- Oct 02, 2002
-
-
William A. Rowe Jr authored
ap_server_signature() against this cross-site scripting vulnerability exposed by the directive 'UseCanonicalName Off'. Also HTML-escape the SERVER_NAME environment variable for CGI and SSI requests. It's safe to escape as only the '<', '>', and '&' characters are affected, which won't appear in a valid hostname. Reported by Matthew Murphy <mattmurphy@kc.rr.com>. [Brian Pane] git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97064 13f79535-47bb-0310-9956-ffa450edef68
-
William A. Rowe Jr authored
Until we have a mechanism to allow PHP and others to 'raise their hand' and claim 'POST' we have to continue to accept POST in the default handler. Revert to rev 1.206 per Rbb's and wrowe's veto. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97063 13f79535-47bb-0310-9956-ffa450edef68
-
Mark J. Cox authored
PR: Obtained from: Submitted by: Reviewed by: git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97062 13f79535-47bb-0310-9956-ffa450edef68
-
Paul J. Reder authored
Fix a core dump in mod_cache when it attemtped to store uncopyable buckets. This happened, for instance, when a file to be cached contained SSI tags to execute a CGI script (passed as a pipe bucket). [Paul J. Reder] git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97058 13f79535-47bb-0310-9956-ffa450edef68
-
Ryan Bloom authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97055 13f79535-47bb-0310-9956-ffa450edef68
-
Jeff Trawick authored
when the content-length filter realizes that no new output will be available for a while. This helps some streaming CGIs as well as some other dynamically-generated content. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97054 13f79535-47bb-0310-9956-ffa450edef68
-
- Oct 01, 2002
-
-
Justin Erenkrantz authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97050 13f79535-47bb-0310-9956-ffa450edef68
-
Jeff Trawick authored
could lead to an infinite loop. PR: 12705 Diagnosis submitted by: amund.elstad@ergo.no (Amund Elstad) Coded by: Jeff Trawick git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97048 13f79535-47bb-0310-9956-ffa450edef68
-
Greg Stein authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97047 13f79535-47bb-0310-9956-ffa450edef68
-
Greg Stein authored
The resource must be handled by something *other* than the default handler. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97046 13f79535-47bb-0310-9956-ffa450edef68
-
Justin Erenkrantz authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97045 13f79535-47bb-0310-9956-ffa450edef68
-
Justin Erenkrantz authored
(Also correct directive usage) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97044 13f79535-47bb-0310-9956-ffa450edef68
-
Astrid Kessler authored
added a link to mod_ssl (for proxy directives) submitted by Irmund Thum <i.t@ithum.de> with two minor corrections from me git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97043 13f79535-47bb-0310-9956-ffa450edef68
-
William A. Rowe Jr authored
Offer more thoughts git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97041 13f79535-47bb-0310-9956-ffa450edef68
-
Greg Stein authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97040 13f79535-47bb-0310-9956-ffa450edef68
-
- Sep 30, 2002
-
-
Ryan Bloom authored
/me wonders why we have generated content in CVS. :-( git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97039 13f79535-47bb-0310-9956-ffa450edef68
-
Ryan Bloom authored
network write. All other status codes result in c->aborted being set, which allows the logs to note that the connection was aborted. Previous to this patch, if the network cable was unplugged on the client, the server would get APR_ETIMEUP, but we wouldn't note that the connection was aborted. Submitted by: Ryan Morgan <rmorgan@covalent.net> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97038 13f79535-47bb-0310-9956-ffa450edef68
-
Aaron Bannert authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97035 13f79535-47bb-0310-9956-ffa450edef68
-
Martin Kraemer authored
CVS directories.... Noticed by Marco Lorig, mlorig at gmx dot net. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97031 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97030 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97027 13f79535-47bb-0310-9956-ffa450edef68
-
Cliff Woolley authored
Submitted by: Sameer Manek <manek@ghur.net> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97026 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
Forward port from 1.3. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97025 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97024 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97023 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97022 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97020 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
Submitted by: Hiroaki KAWAI <hawk@bcl.t.u-tokyo.ac.jp> Reviewed by: Yoshiki Hayashi git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97019 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97018 13f79535-47bb-0310-9956-ffa450edef68
-
Yoshiki Hayashi authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97017 13f79535-47bb-0310-9956-ffa450edef68
-
Ryan Bloom authored
Mod_Dav was always setting the r->handler field to "dav_handler", but this means that mod_cgi won't run the script. According to my reading of the DAV RFC, mod_dav shouldn't do anything at all with a POST request, because it is impossible to know if the POST was meant for DAV or for some other resource. We used to excuse POST from DAV processing, so I have re-enabled that behavior. PR: 13025 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97016 13f79535-47bb-0310-9956-ffa450edef68
-
- Sep 29, 2002
-
-
Astrid Kessler authored
existing UR on the Apache site for former Apache 1.2 patches Submitted by: Irmund Thum <i.t@ithum.de> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97015 13f79535-47bb-0310-9956-ffa450edef68
-
Astrid Kessler authored
existing UR on the Apache site for former Apache 1.2 patches submitted by: Irmund Thum <i.t@ithum.de> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97014 13f79535-47bb-0310-9956-ffa450edef68
-
David Shane Holden authored
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97013 13f79535-47bb-0310-9956-ffa450edef68
-
Andre Malo authored
- introduce CSS class td.centered: guess, what it does ;-) please, use with care... git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97012 13f79535-47bb-0310-9956-ffa450edef68
-
Andre Malo authored
added reminder for translation cross links git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97011 13f79535-47bb-0310-9956-ffa450edef68
-
Andre Malo authored
(algorithm and session) - fixed some links - changed example from whatever.com to example.com... - little markup & style fine tuning git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97010 13f79535-47bb-0310-9956-ffa450edef68
-
Andre Malo authored
Submitted by: Thomas Sj�gren <thomas@northernsecurity.net> [This is also not the original submission. I revised a lot of things (structure, markup etc.)] other files: style & markup fine tuning git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97009 13f79535-47bb-0310-9956-ffa450edef68
-
- Sep 28, 2002
-
-
Andre Malo authored
automagically (<table style="zebra">) - allow some attributes in th (e.g. colspan) - add ability for <h4> sections - refuse to transform deeper nesting than h4 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97008 13f79535-47bb-0310-9956-ffa450edef68
-
William A. Rowe Jr authored
Clean this up a bit. 1. A patch isn't an available patch without a reference to the thing, and if it applies to 2.0. 2. It's ain't a showstopper if we released with the issue. Cull out all the silly voting statistics. 3. Update some bits I know are done. Drop some 'discussion' and leave the meat of the issue. 4. Escalate the CGI piping issue. That one is really a serious issue. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@97006 13f79535-47bb-0310-9956-ffa450edef68
-