Removing modsecurity 1.x

To: Pkgsrc NetBSD <pkgsrc-users%netbsd.org@localhost>
Subject: Removing modsecurity 1.x
From: "Sevan / Venture37" <venture37%gmail.com@localhost>
Date: Sat, 22 Oct 2016 22:52:44 +0100

Hello,
We have 2 versions of modsecurity in pkgsrc, security/ap-modsecurity &
ap-modsecurity2.
ap-modsecurity tracks the 1.x release branch.

I was wondering if there was any objection to removing
security/ap-modsecurity on the grounds that it's EoL & potentially
insecure (there are a couple of security bypass advisories among
others which cover both branches).
I'm working on getting ap-modsecurity2 up to the latest version
(latest release doesn't build on NetBSD-head due to a conflict between
it's own bundled version of hmac() and hmac(3). otherwise latest
version builds on NetBSD 7.0.1).

Any reason why security/ap-modsecurity should stick around?


Sevan

Prev by Date: Re: firefox-49.0 segfaults frequently
Next by Date: Re: Imake on Solaris 11.2/sparc
Previous by Thread: (devel/p5-ExtUtils-LibBuilder) make test fails on t/01-simple.t
Next by Thread: Rust linking failure
Indexes:

Home | Main Index | Thread Index | Old Index