- 浏览: 330417 次
- 性别:
- 来自: 北京
最新评论
-
hoey168:
请问楼主,ICE 客户端连接多个服务端,tcp -h 172. ...
ZeroC ICE之旅------负载均衡及容错 -
iOracleSun:
makeC++SharedLib 增加 -G参数即可链接成功 ...
AIX apache module问题 -
fanyonglu:
不错,讲的很细,学习中
ZeroC ICE之旅------java -
click_guobin:
...
我在深圳,每月收入850元,怎么也花不完,晒一晒我是怎么开销和投资的(zz) -
hanyu332:
引用修改%apache%/conf/httpd.conf修改为 ...
awstats日志分析小结(1)
Changes with Apache 2.2.13
*) SECURITY: CVE-2009-2412 (cve.mitre.org)
Distributed with APR 1.3.8 and APR-util 1.3.9 to fix potential overflow
in pools and rmm, where size alignment was taking place.
[Matt Lewis <mattlewis@google.com>, Sander Striker]
*) mod_ssl, ab: improve compatibility with OpenSSL 1.0.0 betas. Report
warnings compiling mod_ssl against OpenSSL to the httpd developers.
[Guenter Knauf]
*) mod_cgid: Do not add an empty argument when calling the CGI script.
PR 46380 [Ruediger Pluem]
*) Fix potential segfaults with use of the legacy ap_rputs() etc
interfaces, in cases where an output filter fails. PR 36780.
[Joe Orton]
Changes with Apache 2.2.12
*) SECURITY: CVE-2009-1891 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_deflate or other
modules, by forcing the server to consume CPU time in compressing a
large file after a client disconnects. PR 39605.
[Joe Orton, Ruediger Pluem]
*) SECURITY: CVE-2009-1195 (cve.mitre.org)
Prevent the "Includes" Option from being enabled in an .htaccess
file if the AllowOverride restrictions do not permit it.
[Jonathan Peatfield <j.s.peatfield damtp.cam.ac.uk>, Joe Orton,
Ruediger Pluem, Jeff Trawick]
*) SECURITY: CVE-2009-1890 (cve.mitre.org)
Fix a potential Denial-of-Service attack against mod_proxy in a
reverse proxy configuration, where a remote attacker can force a
proxy process to consume CPU time indefinitely. [Nick Kew, Joe Orton]
*) SECURITY: CVE-2009-1191 (cve.mitre.org)
mod_proxy_ajp: Avoid delivering content from a previous request which
failed to send a request body. PR 46949 [Ruediger Pluem]
*) SECURITY: CVE-2009-0023, CVE-2009-1955, CVE-2009-1956 (cve.mitre.org)
The bundled copy of the APR-util library has been updated, fixing three
different security issues which may affect particular configurations
and third-party modules.
*) mod_include: fix potential segfault when handling back references
on an empty SSI variable. [Ruediger Pluem, Lars Eilebrecht, Nick Kew]
*) mod_alias: check sanity in Redirect arguments.
PR 44729 [Sönke Tesch <st kino-fahrplan.de>, Jim Jagielski]
*) mod_proxy_http: fix Host: header for literal IPv6 addresses.
PR 47177 [Carlos Garcia Braschi <cgbraschi gmail.com>]
*) mod_rewrite: Remove locking for writing to the rewritelog.
PR 46942
*) mod_alias: Ensure Redirect emits HTTP-compliant URLs.
PR 44020
*) mod_proxy_http: fix case sensitivity checking transfer encoding
PR 47383 [Ryuzo Yamamoto <ryuzo.yamamoto gmail.com>]
*) mod_rewrite: Fix the error string returned by RewriteRule.
RewriteRule returned "RewriteCond: bad flag delimiters" when the 3rd
argument of RewriteRule was not started with "[" or not ended with "]".
PR 45082 [Vitaly Polonetsky <m_vitaly topixoft.com>]
*) mod_proxy: Complete ProxyPassReverse to handle balancer URL's. Given;
BalancerMember balancer://alias http://example.com/foo
ProxyPassReverse /bash balancer://alias/bar
backend url http://example.com/foo/bar/that is now translated /bash/that
[William Rowe]
*) New piped log syntax: Use "||process args" to launch the given process
without invoking the shell/command interpreter. Use "|$command line"
(the default behavior of "|command line" in 2.2) to invoke using shell,
consuming an additional shell process for the lifetime of the logging
pipe program but granting additional process invocation flexibility.
[William Rowe]
*) mod_ssl: Add server name indication support (RFC 4366) and better
support for name based virtual hosts with SSL. PR 34607
[Peter Sylvester <peter.sylvester edelweb.fr>,
Kaspar Brand <asfbugz velox.ch>, Guenter Knauf, Joe Orton,
Ruediger Pluem]
*) mod_negotiation: Escape pathes of filenames in 406 responses to avoid
HTML injections and HTTP response splitting. PR 46837.
[Geoff Keating <geoffk apple.com>]
*) mod_include: Prevent a case of SSI timefmt-smashing with filter chains
including multiple INCLUDES filters. PR 39369 [Joe Orton]
*) mod_rewrite: When evaluating a proxy rule in directory context, do
escape the filename by default. PR 46428 [Joe Orton]
*) mod_proxy_ajp: Check more strictly that the backend follows the AJP
protocol. [Mladen Turk]
*) mod_ssl: Add SSLProxyCheckPeerExpire and SSLProxyCheckPeerCN directives
to enable stricter checking of remote server certificates.
[Ruediger Pluem]
*) mod_substitute: Fix a memory leak. PR 44948
[Dan Poirier <poirier pobox.com>]
*) mod_proxy_ajp: Forward remote port information by default.
[Rainer Jung]
*) mod_disk_cache/mod_mem_cache: Fix handling of CacheIgnoreHeaders
directive to correctly remove headers before storing them.
[Lars Eilebrecht]
*) mod_deflate: revert changes in 2.2.8 that caused an invalid
etag to be emitted for on-the-fly gzip content-encoding.
PR 39727 will require larger fixes and this fix was far more
harmful than the original code. PR 45023. [Roy T. Fielding]
*) mod_disk_cache: The module now turns off sendfile support if
'EnableSendfile off' is defined globally. PR 41218.
[Lars Eilebrecht, Issac Goldstand]
*) prefork: Fix child process hang during graceful restart/stop in
configurations with multiple listening sockets. PR 42829. [Joe Orton,
Jeff Trawick]
*) mod_ssl: Add SSLRenegBufferSize directive to allow changing the
size of the buffer used for the request-body where necessary
during a per-dir renegotiation. PR 39243. [Joe Orton]
*) mod_rewrite: Introduce DiscardPathInfo|DPI flag to stop the troublesome
way that per-directory rewrites append the previous notion of PATH_INFO
to each substitution before evaluating subsequent rules.
PR38642 [Eric Covener]
*) mod_authnz_ldap: Reduce number of initialization debug messages and make
information more clear. PR 46342 [Dan Poirier]
*) mod_cache: Introduce 'no-cache' per-request environment variable
to prevent the saving of an otherwise cacheable response.
[Eric Covener]
*) core: Translate the status line to ASCII on EBCDIC platforms in
ap_send_interim_response() and for locally generated "100 Continue"
responses. [Eric Covener]
*) CGI: return 504 (Gateway timeout) rather than 500 when a script
times out before returning status line/headers.
PR 42190 [Nick Kew]
*) prefork: Log an error instead of segfaulting when child startup fails
due to pollset creation failures. PR 46467. [Jeff Trawick]
*) mod_ext_filter: fix error handling when the filter prog fails to start,
and introduce an onfail configuration option to abort the request
or to remove the broken filter and continue.
PR 41120 [Nick Kew]
*) mod_include: support generating non-ASCII characters as entities in SSI
PR 25202 [Nick Kew]
*) core/utils: Enhance ap_escape_html API to support escaping non-ASCII chars
[Nick Kew]
*) mod_rewrite: fix "B" flag breakage by reverting r589343
PR 45529 [Bob Ionescu <bobsiegen googlemail.com>]
*) mod_cgid: fix segfault problem on solaris.
PR 39332 [Masaoki Kobayashi <masaoki techfirm.co.jp>, Jeff Trawick]
*) mod_ldap: Avoid a segfault when result->rc is checked in uldap_connection_init
when result is NULL. This could happen if LDAP initialization failed.
PR 45994. [Dan Poirier <poirier pobox.com>]
*) Set Listen protocol to "https" if port is set to 443 and no proto is specified
(as documented but not implemented). PR 46066 [Dan Poirier <poirier pobox.com>]
*) mod_cache: Correctly save Content-Encoding of cachable entity. PR 46401
[Dan Poirier <poirier pobox.com>]
*) Output -M and -S dumps (modules and vhosts) to stdout instead of stderr.
PR 42571 and PR 44266 (dup). [Dan Poirier <poirier pobox.com>]
*) mod_cache: When an explicit Expires or Cache-Control header is set, cache
normally non-cacheable response statuses. PR 46346.
[Alex Polvi <alex polvi.net>]
发表评论
-
May 2009 Web Server Survey
2009-06-02 14:30 1050In the May 2009 survey we recei ... -
俄罗斯农民乘法
2009-02-10 18:29 3009规则:什么是俄罗斯农民 乘法?我要怎么使用它? ... -
Google搜索消耗的能量相当于烧一壶茶
2009-01-13 22:11 991两条Google 搜索真的能产 ... -
New Servlet 3.0 (JSR-315) Specification
2008-12-02 10:03 1314Introduction All modern J ... -
人保部:男女退休年龄或推至65岁
2008-11-06 14:03 929据《羊城晚报》报道 “相关部门正在酝酿条件成熟时延长法定退休年 ... -
王牌军排名
2008-10-28 08:59 1064第1名.王牌铁军--43军 43军在中国人民解放军中资历老 ... -
迪拜负债476亿美元超过GDP 阿拉伯财富神话破灭
2008-10-17 16:40 1686很长时间以来,迪拜债 ... -
红杉资本给CEO们的信
2008-10-16 14:48 943现在的形势非常严 ... -
AdSense 推介计划即将暂停
2008-07-02 16:52 946from http://adsense.googlechina ... -
7家顶级GPS软件企业大揭秘(ZZ)
2008-05-09 13:18 1746在揭秘前,首先给这国内顶级6家GPS企业分别冠名,之后在逐一阐 ... -
IBM架设second life私有土地(ZZ)
2008-04-11 19:05 1451SECOND LIFE,4月2号(路透社)——IBM声称,本周 ... -
4大技巧教你成为沟通中的说话高手(ZZ)
2008-04-07 15:59 1496有个故事讲,在酒足饭 ... -
贾鹏雷:请江南春停止撒谎(ZZ)
2008-04-02 11:30 1082上周老贾写了中心思想 ... -
我在深圳,每月收入850元,怎么也花不完,晒一晒我是怎么开销和投资的(zz)
2008-03-24 13:27 2361既然大家都在晒收入, ... -
51、校内、占座、海内、蚂蚁,中国sns谁能笑在最后?(ZZ)
2008-03-18 09:40 112451的用户基数据称已经过亿了,它的高明之处在于,为生活情趣匮乏 ... -
牛根生刁难马云俞敏洪:再创业你们谁会行?(ZZ)
2008-03-17 11:14 1300牛根生在做考官,他要 ... -
牛根生VS史玉柱:举重若轻俩巨人 千金散尽还复来(zz)
2008-03-04 13:41 1418篮子与蛋的关系 1997年 ...
相关推荐
apache 服务 apache_2.2.13-x64-no-ssl.msi
apache_2.2.13-win32-x86-openssl-0.9.8k.msi
这是php的必安软件!一个直接可以在windows上面安装的可执行文件,不需要解压,不需要注册码。直接安装就可以了。
APACHE配置文件中文版 httpd.conf FOR Apache 2.2.13 ,综合网上2.0版本的翻译,加入自己的理解,补充完善。
0.4.2更新*重写核心代码*更名为HiPHP*增加rewrite配置(新增discuz phpwind wordpress的rewrite模版)软件简介:HiPHP 是一款图形界面的快速搭建apache2.2.13、PHP 5.2.11、MySQL 5.1.35、phpMyAdmin 3.2.3,网站...
Linux环境下安装svn的PDF文档,希望能对大家有所帮助!
ESSamp是一款拥有图形界面的快速搭建网站服务器平台的绿色软件。您只需下载并解压ESSamp就能...Apache 2.2.13 PHP 5.2.10 MySQL 5.1.37 MySQL 4.1.22 phpMyAdmin 2.11.9.5 ZendOptimizer 3.3.3 eAccelerator 0.9.5.3
最新版php环境配置指导以下配置以php5.3,apache2.2.13为例进行
Apache 2.2.13 最流行的HTTP服务器软件,快速、可靠、开源。 MySQL 5.0.85 执行性能高,运行速度快,容易使用,非常棒数据库。 phpMyAdmin 3.2.2 开源、基于WEB而小巧的MySQL管理程序。 ZendOptimizer 3.3.3 免费...
apache_2.2.13-win32-x86-no_ssl 本人已用过,绝对好使!
2.0.8版本内包含了Subversion 1.6.6(即SVN),Apache 2.2.13 VisualSVN Server目前分成免费的标准版和收费的企业版, 默认安装为标准版,输入买来的企业版授权码即转为企业版。 企业版比标准版多开放两个功能:访问...
ESSamp是一款拥有图形界面的快速搭建网站...2、MySQL默认用户名:root,密码为空3、ESSamp集成了以下软件:Apache 2.2.13PHP 5.2.10 MySQL 5.1.37MySQL 4.1.22phpMyAdmin 2.11.9.5ZendOptimizer 3.3.3eAccelerator 0.9.
绝对可用简单绿色 站长必备 是一款拥有图形界面的快速搭建网站服务器平台的绿色软件。...Apache 2.2.13 PHP 5.2.10 MySQL 5.1.37 MySQL 4.1.22 phpMyAdmin 2.11.9.5 ZendOptimizer 3.3.3 eAccelerator 0.9.5.3
Apache2.2.13最流行的HTTP服务器软件,快速、可靠、开源。 MySQL5.0.85执行性能高,运行速度快,容易使用,非常棒数据库。 phpMyAdmin3.2.2开源、基于WEB而小巧的MySQL管理程序。 ZendOptimizer3.3.3免费的PHP优化...
Apache2.2.13最流行的HTTP服务器软件,快速、可靠、开源。 MySQL5.0.85执行性能高,运行速度快,容易使用,非常棒数据库。 phpMyAdmin3.2.2开源、基于WEB而小巧的MySQL管理程序。 ZendOptimizer3.3.3免费的PHP优化...
最新版php环境配置指导 以下配置以php5.3,apache2.2.13为例进行 -----------------------------------使用php配置生效的设置----------------------------- 系统环境变量: path添加: d:\php
apache2.2.13、2.2.29,32位,64位。公司多台不同版本SVN服务器,要实现在线修改密码需要多个mod_cgi.so文件。经过整理提取,得到以下包,包含32位,64位多个so文件,希望能帮助后来者。
最好按照版本来.apache2.2.13、2.2.29,64位。公司多台不同版本SVN服务器,要实现在线修改密码需要多个mod_cgi.so文件。经过整理提取,得到以下包,包含32位,64位多个so文件,希望能帮助后来者
httpd-2.2.13.tar.gz,编译安装版本