Why isn't there an apache 1.3.19 update for SuSE 7.0? Isn't this "classified" as an security update/fix? at least is this what the apache release note says... as well as the 7.1 update page. I'm aware of the SuSE maintanace policy for older releases, but for gods sake I bougt 7.0 just a few months ago! and this was my 6th set of SuSE dist CD's and belive such important and widely used packet of the distribution should have a somewhat longer lifetime then a couple of months...? Thanks, Joakim Schramm
From 1.3.19 release notes: "Apache 1.3.19 Major changes The primary security fix is: The default installation could lead mod_negotiation and mod_dir or mod_autoindex to display a directory listing instead of the multiview'ed index.html.* files, if a very long path was created artificially by using many slashes. Now 403 FORBIDDEN is returned.
The bug fixes are: The ServerRoot directive now removes trailing slashes. Restore functionality broken by the mod_rewrite security fix: The mod_rewrite string arithmetic is corrected for rewrite map. Some possible segfault conditions have been fixed. Under certain circumstances, Apache did not supply the right response headers when requiring authentication."
On Thu, 19 Apr 2001, Hostmaster wrote:
Why isn't there an apache 1.3.19 update for SuSE 7.0? Isn't this "classified" as an security update/fix? at least is this what the apache release note says... as well as the 7.1 update page. I'm aware of the SuSE maintanace policy for older releases, but for gods sake I bougt 7.0 just a few months ago! and this was my 6th set of SuSE dist CD's and belive such important and widely used packet of the distribution should have a somewhat longer lifetime then a couple of months...?
The weired thing is that apache 1.3.19 is available at least for 6.2, 6.3, 6.4 and 7.1, but not for 7.0. Perhaps they forgot about 7.0? c'ya sven -- The Internet treats censorship as a routing problem, and routes around it. (John Gilmore on http://www.cygnus.com/~gnu/)
Yea holy gosh I never thought of that, and just checked the webpage for update paches... they may only forgot it there and not on ftp... Thanks, Joakim
-----Original Message----- From: Sven Koch [mailto:haegar@sdinet.de] Sent: Thursday, April 19, 2001 11:33 PM To: Hostmaster Cc: suse-security Subject: Re: apache 1.3.19
On Thu, 19 Apr 2001, Hostmaster wrote:
Why isn't there an apache 1.3.19 update for SuSE 7.0? Isn't this "classified" as an security update/fix? at least is this what the apache release note says... as well as the 7.1 update page. I'm aware of the SuSE maintanace policy for older releases, but for gods sake I bougt 7.0 just a few months ago! and this was my 6th set of SuSE dist CD's and belive such important and widely used packet of the distribution should have a somewhat longer lifetime then a couple of months...?
The weired thing is that apache 1.3.19 is available at least for 6.2, 6.3, 6.4 and 7.1, but not for 7.0.
Perhaps they forgot about 7.0?
c'ya sven
--
The Internet treats censorship as a routing problem, and routes around it. (John Gilmore on http://www.cygnus.com/~gnu/)
On Fri, 20 Apr 2001, Joakim Schramm wrote:
Yea holy gosh I never thought of that, and just checked the webpage for update paches... they may only forgot it there and not on ftp...
I've checked the ftp, and not the webpages. Everything else but 7.0 is on the ftp-server, but 7.0 is missing.
The weired thing is that apache 1.3.19 is available at least for 6.2, 6.3, 6.4 and 7.1, but not for 7.0.
Perhaps they forgot about 7.0?
c'ya sven -- The Internet treats censorship as a routing problem, and routes around it. (John Gilmore on http://www.cygnus.com/~gnu/)
So SuSE, can this be fixed ASAP? Can't see any reason why 7.0 shouldn't have an apache 1.3.19 update avail, excluded from the rest. Interesting fenomina this been the state for a month and no one reacted... thanks, Joakim
-----Original Message----- From: Sven Koch [mailto:haegar@sdinet.de] Sent: Friday, April 20, 2001 12:50 AM To: Joakim Schramm Cc: suse-security Subject: RE: apache 1.3.19
On Fri, 20 Apr 2001, Joakim Schramm wrote:
Yea holy gosh I never thought of that, and just checked the webpage for update paches... they may only forgot it there and not on ftp...
I've checked the ftp, and not the webpages. Everything else but 7.0 is on the ftp-server, but 7.0 is missing.
The weired thing is that apache 1.3.19 is available at least for 6.2, 6.3, 6.4 and 7.1, but not for 7.0.
Perhaps they forgot about 7.0?
c'ya sven
--
The Internet treats censorship as a routing problem, and routes around it. (John Gilmore on http://www.cygnus.com/~gnu/)
participants (3)
-
Hostmaster -
Joakim Schramm
-
Sven Koch