networks.
On Dec 17, 2007, at 1:48 AM, Oden Eriksson wrote:
apache and loads of third party apache modules in Mandriva Linux.
I'm not
authorized to vote here, for that I need to reincarnate myself as
an ASF
developer I guess.
As far as I see it, *any* feedback from *anyone* on a release
Andrew Beverley wrote:
Hi,
I hope that this is the correct mailing list for this question, and that you can
easily provide a quick response.
I am currently working within the UK Ministry of Defence, and am trying to get
Apache web server accredited as software able to be installed on one of
On Mon, 17 Dec 2007 23:22:37 +
Andrew Beverley [EMAIL PROTECTED] wrote:
Hi,
I hope that this is the correct mailing list for this question, and
that you can easily provide a quick response.
Not quickly, beyond what's on the apache webpages, or published
elsewhere (e.g. Chapter 1 of my
On Mon, Dec 17, 2007 at 11:22:37PM +, Andrew Beverley wrote:
I am currently working within the UK Ministry of Defence, and am trying to get
Apache web server accredited as software able to be installed on one of our
defence networks. However, one of the barriers I am coming up against is
Andrew,
On Dec 17, 2007, at 3:22 PM, Andrew Beverley wrote:
What I would like to know, so that I can dispel this, is what
procedures are in
place to prevent this happening? I know that all downloads are
digitally signed,
but what other procedures are in place? For example, how is code
Andrew Beverley wrote:
Hi,
I hope that this is the correct mailing list for this question, and that you
can
easily provide a quick response.
I am currently working within the UK Ministry of Defence, and am trying to get
Apache web server accredited as software able to be installed on
Guenter,
see the logic in (top level) Makefile.apxs which invokes the
build/addloadexample.awk script (I recall you can rely on an awk
being present.)
Rather than loading the module inside extra/ftpd.conf, I coupled
it in 'in the style of' the other extra/*.conf sections, and the new
awk
Hi Bill,
Any concerns with my new approach?
no real concerns - but personally I would prefer to have the load statements
inside each conf file;
also because for now we anyway distribute it separately, and once we have it
inside httpd then anyway things might go other ways - f.e. I till then
Hi Bill,
Add a DSO variable (default to .so for unix) so that
it's trivial to use this script for netware.
I was first going to ask for this already, but see my other post why this isnt
really usable for now...
-print LoadModule MODULE _module LIBPATH /mod_ MODULE .so;
+print
William A. Rowe, Jr. wrote:
Guenter,
see the logic in (top level) Makefile.apxs which invokes the
build/addloadexample.awk script (I recall you can rely on an awk
being present.)
Oh - we need to add a -v DSO=.nlm - I've already adjusted Makefile.apxs
accordingly.
Remaining noise after these two are applied to trunk are listed below.
It's looking awfully sloppy - and prone to optimization bugs.
URL: http://svn.apache.org/viewvc?rev=605073view=rev
Log:
Two type mismatch fixes previously committed to trunk\
and forgotten from backports
@@ -37,7 +37,8 @@
Guenter Knauf wrote:
Hi Bill,
Any concerns with my new approach?
no real concerns - but personally I would prefer to have the load statements
inside each conf file;
also because for now we anyway distribute it separately, and once we have it
inside httpd then anyway things might go other
William A. Rowe, Jr. wrote:
Remaining noise after these two are applied to trunk are listed below.
It's looking awfully sloppy - and prone to optimization bugs.
URL: http://svn.apache.org/viewvc?rev=605073view=rev
Log:
Two type mismatch fixes previously committed to trunk\
and forgotten from
So here's the suggested transition to restore some sanity to the
test subproject. Feedback, please?
svn mkdir https://svn.apache.org/repos/asf/httpd/test/flood
svn mkdir https://svn.apache.org/repos/asf/httpd/test/flood/branches
svn mkdir https://svn.apache.org/repos/asf/httpd/test/flood/tags
40 matches
Mail list logo