Skip to content
  1. Nov 29, 2004
  2. Nov 27, 2004
  3. Nov 24, 2004
  4. Nov 22, 2004
  5. Nov 20, 2004
  6. Nov 19, 2004
  7. Nov 11, 2004
  8. Nov 10, 2004
  9. Nov 06, 2004
  10. Nov 05, 2004
  11. Nov 04, 2004
  12. Nov 03, 2004
  13. Nov 02, 2004
  14. Nov 01, 2004
  15. Oct 29, 2004
  16. Oct 25, 2004
    • Paul Querna's avatar
      This will put some messages in the error log when some people try a lame · d140d3c4
      Paul Querna authored
      DoS by just opening a socket, and never sending any data.
      
      Ivan suggested such a change about a month ago, to match the 1.3 behavoir.
      
      Today I helped OSU's Admins figure out that someone was trying this 'attack'
      against their mirror server.  The server status just showed hundreds of
      Apache Children stuck in Reading.  This will at least hint to the admins
      where the problem is by telling them about it in the error log.
      
      Inspired by: Rici Lake, Ivan Ristic <ivanr webkreator.com>
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@105583 13f79535-47bb-0310-9956-ffa450edef68
      d140d3c4
  17. Oct 23, 2004
  18. Oct 22, 2004
  19. Oct 18, 2004
  20. Oct 14, 2004
  21. Oct 13, 2004
  22. Oct 10, 2004
  23. Oct 08, 2004
    • Joe Orton's avatar
      Fix CAN-2004-0885: · d107d7d6
      Joe Orton authored
      * modules/ssl/ssl_engine_kernel.c (ssl_hook_Access): Ensure that a
      correct cipher suite has been negotiated, else deny access.
      
      * modules/ssl/ssl_engine_init.c (ssl_init_ctx_protocol): With OpenSSL
      0.9.7, prevent session resumption during a renegotiation to force the
      client to negotiate a new (and acceptable) cipher suite.
      
      Submitted by: Hartmut Keil <Hartmut.Keil adnovum.ch>, Joe Orton
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@105396 13f79535-47bb-0310-9956-ffa450edef68
      d107d7d6
  24. Oct 04, 2004
  25. Oct 03, 2004
  26. Oct 02, 2004
  27. Sep 29, 2004
  28. Sep 28, 2004
    • Justin Erenkrantz's avatar
      Try to correctly follow RFC 2616 13.3 on validating stale cache responses by · 3a37af26
      Justin Erenkrantz authored
      teaching mod_cache's cache_select_url and cache_save_filter how to deal with
      this corner case.
      
      * modules/experimental/cache_storage.c
        (cache_select_url): If we have a stale entry, save the handle so that
        cache_save_filter can use it later, and make the request conditional.
      * modules/experimental/cache_util.c
        (ap_cache_request_is_conditional): Take in a table rather than request_rec.
      * modules/experimental/mod_cache.c
        (cache_out_filter): Fix bogus comment.
        (cache_save_filter): If we have already responded to the client, block all
        data; correctly merge in 'stale' handles that are not really stale; set
        r->status where appropriate; serve cached response if 'fresh'
      * modules/experimental/mod_cache.h
        (cache_info): Add a status field.
        (cache_request_rec): Add stale handle field and note we may block responses.
        (ap_cache_request_is_conditional): Update prototype.
      * modules/experimental/mod_disk_cache.c
        (store_headers): Use cache_info status instead of r->status.
      * modules/experimental/mod_mem_cache.c
        (recall_headers): Properly recall the status field.
        (store_headers): Store the status field via cache_info status.
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@105322 13f79535-47bb-0310-9956-ffa450edef68
      3a37af26
    • Justin Erenkrantz's avatar
      mod_disk_cache: Do not store aborted content. · 30aa9ac5
      Justin Erenkrantz authored
      PR: 21492
      Submitted by:	R�diger Pl�m <r.pluem t-online.de>
      Reviewed by:	Justin Erenkrantz
      
      
      git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@105317 13f79535-47bb-0310-9956-ffa450edef68
      30aa9ac5