V. 1.8.1 (30.05.2010)
* Fixing bug with APC
* Fixing bug with SQLite
* Fixing bug with Shutdown-Exe-File-Starter
* Made some smaller Win7 improvements
Added HTTP Server with diagnostic page for current server status along with a menu item to open web browser.
Added $(section\name) syntax in INI file.
Added configration wizard for first time setup of INI file.
Addded relay agent functionality in conjunction with the support of multiple scopes.
Fixed bugs in expired lease handling when DeleteOnRelease=0 and in error handling for service installation.
Fixed bugs related to filenames with spaces. The Apache HTTP Server Project is proud to announce the first beta release of the Apache HTTP Server ("httpd") 2.4 : 2.3.11-beta. This version of httpd is principally an Beta release to test new technology and features that are incompatible or too large for the stable 2.2.x branch. This Beta release should not be presumed to be compatible with binaries built against any prior or future version although, as a beta, the API is in a semi-frozen state.
New features include Loadable MPMs, major improvements to OSCP support, mod_lua, FastCGI Proxy, New Expression Parser, and a Small Object Caching API.Changes with Apache 2.2.18
*) Log an error for failures to read a chunk-size, and return 408 instead
413 when this is due to a read timeout. This change also fixes some cases
of two error documents being sent in the response for the same scenario.
[Eric Covener] PR49167
*) core: Only log a 408 if it is no keepalive timeout. PR 39785
[Ruediger Pluem, Mark Montague <markmont umich.edu>]
*) core: Treat timeout reading request as 408 error, not 400.
Log 408 errors in access log as was done in Apache 1.3.x.
PR 39785 [Nobutaka Mantani <nobutaka nobutaka.org>, Stefan Fritsch,
Dan Poirier]
*) Core HTTP: disable keepalive when the Client has sent
Expect: 100-continue
but we respond directly with a non-100 response. Keepalive here led
to data from clients continuing being treated as a new request.
PR 47087. [Nick Kew]
*) htpasswd: Change the default algorithm for htpasswd to MD5 on all
platforms. Crypt with its 8 character limit is not useful anymore;
improve out of disk space handling (PR 30877); print a warning if
a password is truncated by crypt. [Stefan Fritsch]
*) mod_win32: Added shebang check for '! so that .vbs scripts work as CGI.
Win32's cscript interpreter can only use a single quote as comment char.
[Guenter Knauf]
*) configure: Fix htpasswd/htdbm libcrypt link errors with some newer
linkers. [Stefan Fritsch]
*) MinGW build improvements. PR 49535. [John Vandenberg
<jayvdb gmail.com>, Jeff Trawick]
*) mod_ssl, ab: Support OpenSSL compiled without SSLv2 support.
[Stefan Fritsch]
*) core: AllowEncodedSlashes new option NoDecode to allow encoded slashes
in request URL path info but not decode them. PR 35256,
PR 46830. [Dan Poirier]
*) mod_rewrite: Allow to unset environment variables. PR 50746.
[Rainer Jung]
*) suEXEC: Add Suexec directive to disable suEXEC without renaming the
binary (Suexec Off), or force startup failure if suEXEC is required
but not supported (Suexec On). [Jeff Trawick]
*) mod_proxy: Put the worker in error state if the SSL handshake with the
backend fails. PR 50332.
[Daniel Ruggeri <DRuggeri primary.net>, Ruediger Pluem]
*) prefork: Update MPM state in children during a graceful restart.
Allow the HTTP connection handling loop to terminate early
during a graceful restart. PR 41743.
[Andrew Punch <andrew.punch 247realmedia.com>]
*) mod_ssl: Correctly read full lines in input filter when the line is
incomplete during first read. PR 50481. [Ruediger Pluem]
*) mod_autoindex: Merge IndexOptions from server to directory context when
the directory has no mod_autoindex directives. PR 47766. [Eric Covener]
*) mod_cache: Make sure that we never allow a 304 Not Modified response
that we asked for to leak to the client should the 304 response be
uncacheable. PR45341 [Graham Leggett]
*) mod_dav: Send 400 error if malformed Content-Range header is received for
a put request (RFC 2616 14.16). PR 49825. [Stefan Fritsch]
*) mod_userdir: Add merging of enable, disable, and filename arguments
to UserDir directive, leaving enable/disable of userlists unmerged.
PR 44076 [Eric Covener]
*) core: Honor 'AcceptPathInfo OFF' during internal redirects,
such as per-directory mod_rewrite substitutions. PR 50349.
[Eric Covener]
*) mod_cache: Check the request to determine whether we are allowed
to return cached content at all, and respect a "Cache-Control:
no-cache" header from a client. Previously, "no-cache" would
behave like "max-age=0". [Graham Leggett]
*) mod_mem_cache: Add a debug msg when a streaming response exceeds
MCacheMaxStreamingBuffer, since mod_cache will follow up with a scary
'memory allocation failed' debug message. PR 49604. [Eric Covener]
*) proxy_connect: Don't give up in the middle of a CONNECT tunnel
when the child process is starting to exit. PR50220. [Eric Covener]New in V2.1.2: Fixed bug in handling custom options on first offer. Fixed bug in relay agent functionality. Improved TFTP speed. V2.1.3 released 06/05/2011. New in V2.1.3: Improved the relay agent functionality to work with other DHCP servers. Added RelayAgentAdvanced setting. Changes with Apache 2.2.21
*) SECURITY: CVE-2011-3348 (cve.mitre.org)
mod_proxy_ajp: Respond with HTTP_NOT_IMPLEMENTED when the method is not
recognized. [Jean-Frederic Clere]
*) Fix a regression introduced by the CVE-2011-3192 byterange fix in 2.2.20.
PR 51748. [<lowprio20 gmail.com>]
*) mod_filter: Instead of dropping the Accept-Ranges header when a filter
registered with AP_FILTER_PROTO_NO_BYTERANGE is present,
set the header value to "none". [Eric Covener, Ruediger Pluem]
*) mod_proxy_ajp: Ignore flushing if headers have not been sent.
PR 51608 [Ruediger Pluem]
*) mod_dav_fs: Fix segfault if apr DBM driver cannot be loaded. PR 51751.
[Stefan Fritsch]
*) mod_alias: Adjust log severity of "incomplete redirection target"
message. PR 44020.
*) mod_rewrite: Check validity of each internal (int:) RewriteMap even if the
RewriteEngine is disabled in server context, avoiding a crash while
referencing the invalid int: map at runtime. PR 50994.
[Ben Noordhuis <info noordhuis nl>]
*) core: Allow MaxRanges none|unlimited|default and set 'Accept-Ranges: none'
in the case Ranges are being ignored with MaxRanges none.
[Eric Covener]
*) mod_proxy_ajp: Respect "reuse" flag in END_REPONSE packets.
[Rainer Jung]
New in V2.2.2: Fixed bug with multiple TFTP options and with DHCPDECLINE handling on duplicate address allocation.
New in V2.2.3:
Fixed bug in http server with respect to large file downloads with wget.
Removed a few unnecessary traces. Added interpretation of option 55 and 77 in the capture page of the web server,
Added MaxBlockSize to tftp-settings to limit the maximum number of bytes in one UDP packet.
Added the setting SingleInstanceApp to have only one instance of the DHCP Server when running in application mode. Changes with nginx 1.1.11 12 Dec 2011
) Feature: the “so_keepalive” parameter of the “listen” directive. Thanks to Vsevolod Stakhov.
) Feature: the “if_not_empty” parameter of the “fastcgi/scgi/uwsgi_param” directives.
) Feature: the $https variable.
) Feature: the “proxy_redirect” directive supports variables in the first parameter.
) Feature: the “proxy_redirect” directive supports regular expressions.
) Bugfix: the $sent_http_cache_control variable might contain a wrong value if the “expires” directive was used. Thanks to Yichun Zhang.
) Bugfix: the “read_ahead” directive might not work combined with “try_files” and “open_file_cache”.
) Bugfix: a segmentation fault might occur in a worker process if small time was used in the “inactive” parameter of the “proxy_cache_path” directive.
) Bugfix: responses from cache might hang.Changes with nginx 1.1.12 26 Dec 2011
*) Change: a "proxy_pass" directive without URI part now uses changed
URI after redirection with the "error_page" directive;
Thanks to Lanshun Zhou.
*) Feature: the "proxy/fastcgi/scgi/uwsgi_cache_lock",
"proxy/fastcgi/scgi/uwsgi_cache_lock_timeout" directives.
*) Feature: the "pcre_jit" directive.
*) Feature: the "if" SSI command supports captures in regular
expressions.
*) Bugfix: the "if" SSI command did not work inside the "block" command.
*) Bugfix: the "limit_conn_log_level" and "limit_req_log_level"
directives might not work.
*) Bugfix: the "limit_rate" directive did not allow to use full
throughput, even if limit value was very high.
*) Bugfix: the "sendfile_max_chunk" directive did not work, if the
"limit_rate" directive was used.
*) Bugfix: a "proxy_pass" directive without URI part always used
original request URI if variables were used.
*) Bugfix: a "proxy_pass" directive without URI part might use original
request after redirection with the "try_files" directive;
Thanks to Lanshun Zhou.
*) Bugfix: in the ngx_http_scgi_module.
*) Bugfix: in the ngx_http_mp4_module.
*) Bugfix: nginx could not be built on Solaris; the bug had appeared in
1.1.9.This release handles clients via a thread pool instead of creating them upon a new connection. Performance increase is between 1% and 10%, depending on whether the clients supports keep-alive connections or not.
Also, the URL Toolkit has been improved. It has the Header option and in several cases negative pattern matching can be done (perform action when pattern does not match). A complete and easy overview of all URL Toolkit commands can be found in the manual page and in the file config/toolkit.conf inside the source package.
Updated phpMyAdmin to 4.0.4.1 - Security update
Intranet IP addresses updated to:
127.0.0.1 192.168.0.0/16 172.16.0.0/12 10.0.0.0/8 - M Theunissen
root_www_pass_access.hta lines 145 295
root_ssl_pass_access.hta lines 145 294
Docs updated to reflect above.
Core components:
Apache 2.4.4 - Built with OpenSSl 0.9.8y
MySQL 5.5.32
PHP 5.4.16
phpMyAdmin 4.0.4.1
Go-Pear 1.1.6 - Preinstalled
msmtp 1.4.31
APC 3.1.14
eAccelerator 1.0-GIT-42067ac7e2
Zend Zend OpCache 7.0.2
OpenSSL 1.0.1c
ActivePerl via Installer
Cron - Scheduler
DtDNS - IP address updater
db_backup - Database back-upChanges in this release:
Updated PHP to 5.4.17
Core components:
Apache 2.4.4 - Built with OpenSSl 0.9.8y
MySQL 5.5.32
PHP 5.4.17
phpMyAdmin 4.0.4.1
Go-Pear 1.1.6 - Preinstalled
msmtp 1.4.31
APC 3.1.14
eAccelerator 1.0-GIT-42067ac7e2
Zend Zend OpCache 7.0.2
OpenSSL 1.0.1c
ActivePerl via Installer
Cron - Scheduler
DtDNS - IP address updater
db_backup - Database back-upmod_fastcgi: fix mix up of “mode” => “authorizer” in other fastcgi configs (fixes #2465, thx peex)
fix handling of If-Modified-Since if If-None-Match is present (don’t return 412 for date parsing errors);
follow current draft for HTTP/1.1, which tells us to ignore If-Modified-Since if we have matching etags.
[mod_fastcgi,log] support multi line logging (fixes #2252)
call ERR_clear_error only for ssl connections in CON_STATE_ERROR
reject non ASCII characters in HTTP header names
[mod_auth] use crypt() on encrypted password instead of extracting salt first (fixes #2483)
[mod_auth] add htpasswd -s (SHA1) support if openssl is used (needs openssl for SHA1). This doesn’t use any salt, md5 with salt is probably better.
[mod_auth] fix base64_decode (#2484)
fix some bugs found with canalyze (fixes #2484, thx Zhenbo Xu)
fix undefined stuff found with clang
[cmake] Use TARGET_LINK_LIBRARIES instead of LINK_FLAGS for library dependencies, also add Wl,-as-needed to extra warnings (fixes #2448)
[mod_auth] fix invalid read in digest qop=auth-int handling (fixes #2478)
[auto* build] simplify autogen.sh, handle automake 1.13 test running (fixes #2490)
[mod_userdir] add userdir.active option, “enabled” by default
[core] return 501 Not Implemented in static file mode for all methods except GET/POST/HEAD/OPTIONS
[core] recognize more http methods to forward to backends (fixes #2346)
[ssl] use DH only if openssl supports it (fixes #2479)
[network] use constants available at compile time for maximum number of chunks for writev instead of calling sysconf (fixes #2470)
[ssl] Fix $HTTP[“scheme”] conditional, could be “http” for ssl connections if the ssl $SERVER[“socket”] conditional was nested (fixes #2501)
[ssl] accept ssl renegotiations if they are not disabled (fixes #2491)
[ssl] add option ssl.empty-fragments, defaulting to disabled (fixes #2492)
[auth] put REMOTE_USER into cgi environment, making it accessible to lua via lighty.req_env (fixes #2495)
[auth] new method “extern” to use already present REMOTE_USER (from magnet, ssl, …) (fixes #2436)
[core] remove requirement that default doc-root has to exist, there are reasonable scenarios not requiring static files at all
[core] check whether server.chroot exists
[mod_simple_vhost] fix cache; skip module if simple-vhost.server-root is empty (thx rm for reporting)
[mod_accesslog] add accesslog.syslog-level option (fixes #2480)
[core] allow files to be used as document-root (fixes #2475)
[core] set signal handlers before forking child processes in modules/plugins_call_set_defaults (fixes #2502)The following lists Uniform Server 11 features and available modules.
Main Features:
Easy update: Download latest module and replace old version.
PHP switching: - Switch between PHP series PHP 5.3, PHP 5.4 and PHP 5.5
MySQL options: - Install either MySQL 5.5 or 5.6 series or MariaDB alternative.
MariaDB options: - Alternative to MySQL MariaDB install 5.5 or 10.0 series.
MySQL admin options: Install and/or Adminer and/or phpMyAdmin.
MySQL backup option: Install phpMyBackupPro or Sypex Dumper.
Minimalist dynamic server: Apache + mod_lua or Apache + mod_plua.
Perl options: Install Strawberry Perl, full or mini versions.
Other features:
Full documentation.
Windows host file editor.
Default, PAC file used for resolving domains.
Configurable clean-up – Remove unwanted files e.g. Server log files.
DtDNS – Automatic updater, updates domains on DtDNS server.
PC Start-up enable/disable running of servers.
Cron - Configurable timer to run applications or scripts.
Pale Moon portable browser - Pre-configured for PAC file use, allows full portability.
Uniform Server 11.0.0-ZeroXI release contains following modules:
ZeroXI_controller_1_0_0.exe
ZeroXI_documentation_1_0_0.exe
ZeroXI_apache_2_4_6.exe
ZeroXI_mysql_5_5_34.exe
ZeroXI_php_5_4_20.exe
ZeroXI_phpmyadmin_4_0_8.exe
Available modules (Plugins):
ZeroXI_adminer_3_7_1.exe
ZeroXI_apache_2_4_6.exe
ZeroXI_controller_1_0_0.exe – Required for all configurations
ZeroXI_documentation_1_0_0.exe
ZeroXI_lua_1_0_0.exe
ZeroXI_mariadb_10_0_4.exe
ZeroXI_mariadb_5_5_33_a.exe
ZeroXI_mysql_5_5_34.exe
ZeroXI_mysql_5_6_14.exe
ZeroXI_palemoon_24_0_2.exe - Optimized Firefox-based browser
ZeroXI_pear_1_0_0.exe
ZeroXI_phpmyadmin_4_0_8.exe
ZeroXI_phpmybackuppro_2_3.exe
ZeroXI_php_5_3_27.exe
ZeroXI_php_5_4_20.exe
ZeroXI_php_5_5_4.exe
ZeroXI_strawberry_perl_5_18_1_1.exe
ZeroXI_strawberry_perl_mini_5_18_1_1.exe
ZeroXI_sypex_dumper_2_0_10.exeChanges from 1.4.33
[mod_auth] explicitly link ssl for SHA1 (fixes #2517)
[mod_extforward] fix compilation without IPv6, (not) using undefined var (fixes #2515, thx mm)
[ssl] fix SNI handling; only use key+cert from SNI specific config (fixes #2525, CVE-2013-4508)
[doc] update ssl.cipher-list recommendation
[stat-cache] FAM: fix use after free (CVE-2013-4560)
[stat-cache] fix FAM cleanup/fdevent handling
[core] check success of setuid,setgid,setgroups (CVE-2013-4559)
[ssl] fix regression from CVE-2013-4508 (client-cert sessions were broken)
maintain physical.basedir (the “acting” doc-root as prefix of physical.path) in more places
[core] decode URL before rewrite, enabling it to work in $HTTP[“url”] conditionals (fixes #2526)
[auto* build] remove -no-undefined from linker flags, as we actually link modules with undefined symbols (fixes #2533)
[mod_mysql_vhost] fix memory leak on config init (#2530)
[mod_webdav] fix fd leak found with parfait (fixes #2530, thx kukackajiri)[NEW] extreme speed up of VFS loading
[NEW] Menu > updates > revert to previous version
[NEW] loading of "default.tpl" in the exe's folder
[NEW] improved accessibility
[NEW] alternative method to get archive: ?mode=archive instead of ~folder.tar (will be deprecated in the future)
[NEW] "lan" symbol for address masks
[NEW] command line parameter -c to set configuration directly on the command line
[NEW] bans: sort button
[NEW] "view http header" will now show even incomplete http headers
[NEW] the TAR format is more standard compliant (is it?)
[NEW] faster self-test
[NEW] Log menu -> Log what -> Deletions
[NEW] address masks support form 1.2.3.4/5
[NEW] new tabbed format for the regular log [related forum topic]
[NEW] improved Windows links support (*.lnk)
[NEW] %build-time% in other pages
[NEW] now you can archive even search results
[NEW] URL parameter "nofolders" for folder archives
[NEW] selective folder archive
[NEW] new template section [special:alias] [related forum topic]
[NEW] by specifying [+section] instead of [section], the new text will not overwrite a previously existing [section] but will be appended
[NEW] Account notes (and related %user-notes%)
[NEW] File Menu -> "Properties..."
[NEW] Log menu -> "Max lines on screen..."
[NEW] added F7 shortcut for accounts
[NEW] a way to give access/upload to any account
[NEW] Folder menu -> "Delete permissions"
[NEW] Options -> MIME types -> "Open directly in browser when MIME type is defined"
[NEW] Options -> Accounts -> new "upload" box preview
[NEW] Options -> Tray message -> new preview box
[NEW] adding an "upload" folder suggest proper settings
[NEW] easier way to restore options after "temporarily reset options"
[NEW] apache log format improved (more symbols, conditions, parameters)
[NEW] template installation through drag&drop
[NEW] "addresses ever connected" moved to external file hfs.ips.txt, and hopefully fixed performance problems with many addresses [related forum topic]
[NEW] per-folder default sorting [related forum topic]
[NEW] Menu -> Other options -> "Prevent system standby on network activity" [related forum topic]
[NEW] Menu -> Limits -> Speed limit for single address
[NEW] customize the default template by putting a [style.user] section in the diff template of the root
[NEW] %folder-item-comment% has the same value of %item-comment% in [folder-comment]
[NEW] searching ABC* will force the name to begin by ABC, while *ABC force it to be at the end
[NEW] automatic comment for the uploaded file
[NEW] search results have links to their folder [related forum topic]
[NEW] reverse sorting by clicking twice
[NEW] Menu -> URL encoding -> "URLs starting with https instead of http" [related forum topic]
[NEW] Menu -> Other options -> "Dump traffic"
[NEW] "dynamic dns updater" automatically disables "find external address on startup" because they are incompatible.
[NEW] show header(x-forwarded-for) instead of IP, but only if IP in a customizable ip-mask (127.0.0.1 by default) [related forum topic]
[NEW] (expert mode) Menu -> Limits -> "Stop spiders" [related forum topic]
[NEW] proportional files/log size [related forum topic]
[NEW] log toolbar
[NEW] upload filter will by default reject index.htm* and default.htm* files for improved security
[NEW] nicer icon for the self test
[CHG] "@" allowed in user name
[CHG] double slash in URL ignored (Apache behaviour)
[FIX] many bugfixesver 2.2f
Bug and security fixes