[pkgsrc/trunk]: pkgsrc/security/ap-modsecurity2 Update to 2.1.4

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/security/ap-modsecurity2 Update to 2.1.4
From: adrianp <adrianp%pkgsrc.org@localhost>
Date: Thu, 14 Oct 2021 05:39:42 +0000
details:   https://anonhg.NetBSD.org/pkgsrc/rev/372e244cbd54
branches:  trunk
changeset: 537153:372e244cbd54
user:      adrianp <adrianp%pkgsrc.org@localhost>
date:      Fri Jan 04 10:05:51 2008 +0000

description:
Update to 2.1.4

27 Nov 2007 - 2.1.4
-------------------
* Updated included Core Ruleset to version 1.5 and noted in the docs that
XML support is required to use the rules without modification.
* Fixed an evasion FP, mistaking a multipart non-boundary for a boundary.
* Fixed multiple warnings on Solaris and/or 64bit builds.
* Do not process subrequests in phase 2-4, but do hand off the request data.
* Fixed a blocking FP in the multipart parser, which affected Safari.

11 Sep 2007 - 2.1.3
-------------------
* Updated multipart parsing code adding variables to allow checking
for various parsing issues (request body abnormalities).
* Allow mod_rpaf and mod_extract_forwarded2 to work before ModSecurity.
* Quiet some compiler warnings.
* Do not block internal ErrorDocument requests after blocking request.
* Added ability to compile without an external API (use -DNO_MODSEC_API).

27 Jul 2007 - 2.1.2
-------------------
* Cleaned up and clarified some documentation.
* Update included core rules to latest version (1.4.3).
* Enhanced ability to alert/audit failed requests.
* Do not trigger "pause" action for internal requests.
* Fixed issue with requests that use internal requests.  These had the
potential to be intercepted incorrectly when other Apache httpd modules
that used internal requests were used with mod_security.
* Added Solaris and Cygwin to the list of platforms not supporting the hidden
visibility attribute.
* Fixed decoding full-width unicode in t:urlDecodeUni.
* Lessen some overhead of debugging messages and calculations.
* Do not try to intercept a request after a failed rule.  This fixes the
issue associated with an "Internal Error: Asked to intercept request
but was_intercepted is zero" error message.
* Added SecAuditLog2 directive to allow redundent concurrent audit log
index files.  This will allow sending audit data to two consoles, etc.
* Small performance improvement in memory management for rule execution.

diffstat:

 security/ap-modsecurity2/Makefile         |   5 ++---
 security/ap-modsecurity2/PLIST            |   5 +++--
 security/ap-modsecurity2/distinfo         |  10 +++++-----
 security/ap-modsecurity2/patches/patch-aa |  23 ++++++++++-------------
 4 files changed, 20 insertions(+), 23 deletions(-)

diffs (92 lines):

diff -r b9b6cf24649a -r 372e244cbd54 security/ap-modsecurity2/Makefile
--- a/security/ap-modsecurity2/Makefile Fri Jan 04 08:03:22 2008 +0000
+++ b/security/ap-modsecurity2/Makefile Fri Jan 04 10:05:51 2008 +0000
@@ -1,9 +1,8 @@
-# $NetBSD: Makefile,v 1.6 2007/12/27 16:39:07 adrianp Exp $
+# $NetBSD: Makefile,v 1.7 2008/01/04 10:05:51 adrianp Exp $
 
-DISTNAME=      modsecurity-apache_2.1.1
+DISTNAME=      modsecurity-apache_2.1.4
 PKGNAME=       ${APACHE_PKG_PREFIX}-${DISTNAME:S/apache_//}
 CATEGORIES=    www security
-PKGREVISION=   1
 MASTER_SITES=  http://www.modsecurity.org/download/
 
 MAINTAINER=    adrianp%NetBSD.org@localhost
diff -r b9b6cf24649a -r 372e244cbd54 security/ap-modsecurity2/PLIST
--- a/security/ap-modsecurity2/PLIST    Fri Jan 04 08:03:22 2008 +0000
+++ b/security/ap-modsecurity2/PLIST    Fri Jan 04 10:05:51 2008 +0000
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.2 2007/03/18 10:35:13 adrianp Exp $
+@comment $NetBSD: PLIST,v 1.3 2008/01/04 10:05:51 adrianp Exp $
 lib/httpd/mod_security2.so
 share/doc/ap-security/apache_request_cycle-modsecurity.jpg
 share/doc/ap-security/breach-logo-small.gif
@@ -10,8 +10,9 @@
 share/doc/ap-security/html-multipage/06-transformation-functions.html
 share/doc/ap-security/html-multipage/07-actions.html
 share/doc/ap-security/html-multipage/08-operators.html
+share/doc/ap-security/html-multipage/ar01s02.html
+share/doc/ap-security/html-multipage/ar01s10.html
 share/doc/ap-security/html-multipage/apache_request_cycle-modsecurity.jpg
-share/doc/ap-security/html-multipage/ar01s02.html
 share/doc/ap-security/html-multipage/breach-logo-small.gif
 share/doc/ap-security/html-multipage/index.html
 share/doc/ap-security/html-multipage/modsecurity-reference.css
diff -r b9b6cf24649a -r 372e244cbd54 security/ap-modsecurity2/distinfo
--- a/security/ap-modsecurity2/distinfo Fri Jan 04 08:03:22 2008 +0000
+++ b/security/ap-modsecurity2/distinfo Fri Jan 04 10:05:51 2008 +0000
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.3 2007/05/18 09:20:09 adrianp Exp $
+$NetBSD: distinfo,v 1.4 2008/01/04 10:05:51 adrianp Exp $
 
-SHA1 (modsecurity-apache_2.1.1.tar.gz) = 06527f16271628b882d375b4a0ad188d13dc7291
-RMD160 (modsecurity-apache_2.1.1.tar.gz) = 17e94c19d51f7e9e09ef435f81d696ec638aad44
-Size (modsecurity-apache_2.1.1.tar.gz) = 650607 bytes
-SHA1 (patch-aa) = 58909761e850fff12b989e68b70f418b6720c96d
+SHA1 (modsecurity-apache_2.1.4.tar.gz) = 2dbd940f8537641a0f0366b6ed6512e53e045589
+RMD160 (modsecurity-apache_2.1.4.tar.gz) = a782e78691f765f68bef13fda1786df750bf31dc
+Size (modsecurity-apache_2.1.4.tar.gz) = 676539 bytes
+SHA1 (patch-aa) = ab35a84c0576968661ae08c5dc14c156e7b9e13b
diff -r b9b6cf24649a -r 372e244cbd54 security/ap-modsecurity2/patches/patch-aa
--- a/security/ap-modsecurity2/patches/patch-aa Fri Jan 04 08:03:22 2008 +0000
+++ b/security/ap-modsecurity2/patches/patch-aa Fri Jan 04 10:05:51 2008 +0000
@@ -1,28 +1,25 @@
-$NetBSD: patch-aa,v 1.3 2007/05/18 09:20:09 adrianp Exp $
+$NetBSD: patch-aa,v 1.4 2008/01/04 10:05:51 adrianp Exp $
 
---- apache2/Makefile.orig      2007-03-07 16:24:45.000000000 +0000
+--- apache2/Makefile.orig      2007-11-27 18:37:37.000000000 +0000
 +++ apache2/Makefile
-@@ -17,7 +17,7 @@ builddir     = .
- #     Debian - /usr/share/apache2  (apache2-prefork-dev or apache2-threaded-dev
- #                                   needed, depending on your installation type)
+@@ -32,7 +32,7 @@ builddir     = .
+ # XML references in the Core Ruleset if you choose not to include XML support.
+ # In future versions of ModSecurity XML support will be required.
  #
--top_dir      = /apps/apache22
+-top_dir      = /usr/local/apache2
 +top_dir      = @PREFIX@/share/httpd
  
  top_srcdir   = ${top_dir}
  top_builddir = ${top_dir}
-@@ -27,11 +27,11 @@ include ${top_builddir}/build/special.mk
+@@ -42,9 +42,9 @@ include ${top_builddir}/build/special.mk
  APXS      = apxs
  APACHECTL = apachectl
  
 -INCLUDES = -I /usr/include/libxml2
++INCLUDES += -I@PREFIX@/include/httpd @XMLINC@
+ #INCLUDES = -I /usr/include/libxml2 -I /path/to/httpd-x.y/srclib/pcre
 -DEFS = -DWITH_LIBXML2
-+INCLUDES += -I@PREFIX@/include/httpd @XMLINC@
 +DEFS += @XMLDEFS@
+ #DEFS = -DWITH_LIBXML2 -DNO_MODSEC_API
  #LIBS = -Lmy/lib/dir -lmylib
  
--CFLAGS = -O2 -g -Wuninitialized -Wall -Wmissing-prototypes -Wshadow -Wunused-variable -Wunused-value -Wchar-subscripts -Wsign-compare
-+#CFLAGS = -O2 -g -Wuninitialized -Wall -Wmissing-prototypes -Wshadow -Wunused-variable -Wunused-value -Wchar-subscripts -Wsign-compare
- 
- all: local-shared-build
-
Prev by Date: [pkgsrc/trunk]: pkgsrc/doc Updated security/ap-modsecurity2 to 2.1.4
Next by Date: [pkgsrc/trunk]: pkgsrc/www/php4 Update to 4.4.8
Previous by Thread: [pkgsrc/trunk]: pkgsrc/doc Updated security/ap-modsecurity2 to 2.1.4
Next by Thread: [pkgsrc/trunk]: pkgsrc/www/php4 Update to 4.4.8
Indexes:
Home | Main Index | Thread Index | Old Index