mod_ssl-1:2.4.6-89.el7.centos.1$>Ր2'f`M~Cp1>8q?qd   $ N  Gb{Xl v      8( 8 9 :+w>oBoGoHoIoXoYoZp[p\p]p0^pjbpdqieqnfqqlqsqCmod_ssl2.4.689.el7.centos.1SSL/TLS module for the Apache HTTP ServerThe mod_ssl module provides strong cryptography for the Apache Web server via the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols.]?+x86-02.bsys.centos.org~CentOSASL 2.0CentOS BuildSystem System Environment/Daemonshttp://httpd.apache.org/linuxx86_64umask 077 if [ -f /etc/pki/tls/private/localhost.key -o -f /etc/pki/tls/certs/localhost.crt ]; then exit 0 fi /usr/bin/openssl genrsa -rand /proc/apm:/proc/cpuinfo:/proc/dma:/proc/filesystems:/proc/interrupts:/proc/ioports:/proc/pci:/proc/rtc:/proc/uptime 2048 > /etc/pki/tls/private/localhost.key 2> /dev/null FQDN=`hostname` if [ "x${FQDN}" = "x" -o ${#FQDN} -gt 59 ]; then FQDN=localhost.localdomain fi cat << EOF | /usr/bin/openssl req -new -key /etc/pki/tls/private/localhost.key \ -x509 -sha256 -days 365 -set_serial $RANDOM -extensions v3_req \ -out /etc/pki/tls/certs/localhost.crt 2>/dev/null -- SomeState SomeCity SomeOrganization SomeOrganizationalUnit ${FQDN} root@${FQDN} EOF$)YQA]? ]? ]?*]?*]?*c29eef01443a1e35d9eb0088a0ebc9fdf443a8632bf0fde83b99e5edc46691df88f04c415dbd1bf0d074965d37261e056d073b675a047a02e55222818640c6e815ad78d17074b3f3621cc0b957ba7ac32fae378b8d3c52f39ba9bbbe3c099cba2db3d123a987134321f309c837e96d27a3c11d5e7fb9ae6395255d2cc119d0f0rootrootrootrootapacherootrootrootrootroothttpd-2.4.6-89.el7.centos.1.src.rpmmod_sslmod_ssl(x86-64)    @@@@@@@@@@@@@@ openssl-libsopenssl/bin/cathttpdhttpdhttpd-mmn/bin/shrpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(CompressedFileNames)/bin/shlibcrypto.so.10()(64bit)libcrypto.so.10(libcrypto.so.10)(64bit)libcrypto.so.10(OPENSSL_1.0.1_EC)(64bit)libcrypto.so.10(OPENSSL_1.0.2)(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.4)(64bit)libdl.so.2()(64bit)libpthread.so.0()(64bit)libssl.so.10()(64bit)libssl.so.10(libssl.so.10)(64bit)rtld(GNU_HASH)rpmlib(PayloadIsXz)1:1.0.1e-370:2.4.6-89.el7.centos.120120211x86644.6.0-14.0-13.0.4-15.2-14.11.3]>] \[+@[+@[+@[*A['[d@[d@ZZS]@Y@YeY@YY@YY@YdYp@Y{Y{Y*@YYw2Y@Y@Y@XXg@X,X,X@XƉX•@XCX@X@XXXXO@XO@XO@XO@XXWWW{@Wc@V͛@U@Uݪ@UoUȒ@UU@Un@UY@U.RT}Tto@TXTG@T2@T @TTS@SS@S@SuSǺS*@SSRUR@RRΏ@R@RkR1@RsRrF@Ri RM\@RC@Q@QQޞ@QQo@Q@QQ@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@CentOS Sources - 2.4.6-89.el7.centos.1Lubos Uhliarik - 2.4.6-89.1Joe Orton - 2.4.6-89Luboš Uhliarik - 2.4.6-88Luboš Uhliarik - 2.4.6-87Luboš Uhliarik - 2.4.6-86Luboš Uhliarik - 2.4.6-85Luboš Uhliarik - 2.4.6-84Luboš Uhliarik - 2.4.6-83Luboš Uhliarik - 2.4.6-82Joe Orton - 2.4.6-81Luboš Uhliarik - 2.4.6-80Luboš Uhliarik - 2.4.6-79Luboš Uhliarik - 2.4.6-78Luboš Uhliarik - 2.4.6-77Luboš Uhliarik - 2.4.6-76Luboš Uhliarik - 2.4.6-75Luboš Uhliarik - 2.4.6-74Luboš Uhliarik - 2.4.6-73Luboš Uhliarik - 2.4.6-72Luboš Uhliarik - 2.4.6-71Luboš Uhliarik - 2.4.6-70Luboš Uhliarik - 2.4.6-69Luboš Uhliarik - 2.4.6-68Luboš Uhliarik - 2.4.6-67Luboš Uhliarik - 2.4.6-66Luboš Uhliarik - 2.4.6-65Luboš Uhliarik - 2.4.6-64Luboš Uhliarik - 2.4.6-63Luboš Uhliarik - 2.4.6-62Luboš Uhliarik - 2.4.6-61Luboš Uhliarik - 2.4.6-60Luboš Uhliarik - 2.4.6-59Luboš Uhliarik - 2.4.6-58Luboš Uhliarik - 2.4.6-57Luboš Uhliarik - 2.4.6-56Luboš Uhliarik - 2.4.6-55Luboš Uhliarik - 2.4.6-54Luboš Uhliarik - 2.4.6-53Luboš Uhliarik - 2.4.6-52Luboš Uhliarik - 2.4.6-51Luboš Uhliarik - 2.4.6-50Luboš Uhliarik - 2.4.6-49Luboš Uhliarik - 2.4.6-48Joe Orton - 2.4.6-47Luboš Uhliarik - 2.4.6-46Luboš Uhliarik - 2.4.6-45Joe Orton - 2.4.6-44Joe Orton - 2.4.6-43Joe Orton - 2.4.6-42Jan Kaluza - 2.4.6-41Jan Kaluza - 2.4.6-40Jan Kaluza - 2.4.6-39Jan Kaluza - 2.4.6-38Jan Kaluza - 2.4.6-37Jan Kaluza - 2.4.6-36Jan Kaluza - 2.4.6-35Jan Kaluza - 2.4.6-34Jan Kaluza - 2.4.6-33Jan Kaluza - 2.4.6-32Jan Kaluza - 2.4.6-31Jan Kaluza - 2.4.6-30Jan Kaluza - 2.4.6-29Jan Kaluza - 2.4.6-28Jan Kaluza - 2.4.6-27Jan Kaluza - 2.4.6-26Jan Kaluza - 2.4.6-25Jan Kaluza - 2.4.6-24Jan Kaluza - 2.4.6-23Jan Kaluza - 2.4.6-22Jan Kaluza - 2.4.6-21Jan Kaluza - 2.4.6-20Jan Kaluza - 2.4.6-19Jan Kaluza - 2.4.6-18Jan Kaluza - 2.4.6-17Joe Orton - 2.4.6-16Joe Orton - 2.4.6-15Daniel Mach - 2.4.6-14Joe Orton - 2.4.6-13Joe Orton - 2.4.6-12Joe Orton - 2.4.6-11Joe Orton - 2.4.6-10Daniel Mach - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Jan Kaluza - 2.4.6-6Jan Kaluza - 2.4.6-5Jan Kaluza - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9.1Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3.2Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Remove index.html, add centos-noindex.tar.gz - change vstring - change symlink for poweredby.png - update welcome.conf with proper aliases- Resolves: #1719722 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in mod_auth_digest- fix per-request leak of bucket brigade structure (#1583218)- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple SIGUSR1- Resolves: #1458364 - RMM list corruption in ldap module results in server hang- Resolves: #1493181 - RFE: mod_ssl: allow sending multiple CA names which differ only in case- Resolves: #1556761 - mod_proxy_wstunned config needs the default port number- Resolves: #1548501 - Make OCSP more configurable (like CRL)- Resolves: #1523536 - Backport Apache BZ#59230 mod_proxy_express uses db after close- Resolves: #1533793 - Use Variable with mod_authnz_ldap- don't terminate connections during graceful stop/restart (#1557785)- Related: #1288395 - httpd segfault when logrotate invoked- Resolves: #1274890 - mod_ssl config: tighten defaults- Resolves: #1506392 - Backport: SSLSessionTickets directive support- Resolves: #1440590 - Need an option to disable UTF8-conversion of certificate DN- Resolves: #1464406 - Apache consumes too much memory for CGI output- Resolves: #1448892 - Cannot override LD_LIBARY_PATH in Apache HTTPD using SetEnv or PassEnv. Needs documentation.- Resolves: #1430640 - "ProxyAddHeaders Off" does not become effective when it's defined outside setting- Resolves: #1499253 - ProxyRemote with HTTPS backend sends requests with absoluteURI instead of abs_path- Resolves: #1288395 - httpd segfault when logrotate invoked- Resolves: #1368491 - mod_authz_dbd segfaults when AuthzDBDQuery missing- Resolves: #1467402 - rotatelogs: creation of zombie processes when -p is used- Resolves: #1493065 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw() authentication bypass - Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference - Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread - Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread - Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection in mod_auth_digest- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1445885 - define _RH_HAS_HTTPPROTOCOLOPTIONS- Resolves: #1442872 - apache user is not created during httpd installation when apache group already exist with GID other than 48- Related: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- Resolves: #1397241 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Related: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1378946 - Backport of apache bug 55910: Continuation lines are broken during buffer resize- Resolves: #1364604 - Upstream Bug 56925 - ErrorDocument directive misbehaves with mod_proxy_http and mod_proxy_ajp- Resolves: #1324416 - Error 404 when switching language in HTML manual more than once- Resolves: #1353740 - Backport Apache PR58118 to fix mod_proxy_fcgi spamming non-errors: AH01075: Error dispatching request to : (passing brigade to output filters)- Resolves: #1371876 - Apache httpd returns "200 OK" for a request exceeding LimitRequestBody when enabling mod_ext_filter- Resolves: #1372692 - Apache httpd does not log status code "413" in access_log when exceeding LimitRequestBody- Resolves: #1376835 - httpd with worker/event mpm segfaults after multiple successive graceful reloads- Resolves: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1396197 - Backport: mod_proxy_wstunnel - AH02447: err/hup on backconn- Resolves: #1348019 - mod_proxy: Fix a race condition that caused a failed worker to be retried before the retry period is over- Resolves: #1389535 - Segmentation fault in SSL_renegotiate- Resolves: #1406184 - stapling_renew_response: abort early (before apr_uri_parse) if ocspuri is empty- prefork: fix delay completing graceful restart (#1327624) - mod_ldap: fix authz regression, failing to rebind (#1415257)- Resolves: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- RFE: run mod_rewrite external mapping program as non-root (#1316900)- add security fix for CVE-2016-5387- add 451 (Unavailable For Legal Reasons) response status-code (#1343582)- mod_cache: treat cache as valid with changed Expires in 304 (#1331341)- mod_cache: merge r->err_headers_out into r->headers when the response is cached for the first time (#1264989) - mod_ssl: Do not send SSL warning when SNI hostname is not found as per RFC 6066 (#1298148) - mod_proxy_fcgi: Ignore body data from backend for 304 responses (#1263038) - fix apache user creation when apache group already exists (#1299889) - fix apache user creation when USERGROUPS_ENAB is set to 'no' (#1288757) - mod_proxy: fix slow response time for reponses with error status code when using ProxyErrorOverride (#1283653) - mod_ldap: Respect LDAPConnectionPoolTTL for authn connections (#1300149) - mod_ssl: use "localhost" in the dummy SSL cert for long FQDNs (#1240495) - rotatelogs: improve support for localtime (#1244545) - ab: fix read failure when targeting SSL server (#1255331) - mod_log_debug: fix LogMessage example in documentation (#1279465) - mod_authz_dbd, mod_authn_dbd, mod_session_dbd, mod_rewrite: Fix lifetime of DB lookup entries independently of the selected DB engine (#1287844) - mod_ssl: fix hardware crypto support with custom DH parms (#1291865) - mod_proxy_fcgi: fix SCRIPT_FILENAME when a balancer is used (#1302797)- mod_dav: follow up fix for previous commit (#1263975)- mod_dav: treat dav_resource uri as escaped (#1255480)- mod_ssl: add support for User Principal Name in SSLUserName (#1242503)- core: fix chunk header parsing defect (CVE-2015-3183) - core: replace of ap_some_auth_required with ap_some_authn_required and ap_force_authn hook (CVE-2015-3185)- Revert fix for #1162152, it is not needed in RHEL7 - mod_proxy_ajp: fix settings ProxyPass parameters for AJP backends (#1242416)- mod_remoteip: correct the trusted proxy match test (#1179306) - mod_dav: send complete response when resource is created (#1235383) - apachectl: correct the apachectl status man page (#1231924)- mod_proxy_fcgi: honor Timeout / ProxyTimeout (#1222328) - do not show all vhosts twice in httpd -D DUMP_VHOSTS output (#1225820) - fix -D[efined] or [d] variables lifetime accross restarts (#1227219) - mod_ssl: do not send NPN extension with not configured (#1226015)- mod_authz_dbm: fix crash when using "Require dbm-file-group" (#1221575)- mod_authn_dbd: fix use-after-free bug with postgresql (#1188779) - mod_remoteip: correct the trusted proxy match test (#1179306) - mod_status: honor remote_ip as documented (#1169081) - mod_deflate: fix decompression of files larger than 4GB (#1170214) - core: improve error message for inaccessible DocumentRoot (#1170220) - ab: try all addresses instead of failing on first one when not available (#1125276) - mod_proxy_wstunnel: add support for SSL (#1180745) - mod_proxy_wstunnel: load this module by default (#1180745) - mod_rewrite: add support for WebSockets (#1180745) - mod_rewrite: do not search for directory if a URL will be rewritten (#1210091) - mod_ssl: Fix SSL_CLIENT_VERIFY value when optional_no_ca and SSLSessionCache are used and SSL session is resumed (#1170206) - mod_ssl: fix memory leak on httpd reloads (#1181690) - mod_ssl: use SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA (#1118476) - mod_cgi: return error code 408 on timeout (#1162152) - mod_dav_fs: set default value of DAVLockDB (#1176449) - add Documentation= to the httpd.service and htcacheclean.service (#1184118) - do not display "bomb" icon for files ending with "core" (#1170215) - add missing Reason-Phrase in HTTP response headers (#1162159) - fix BuildRequires to require openssl-devel >= 1:1.0.1e-37 (#1160625) - apachectl: ignore HTTPD variable from sysconfig (#1214401) - apachectl: fix "graceful" documentation (#1214398) - apachectl: fix "graceful" behaviour when httpd is not running (#1214430)- mod_proxy_fcgi: determine if FCGI_CONN_CLOSE should be enabled instead of hardcoding it (#1168050) - mod_proxy: support Unix Domain Sockets (#1168081)- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581)- rebuild against proper version of OpenSSL (#1080125)- set vstring based on /etc/os-release (#1114123)- fix the dependency on openssl-libs to match the fix for #1080125- allow 'es to be seen under virtual hosts (#1131847)- do not use hardcoded curve for ECDHE suites (#1080125)- allow reverse-proxy to be set via SetHandler (#1136290)- fix possible crash in SIGINT handling (#1131006)- ab: fix integer overflow when printing stats with lot of requests (#1092420)- add pre_htaccess so mpm-itk can be build as separate module (#1059143)- mod_ssl: prefer larger keys and support up to 8192-bit keys (#1073078)- fix build on ppc64le by using configure macro (#1125545) - compile httpd with -O3 on ppc64le (#1123490) - mod_rewrite: expose CONN_REMOTE_ADDR (#1060536)- mod_cgid: add security fix for CVE-2014-0231 (#1120608) - mod_proxy: add security fix for CVE-2014-0117 (#1120608) - mod_deflate: add security fix for CVE-2014-0118 (#1120608) - mod_status: add security fix for CVE-2014-0226 (#1120608) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120608)- mod_dav: add security fix for CVE-2013-6438 (#1077907) - mod_log_config: add security fix for CVE-2014-0098 (#1077907)- mod_ssl: improve DH temp key handling (#1057687)- mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1071276)- Mass rebuild 2014-01-24- mod_ssl: sanity-check use of "SSLCompression" (#1036666) - mod_proxy_http: fix brigade memory usage (#1040447)- rebuild- build with -O3 on ppc64 (#1051066)- mod_dav: fix locktoken handling (#1004046)- Mass rebuild 2013-12-27- use unambiguous httpd-mmn (#1029360)- mod_ssl: allow SSLEngine to override Listen-based default (#1023168)- systemd: Use {MAINPID} notation in service file (#969972)- systemd: send SIGWINCH signal without httpd -k in ExecStop (#969972)- expand macros in macros.httpd (#1011393)- fix "LDAPReferrals off" to really disable LDAP Referrals- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- restore "ServerTokens Full-Release" support (#811714)- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- rebuild- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)/bin/shstronghold-mod_ssl1:2.4.6-89.el7.centos.11:2.4.6-89.el7.centos.1ssl.conf00-ssl.confmod_ssl.sohttpd-ssl-pass-dialogssl/etc/httpd/conf.d//etc/httpd/conf.modules.d//usr/lib64/httpd/modules//usr/libexec//var/cache/httpd/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericdrpmxz2x86_64-redhat-linux-gnu?7zXZ !#,`]"k%Co`$Zα>;1B;A6|[ц`vGb^dAiP+ G'f:3/&D=+`cH^.k? ]~yB%H&I t,:=IఇԨ`)г򓌅VL{!Q6ÛMkg C wk p14,(3*yۜ$/֒?O]pC&K^͈׀0tUvY͡\^t6lc&<y'` ǞOmC "A4Φsu> f¸gx]e]9D΢hMh4 Gk MVrHH`p鋣jGڕJ@tWBn:2 Kޖigv!NTQT)*+>r6TG&g6'ٸKO5KnbjoXSEsU/8/u{ ^-nZ{a1a4Z;Cژu@-ǐ3-5e,2w)FHE*oA"'cfzZ[-(vn?Uζ#Oeg+q|Uth]Я Xz'rե!v\Һjj*zO&9{8ME-H+Ƥ_^L,12;}~ks 7&E3Kχ5 0Ic3K  OYpZB/ΘZwގVlZ=_/tusG*d{rDZ -T-\E1.d+6(8lO Gg]$ت.Eݻh%i Tp ZFֆ?yĝ m0 :a~Mr{%@hwm3X~GĹ*iw ߎ _)? }?㉮!3ъzG'le'0 @Z)fq ܕbu\9Ff,r7U]a'*0H6ԭ.Q6wߞuYc]_l45xJOF5/cv_Ĥ(]_4({ܵqV.`LLk &Y}*vh7~7!5߳2 a%U&-}:vU[/csIp J7wo[zA |b(]O u#&E9K2ouk魌E;׎:ZKd \"$/>Z˖OnE}LP}Brr"Sܞ k\%ޫK}7jL:ZU) #^N_&bD~ H[ Ґf6ȓ.]!Vk;  %N Ǫl eH9'Jf @QD`'Q VW9}GI丈VJ%8CdNwh[B^LF7l_w[)cnAڔ3_L=f2 } 9sI9{Q>ȽBY4ѥ'_gt 7g[AV\*8p5rl|ulm^V%qZn\_Q—u"ʉHc&ty Ba43௠5u/0ڤ0rНyxmR)yn挍AO9r!܆{Б #I3Kd}S a 9Rz$+7dy~4 ,;޾S$ (R|É)܄YjuF`dOuF؞|4n&-*ؕ EXB%a9yY|ĝ}R7R 0~Ix`ٔn2_&Uv߇Dqehb1O:2La4Z9-#$Ml[\ƈdeO$k1?ټcR4$ׄT{RjHDqa=(`tR#FqRQf3?\XƎS!'nuU?")8U)+c(y- {mGhMP|2n&҅"EcUql vj_ZOP6I&a$Ŏ)2ӼNCEeQ g߾Bt{e&y Pe'n&Uqy哉s9 p4AA(Xs 'y{)`1ڎgcκZfJH"xV}lEgtGA֡A_vI+\a:Rl}J~,.kXv8 e [>P*lm[y{7h:'{EG87S!S|Zf&NW$|mu62XmDxS例ɘ!VZv^__ǃtl\`m_(LPIju^(l:"}r27RMh]G %NB䤱'3K8I նg=fl^ޕYpqL}zYp4)"}i E8|BYb ߗP%:Dc@ P1Ԉ6}zPѸ'V \%-6Kto 6ǎ朂)Ŀc+CGW9k@R EDO*IMswyLBUd)$d[ͪJuM8[D 'E8E1 PVRX P?uf[PL'Q%_*Bs!\̒a[SJxRU#eTǴuOmjy:on*0msp1N|_~2 ` 58|i{!U ZxG q)tjXnP?"Ri'}/ets=a$h]&SsuKxtx:|6"lQhZ㨃l3,b-bDDzWfLEvOGqqm :wpv<:>7n@GTݘo6גAwt5;sT=٩bEE 6V fH XY2ea5N"[_ Nx\ԌP*AhnUo|!_l4'57U]]=U>YVE}5$)v+!. %˺䆭XrS&h(וv-مs\f_Q#PczC[ _A"nmt[@ٷPpT)׫;Dn;g*oˎot5&?_*T=(6oZxh:m=d'V%3^4|rTBL;$dZ^u j%r-s n?Y:|<zn_\ CCۼi\F4pTp l4y$QoiHsnгD3G-dVSav)I+l53nֹ5,?(}aK{M[HLrz 7 2G=yV&ɬ9&gڳZPL)YʼMKy{SYp-BWV`{gkhE m<^=GՆTYc5*b8b_nOO0K4cK%6n2w׮.I"j2CuBdczCCuc9XXIa-R0'2;T3Sd5T}3U/!Z_̨gۯk?X NPS](O% |$W/ح1566+tup)2dV;E.Oɚ1f`EXR,l&cG`as?zzl"{,r?aqiXH5q]ƊC@cDq깓;}6+Rߐ~_Rl;$df,pU<\4\ `6D)sX'Q |ou!|VAɌܦ"D Cᑝz#=!=oSWO3.}VgЁfc-Gh/H.Q M6gIR$Wګ>/K\[K't ;)b5| vO0>%?EoKD. @T垿th ¨Tk!ٓ㶔} ;Pmf^ZFH%(((w*om<^u͏_Ǜ}u(IP I huFP '?rMSS!a:37Bx߯;S[}K_X:]TZ!@48T-xϳ㍶KueL$*3 w;BA1<{tMh -B8ϖqH=f=/4۾PFQW'e|ԙ'g.JG&VE}g{~-5\{ 3p:tj+(Q^۱&pYGוuVH Ԗ9_R4T-$"/u(zq-MůBD:\ 7...B]. Ǧ Au|*,v"Lp0*i)ӻGދNyz+ ~i0T횳鴈z\A4O;">D@D"=RN~'W#0 Q, /PI]#GeDBE23\gjv%t[h?Kppkhu>fwMO&\nPJ/H6ԍ*S9Ֆ;s$2qݟ|Nn 36wUh* ([LgI@!oIm2U18Ȱ"ZHi ;Tg0"W~/UeO$9# ewryZ*#, m;1= Tu1I宲8R+Dct9GPƗdӂWb ~gWn# HN,&v:di-Q\ƿ( #R>+.m4CMUjw!tc{nӢY7v*NRA :z7hBtFLӹxSKyQ{X!NZ~/fM@@zy/>HW#SYAEG֒oO5om~|A}eimH^s|N"±5 I!9KP *\ɾ~-=Fz?M~vT#ؓ)ҦԎ2VlR |a~_X~A$@"F#qKd QW*1 1B9ˬv1ȝ/]YPma=[ITJv}[c ELĿqEY{' /`i78o# AX]ID%W&^^RՈq}dēg @i 9Η;^%SGo ӅA[>n,=>߁*xkVܝl;)X[+!d Iˊ"Y r$ia78U`G_uJ;t0y%=pt6y[ uO2y1CMe~qDͳ fao=9 >sx){,PtЫz [c) Ӊ$+ uF/:%IE2TKD5L 1D6**PID-HO6pYAi[`W w뽭+}?$A-;њ{-4>& ^g k|C=u"/z٪V쇡tCKڌoӀ{w^riXwb"l? (],[АG"2~k覀ej߯JÈwn$Ϥ Mft;,ϳAa&@|l̅Nm"Р1vX$*3X'*I'cTD{SfH Гq?K4};ŒkÓNU;-nqk̒Q D,yYXf \^aƤC :$:,C$9#0v!ѯ'smu ۄ6 !Ҭ@S+,}u|bPHk=9iU 罚o싅Va3c9(VbMd3[}M,ff~aq';E2D;嬎e7A:SeXCAr8N#VKǦXǼmpIp7fҾͫ 8OV} 9V|rVWqr(-* Ĝ q sx\.)R1xAIhٍ 1&_h^l0{B4juhlg(_7 s "LKvIn a*|+gqhm)JF 8,FM:][ŏ;ˍ?N¶=ote,@5ay3p"Y_ELo2 ѽRnog-sd6GTB+ vG)EA! ?)Sk,y`iw —pEZrws _{4r-ndҸi[I7]#9$J3):ӁPFZ#.Ues$LG?'ui>c^ҙf-:,YHRXWy^s:AG*]feHw n+ivA}7 ^#ʾ WWi/x&bTma5NNL'4xN3"iӴzj LL!sEZ0R'GHԭ:&Ɇg *9B̬pH% q9`xY;0>;Es Rv>lj!\?щdNLC Wao-V D]( ʇVʛ}qjQf ?G,DߎMnU\Pa4 CLw"m"M7qAE Hi >&3 1=6"hGf'dȵ`/JJcD `N^)^M Bw(V\[nz-G0L-(h%_sֳTMQ^>hu?=ҩ:XXb"  fügLᙅC_%_.4^c59`,9̶aF:KUoMb2%ZY@杣K; ^"u9 &!#_ʿܺr57%LPXPaI4"{L]s_GseWi.XYdNjM IкbE͆K~l*LZx~p>ʀ}*p<}WDBSyB읾\.,&PO sQILԏ/=ç%ƈN4 F  7Up;qP\h] b]r'CU cЙwoX"K#'2V6ͳBNKì%T WT=5keRS9e!n;GwWb ;UnNDޣCza sw0v}*}~yGKTKjt)e4X3p~LpZ=*r !1A)Jae,H;AfEfkSX{;H =h 'IpRq$`:=yr- paO;]=2ڛ˙V;ثpBf-̶f͆~#8cϻ9] M)}bᛛ,=,%r ÷HȪ^l=[9cO֫5 t^>XxB]vJITrŚ&t9/VUMYvfZgU< waXz"dc@A1kBzCc< _J|\l48Jh{Ok~EI㦯Y,'!嘭.ҁ*U~h^q\+m};jGeUGQspTCv!Sff3} Lݔ?4hg9L p@+h=mK\R39s]RhVUl~;줈.(5c9.2&6pABVsUY`o.<5`"ÐtE{Y@xus3I yЄ}}9Vo19we2f ss:\@&{Ml#l>~=iuWNu[x!U^EdCg.4ַ;Ʋ}ү*W)HJ;@]v|'@Sb LbhY3XnoWfG8r*]fa|u4F Ă .AK&0&(;UQs\VTJDS!9y/q0;|XTFP! ȗs5?Ղ9LhdG~dP0TO$&D7(@|+fXo(j~ zbŅjueN{ʧxjVC786Z9Ϲ~X5\ Pb9eoĮfe1>E@ #|NGʁM+S&˺KL{J9.R+fB բE!‰i ݣׁ;*e^*?54h `f|1)g4rcNyBo+ڋ3"ZYw&MㆱQz^JN[)B9͠'<~.+T%lϒ;+ꌬ<~l&KrLﳒ+&#kzneSn2r)m*tpw,ߠ$ⵎ*$9ȉL0q: ~j۳\VHAWw&CnTd+2C'&aeė%Z5z^}J`q(IH`4d4ӏ%*7"E\9Rh]EOA`.Mv Kv'ɉpL>(HzNI7-v[#do~0&:Wo]w!q"G%Yzү͵7· ęO&TNߘ)pƂ7T}I~(G"&wV.qc83C̹^ ♺7[$p셔LjȼFHaRШ[TsT)V{@JC0ף?b*!nt=eRC3;># 5іrptUԋ摣f`-zqam=& ޳*(ύ\כ[#py. 귝v% ~rMU3-hws- C4FY=" g^ ʵWl͠֏o7>qn-nl gƏuoņ=Z6Ǒ^xC<7>@W7oMW:1S.9pRbz\v]Qšpޣ0XQqw:%;@p?Ԓ lowÕZXYE`Lїbc2b ߕUBڢ ՜Kmk[υNeb( A٨Ɓq6Q=S^e/T` T'جKJ2vpkOdFfBVk)-:rUCbD|I;eSN^kټ8+7Wosp`ZTsŸd;]\JRWt}]EHDD!Nw \ zgPƗbhc Z5e~8(En7ܮ\ӜzzfO2 we2k"U>6|d `omd)_.DiRHI(eU1QX7|@%f0j#k~ڙ11}p~~ЕNo~u9W\Y;Wc@"~玼ؾanqJLs?: w9 1B9!/b(]\dctQJ SL[[zv-0Rh'RsvW_Kqp@zYLѿsԋ~]^'!;g zME]w=)R%ZsC%Zp[6>iKm˳7^\64 tŒXtׁsʙfG_I<z taD]#VH0v!Bz^|spWt r6kUgr䠭mzd)і~|өvA>?ɬo@#:Yzio5Xbk.Pݝj t9X&Ӫ ˠJ(OP`܎p-~ O|ymX]l@L.al|);0_|ŌnfMmGqR oMPWNJ4Y^;@;qn4 Nx}.qʀTvuL(q`(*]\V5ܧڸqj3&ww9v<wJ;?|uS_K@p0LZ@He>m ;o'V{u i |K7NqQa鐅i-vēm#'rXkqw@^ppStFr,%ɴMו3 r=n=N>]jA, oov>1CDG*,hbPs]@a(3=̾xnuE6f@-;c6oR/#NO.P5Som 뉒z\266rA 1҇};I('^[:b%BFfQhq(Vs:H ,koD=~_- l< 'Q :G - )Ɩp˶u#-{N* wb |l78Rr,Z\򄫫l6C`a8vYyQڡ0[!=p-(nK-ؠ')04'~q XZ|RD;=͸!l,mR@hK=[kc[o@h -)[^/D&7ȓ2gIeYwamYqGGؙL|Q+Qyk-!rF+6%aK"/ Ѽ~gƉWU(1qJ*W#?/C/|QV#GSxRT4_kN;&_ )z+V2NJד]„D+)R|(oCJ* I8^sXm&5ϭgHu]}$7Aǃ,@f}c}<ػ#5Qt! =*-hZWPèS##щ`:g5w!X$yCKEڎɍ}W|`W7"(.;^y|~!p H l#2woR:Yk>v kU_lke܎ٹPLwH{-NԦU8FMC>gkw ܅,e]RNX̺۽cخ8 F2"IkssӁ5H1R\|ߪ.PCѫ+c,ӺSeSgȽ#vEGިfhOKYd,CC *sMouƊ9j+qH:C2r;EXfř͇]y\^Ň)qS';ZK1D[7O#nsMrUѨМo]xK;itQ*;]Y3т(LͶϷQְg=̃nb<".ϤoCt-I}|ϪYUI;ө2v 3sjxqtl#O4ZG`"sv0iL>%W\kQ!X jR|GIz{Dud^SjsIfpJ{.Zavh;-C`hmv~5|16`)$@Z%ы:R4~{'^t4 Rmupud8E:3iBʭ)Z'X'1)+r/5ri;?Ob,5r?XUC?J~kC^dlqw+#3Q0pGH $$DŽK:_kH̒ sZ9WQRU21JW>iUEkWuQ`&޵PcG]/HBMo zUu:FT<# fFcAdx,a?) oxr\1ivX#^[ xKZLļXVrT޼-52WӽfDpO#w0 &fY%O{@mY %u <)7$ 'tv׼)_Tsǜ\:GR`@k!8+B*̿"(B\ﰛ}f L@r,wz_ػkw6.h,}G͊m FH>B:MxjR~PVWTT\닲m b/$KFi 7ɚo uL[ũ'Tޏ2QIT<m$֤}z 0QT%{KcӿU&$6~n jG'wjBzŨ L% a`cМ6 EMc-J}M-F[09'r9wS#taG䥪  #IAwh`Vaw2W$4D5,T(/`;[ Wlm/+y Ѣ~@s}\^-8kx\. h w.4$|S'i *E]Q@[6aLB3` iNꠌZ|1/PO ǕυYQ4iFrDF̀67UEԪfOt[1x h!(ρ*k%Ilg8m:d){M.8U-RHcw^|.QpĨfopr %8b֕$U,'9QlDwX+APe{z ls+|a-oA)ABLJ\fqbˏ -eg\P!6/clј"[IìN!)yFW֩SYDS+<ۂT8얳PgۆGbMpsW\Oȃ)v6Wl&P!ܲY~"4pkk+]J@$Ju-8x M٬+߸`/˘x6  5yDL;V)C a=XRM9«xyR]Tks )AǑemx~ m']IDF=%WKg3|#SUXDe\Lj8'2pMM+`OӘR(''bet{[^}]'SO'G[cT}dCx f)fэ:#xPbiӀ}KyZ5 8y|5J@xЭϓCגx]% YZ