Skip to content
  1. Jan 09, 2010
  2. Jan 07, 2010
    • Eric Covener's avatar
      Merge r896897 from trunk: · e9fe6c47
      Eric Covener authored
      clarify LDAPConnectionTimeout behavior/availability which is really just 
      passed along to the SDK when applicable.
      
      
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@896956 13f79535-47bb-0310-9956-ffa450edef68
      e9fe6c47
    • Ruediger Pluem's avatar
      Merge r891282 from trunk: · 18dd70ea
      Ruediger Pluem authored
      Further mitigation for the TLS renegotation attack, CVE-2009-3555:
      
      * modules/ssl/ssl_engine_kernel.c (has_buffered_data): New function.
        (ssl_hook_Access): Forcibly disable keepalive for the connection if
        there is any buffered data readable from the input filter stack.
      
      * modules/ssl/ssl_engine_io.c (ssl_io_filter_input): Ensure that the
        BIO uses blocking operations when invoked outside direct control of
        the httpd filter stack.
      
      Thanks to Hartmut Keil <Hartmut.Keil adnovum.ch> for proposing this
      technique.
      
      Submitted by: jorton
      Reviewed by: rpluem, jim, trawick
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@896900 13f79535-47bb-0310-9956-ffa450edef68
      18dd70ea
  3. Jan 06, 2010
  4. Jan 05, 2010
  5. Jan 04, 2010
  6. Dec 27, 2009
  7. Dec 26, 2009
  8. Dec 25, 2009
  9. Dec 22, 2009
  10. Dec 21, 2009
  11. Dec 20, 2009
  12. Dec 18, 2009
  13. Dec 17, 2009
  14. Dec 16, 2009
  15. Dec 14, 2009
  16. Dec 12, 2009
  17. Dec 07, 2009
  18. Dec 03, 2009
  19. Nov 30, 2009
  20. Nov 29, 2009
  21. Nov 21, 2009