Thema: Mini/Test/DHCP/Webserver und Tools diverses

[SiLæncer]

Changelog

    *) Change: minimum supported zlib version is 1.2.0.4.
       Thanks to Ilya Leoshkevich.

    *) Change: the $r->internal_redirect() embedded perl method now expects
       escaped URIs.

    *) Feature: it is now possible to switch to a named location using the
       $r->internal_redirect() embedded perl method.

    *) Bugfix: in error handling in embedded perl.

    *) Bugfix: a segmentation fault might occur on start or during
       reconfiguration if hash bucket size larger than 64 kilobytes was used
       in the configuration.

    *) Bugfix: nginx might hog CPU during unbuffered proxying and when
       proxying WebSocket connections if the select, poll, or /dev/poll
       methods were used.

    *) Bugfix: in the ngx_http_xslt_filter_module.

    *) Bugfix: in the ngx_http_ssi_filter_module.

[close]

http://nginx.org/

[SiLæncer]

The Uniform Server is a WAMP package that allows you to run a server on any MS Windows OS based computer. It is small and mobile to download or move around and can also be used or setup as a production/live server. Developers also use The Uniform Server to test their applications made with either PHP, MySQL, Perl, or the Apache HTTPd Server.

License: BSD License

Changelog

 13.4.0   - Updated ZeroXIII_php_7_0_12_j.exe to ZeroXIII_php_7_0_33.exe
     - Updated ZeroXIII_php_7_1_1_j.exe to ZeroXIII_php_7_1_31.exe
     - Added ZeroXIII_php_7_2_21.exe
     - Added ZeroXIII_php_7_3_8.exe
     - Added ZeroXIII_php_7_4_0-dev.exe
          - Updated ZeroXIII_phpmyadmin_4_6_5.2.exe to ZeroXIII_phpmyadmin_4_9_0.exe

 13.3.2   - Updated ZeroXIII_php_7_1_0_j.exe to ZeroXIII_php_7_1_1_j.exe
          - Updated ZeroXIII_phpmyadmin_4_6_5.2.exe to ZeroXIII_phpmyadmin_4_6_6.exe

 13.3.1   - Updated ZeroXIII_apache_2_4_23_j.exe to ZeroXIII_apache_2_4_25_j.exe

 13.3.0   - Updated ZeroXIII_php_7_0_12j.exe to ZeroXIII_php_7_1_0_j.exe
          - Updated ZeroXIII_phpmyadmin_4_6_4.exe to ZeroXIII_phpmyadmin_4_6_5.2.exe
          - Updated ZeroXIII_mysql_5_6_34.exe to ZeroXIII_mysql_5_6_35.exe

 13.2.1   - Updated ZeroXIII_php_7_0_11j.exe to ZeroXIII_php_7_0_12_j.exe
          - Updated ZeroXIII_mysql_5_6_33.exe to ZeroXIII_mysql_5_6_34.exe

[close]

http://www.uniformserver.com/

[SiLæncer]

Changelog

Changes with Apache 2.4.41

  *) mod_proxy_balancer: Improve balancer-manager protection against
     XSS/XSRF attacks from trusted users.  [Joe Orton,
     Niels Heinen <heinenn google.com>]

  *) mod_session: Introduce SessionExpiryUpdateInterval which allows to
     configure the session/cookie expiry's update interval. PR 57300.
     [Paul Spangler <paul.spangler ni.com>]

  *) modules/filters: Fix broken compilation when using old GCC (<4.2.x).
     PR 63633.  [Rainer Jung, Joe Orton]

  *) mod_ssl: Fix startup failure in 2.4.40 with SSLCertificateChainFile
     configured for a domain managed by mod_md.  [Stefan Eissing]

[close]

http://httpd.apache.org/

[SiLæncer]

Changelog

    Security: when using HTTP/2 a client might cause excessive memory consumption and CPU usage (CVE-2019-9511, CVE-2019-9513, CVE-2019-9516).
    Bugfix: "zero size buf" alerts might appear in logs when using gzipping; the bug had appeared in 1.17.2.
    Bugfix: a segmentation fault might occur in a worker process if the "resolver" directive was used in SMTP proxy.

[close]

http://nginx.org/

[SiLæncer]

Whats new:>>

- Updated ZeroXIII_php_7_2_21_c.exe to ZeroXIII_php_7_2_22_c.exe
- Updated ZeroXIII_php_7_3_8_c.exe to ZeroXIII_php_7_3_9_c.exe
- Updated OpenSSL to 1.1.1c

https://www.uniformserver.com/

[SiLæncer]

WebPageStat analysiert Webserver-Protokolle und zeigt die Zugriffe als HTML-Seite an.

Der HTML-Report zeigt unter anderem die Zugriffe auf Dateien (Seiten, Bilder und sonstige Dateien), Zugriffe von Betriebssystemen, Mobilgeräten, Webbrowsern und diverse Robots, z.B. von Suchmaschinen an.

Es werden auch sicherheitsrelevante Zugriffe bzw. Zugriffsversuche (Angriffsversuche) ausgegeben.

WebPageStat unterstützt Text- und mit GNU-Zip komprimierte Webserver-Protokolle z.B. von Apache oder IIS. Dank des anpassbaren Formats können auch anders formatierte Protokolle verwendet werden.

Die zu sammelnden Informationen können mit XML-Dateien individuell angepasst werden. Die Ausgabe der gesammelten Informationen erfolgt auf Grund einer Vorlagen, wodurch unterschiedliche Ausgabeformate möglich sind.

Freeware

https://www.gaijin.at/de/software/webpagestat

[SiLæncer]

Whats new:>>

    Removed several build options. Functionalities are now always enabled.
    mbed TLS updated to 2.16.3.
    Updated Let's Encrypt script due to changes in the API.
    Bugfix: AlterMode not working correctly.

http://www.hiawatha-webserver.org/

[SiLæncer]

Changelog

    Change: better detection of incorrect client behavior in HTTP/2.
    Change: in handling of not fully read client request body when returning errors in HTTP/2.
    Bugfix: the "worker_shutdown_timeout" directive might not work when using HTTP/2.
    Bugfix: a segmentation fault might occur in a worker process when using HTTP/2 and the "proxy_request_buffering" directive.
    Bugfix: the ECONNABORTED error log level was "crit" instead of "error" on Windows when using SSL.
    Bugfix: nginx ignored extra data when using chunked transfer encoding.
    Bugfix: nginx always returned the 500 error if the "return" directive as used and an error occurred during reading client request body.
    Bugfix: in memory allocation error handling.

[close]

http://nginx.org/

[SiLæncer]

Changelog

14.0.0 - First Release. ZeroXIVmodules modules inclued: - ZeroXIV_controller_2_3_0.exe - ZeroXIV_documentation_1_0_0.exe - ZeroXIV_apache_2_4_39_j.exe - ZeroXIV_mysql_8_0_17.exe - ZeroXIV_php_7_3_9_j.exe - ZeroXIV_phpmyadmin_4_9_0_1.exe

[close]

http://www.uniformserver.com/

[SiLæncer]

Changelog

    Feature: now nginx uses ioctl(FIONREAD), if available, to avoid reading from a fast connection for a long time.
    Bugfix: incomplete escaped characters at the end of the request URI were ignored.
    Bugfix: "/." and "/.." at the end of the request URI were not normalized.
    Bugfix: in the "merge_slashes" directive.
    Bugfix: in the "ignore_invalid_headers" directive.
    Bugfix: nginx could not be built with MinGW-w64 gcc 8.1 or newer.

[close]

http://nginx.org/

[SiLæncer]

ApHeMo (Apache Health Monitoring) is a Health Monitoring analyzer for Apache HTTP Server. ApHeMo makes administrators able to improve security, reliability and to easily detect attacks from hackers (scans, potential backdoors).

Freemium

Whats new:>>

[Bug] Typo : “Additionnal Info” (Kyle_Katarn)
[Bug] Update ICS library to 8.62 and OpenSSL to 1.1.1c (Kyle_Katarn)
[Bug] incomplete version info (Kyle_Katarn)

https://www.kcsoftwares.com/?aphemo

[SiLæncer]

Changelog

    Notable Changes

    cli:

    Added a new flag (--trace-uncaught) that makes Node.js print the stack trace at the time of throwing uncaught exceptions, rather than at the creation of the Error object, if there is any. This is disabled by default because it affects GC behavior (Anna Henningsen) #30025.

    crypto:

    Added Hash.prototype.copy() method. It returns a new Hash object with its internal state cloned from the original one (Ben Noordhuis) #29910.

    dgram:

    Added source-specific multicast support. This adds methods to Datagram sockets to support RFC 4607 for IPv4 and IPv6 (Lucas Pardue) #15735.

    fs:

    Added a bufferSize option to fs.opendir(). It allows to control the number of entries that are buffered internally when reading from the directory (Anna Henningsen) #30114.

    meta:

    Added Chengzhong Wu to collaborators #30115.

    Commits:

    [445837851b] - async_hooks: only emit after for AsyncResource if stack not empty (Anna Henningsen) #30087
    [8860bd68b6] - buffer: improve performance caused by primordials (Jizu Sun) #30235
    [1bded9841c] - build: fix detection of Visual Studio 2017 (Richard Lau) #30119
    [49e7f042f9] - build: add workaround for WSL (gengjiawen) #30221
    [03827ddf38] - build: allow Python 3.8 (Michaël Zasso) #30194
    [54698113c0] - build: find Python syntax errors in dependencies (Christian Clauss) #30143
    [b255688d5f] - build: fix pkg-config search for libnghttp2 (Ben Noordhuis) #30145
    [8980d8c25f] - build: vcbuild uses default Python, not Py2 (João Reis) #30091
    [cedad02406] - build: prefer python 3 over 2 for configure (Sam Roberts) #30091
    [5ba842b8f9] - build: python3 support for configure (Rod Vagg) #30047
    [d05f67caef] - cli: whitelist new V8 flag in NODE_OPTIONS (Shelley Vohr) #30094
    [5ca58646c1] - (SEMVER-MINOR) cli: add --trace-uncaught flag (Anna Henningsen) #30025
    [8b75aabee9] - crypto: guard with OPENSSL_NO_GOST (Shelley Vohr) #30050
    [1d03df4c5e] - (SEMVER-MINOR) crypto: add Hash.prototype.copy() method (Ben Noordhuis) #29910
    [46c9194ec8] - deps: V8: cherry-pick a7dffcd767be (Christian Clauss) #30218
    [104bfb9a38] - deps: V8: cherry-pick e5dbc95 (Gabriel Schulhof) #30130
    [e3124481c2] - deps: update npm to 6.12.1 (Michael Perrotte) #30164
    [f3d00c594d] - deps: V8: backport 777fa98 (Michaël Zasso) #30062
    [1cfa98c23e] - deps: V8: cherry-pick c721203 (Michaël Zasso) #30065
    [0d9ae1b8f6] - deps: V8: cherry-pick ed40ab1 (Michaël Zasso) #30064
    [a63f7e73c4] - (SEMVER-MINOR) dgram: add source-specific multicast support (Lucas Pardue) #15735
    [fc407bb555] - doc: add missing hash for header link (Nick Schonning) #30188
    [201a60e6ba] - doc: linkify .setupMaster() in cluster doc (Trivikram Kamat) #30204
    [b7070f315f] - doc: explain http2 aborted event callback (dev-313) #30179
    [f8fb2c06c5] - doc: linkify .fork() in cluster documentation (Anna Henningsen) #30163
    [ae81360214] - doc: update AUTHORS list (Michaël Zasso) #30142
    [1499a72a1f] - doc: improve doc Http2Session:Timeout (dev-313) #30161
    [3709b5cc7e] - doc: move inactive Collaborators to emeriti (Rich Trott) #30177
    [a48d17900b] - doc: add options description for send APIs (dev-313) #29868
    [dfb4a24695] - doc: fix an error in resolution algorithm steps (Alex Zherdev) #29940
    [403a648a16] - doc: fix numbering in require algorithm (Jan Krems) #30117
    [e4ab6fced1] - doc: remove incorrect and outdated example (Tobias Nießen) #30138
    [3c23224a76] - doc: adjust code sample for stream.finished (Cotton Hou) #29983
    [d91d270416] - doc: claim NODE_MODULE_VERSION=80 for Electron 9 (Samuel Attard) #30052
    [621eaf9ed5] - doc: remove "it is important to" phrasing (Rich Trott) #30108
    [9a71091098] - doc: revise os.md (Rich Trott) #30102
    [381c6cd0d2] - doc: delete "a number of" things in the docs (Rich Trott) #30103
    [45c70a9793] - doc: remove dashes (Rich Trott) #30101
    [ea9d125536] - doc: add legendecas to collaborators (legendecas) #30115
    [39070bbed0] - doc: make YAML matter consistent in crypto.md (Rich Trott) #30016
    [978946e38b] - doc,meta: prefer aliases and stubs over Runtime Deprecations (Rich Trott) #30153
    [32a538901f] - doc,n-api: sort bottom-of-the-page references (Gabriel Schulhof) #30124
    [07b5584a3f] - (SEMVER-MINOR) fs: add bufferSize option to fs.opendir() (Anna Henningsen) #30114
    [2505f678ef] - http: support readable hwm in IncomingMessage (Colin Ihrig) #30135
    [f01c5c51b0] - inspector: turn platform tasks that outlive Agent into no-ops (Anna Henningsen) #30031
    [050efebf24] - meta: use contact_links instead of issue templates (Michaël Zasso) #30172
    [edfbee3727] - module: resolve self-references (Jan Krems) #29327
    [93b1bb8cb5] - n-api,doc: add info about building n-api addons (Jim Schlight) #30032
    [cc1cd2b3c5] - src: isolate->Dispose() order consistency (Shelley Vohr) #30181
    [a0df91cce1] - (SEMVER-MINOR) src: expose granular SetIsolateUpForNode (Shelley Vohr) #30150
    [ec7b69ff05] - src: change env.h includes for forward declarations (Alexandre Ferrando) #30133
    [98c8f76dd1] - src: split up InitializeContext (Shelley Vohr) #30067
    [d78e3176dd] - src: fix crash with SyntheticModule#setExport (Michaël Zasso) #30062
    [fd0aded233] - src: allow inspector without v8 platform (Shelley Vohr) #30049
    [87f14e13b3] - stream: extract Readable.from in its own file (Matteo Collina) #30140
    [1d9f4278dd] - test: use arrow functions for callbacks (Minuk Park) #30069
    [a03809d7dd] - test: verify npm compatibility with releases (Michaël Zasso) #30082
    [68e4b5a1fc] - tools: fix Python 3 deprecation warning in test.py (Loris Zinsou) #30208
    [348ec693ac] - tools: fix Python 3 syntax error in mac_tool.py (Christian Clauss) #30146
    [e2fb353df3] - tools: use print() function in buildbot_run.py (Christian Clauss) #30148
    [bcbcce5983] - tools: undefined name opts -> args in gyptest.py (Christian Clauss) #30144
    [14981f5bba] - tools: git rm -r tools/v8_gypfiles/broken (Christian Clauss) #30149
    [d549a34597] - tools: update ESLint to 6.6.0 (Colin Ihrig) #30123
    [a3757546e8] - tools: doc: improve async workflow of generate.js (Theotime Poisseau) #30106

[close]

https://www.joyent.com/

[SiLæncer]

Changelog

    Add Jenkins continuous integration. Fixes #2620. Used to build http://packages.networkradius.com/
    Added Force10 dictionary.
    Update dictionary.hp with new attributes. #2690
    Update dictionary.aruba with new attributes. #2696
    Update logrotate settings to rotate as non-root user. #2666
    Fix side-channel leak in EAP-PWD. Patch from Mathy Vanhoef.
    Relax OpenSSL version checks, now that their API is both public, and stable.
    Note that tls_min_version/tls_max_version also support "1.3". Since there is no standard yet for EAP with TLS 1.3, it will not work.
    Added tripplite dictionary from #2760.
    Switch to the async interface for rlm_sql_postgresql so that we can enforce query_timeout.
    Added new LDAP option 'allow_dangling_group_ref'.
    Updated documentation and functionality for EAP session caching. See "cache" section of mods-available/eap.
    Tighten systemd unit file security. Fixes #2637.
    Disable TLS 1.0 and TLS 1.1 support in the default configuration. We STRONGLY recommend doing this for all installations.
    Add expansions for outgoing Radsec connections. "%{proxy_listen:TLS-...}" for TLS-Client-Cert-* and TLS-Cert-* attributes. Fixes #2839.
    Add %{listen:tls} which returns "yes" or "no" for TLS or non-TLS connections.
    Update dictionary.lancom with new attributes. #2847
    Added rlm_sql_mongo. See raddb/mods-available/sql. Note that this module is experimental.
    Added more documentation in sites-available/robust-proxy-accounting
    sqlippool now re-allocates unexpired leases, to prevent IP pool exhaustion when clients perform multiple reauthentication attempts. Patch from Terry Burton.
    Add support to radmin keep the history in ~/.radmin_history
    Add support for ENV and LD_PRELOAD in radiusd.conf. See the new ENV sub-section of radiusd.conf.
    Update dictionary.aptilo. #3002
    Update dictionary.airespace. #3039
    Add sites-available/coa-relay, which makes CoA easier. Patch from Terry Burton. #3045.
    Add example stored procedure for IP Pools in MySQL. See mods-config/sql/ippool/mysql/procedure.sql Patch from Terry Burton. #3048.
    Update dictionary.dhcp dictionary with the recent hardware types.
    Add experimental rlm_python3. This should largely work the same as rlm_python, which was Python2 only.
    Add Dockerfiles for Debian10 and CentOS8.
    Add RPM spec file compatibility for RHEL/CentOS 8.
    Notes on iOS 13 certificate issues. See https://support.apple.com/en-us/HT210176.
    Notes on certificate constraints. See raddb/certs/server.cnf.
    Add NAIRealm example to raddb/certs/server.cnf, for RFC 7585.

Bug fixes

    Allow listen.ipaddr to reference an IPv6-only host. Fixes #2627.
    ERX-Acct-Request-Reason is "integer". Closes #2635.
    Fix a slow memory leak in the file management code.
    Try to fix file permissions if they get modified while the server is running.
    Fix slow memory leak with clients.
    Fix request and connection timeouts in rlm_rest.
    Fix systemd issues. Patches from Daniele Rondina.
    Fixes from clang analyzer.
    Fix missing include for the dictionaries: alcatel.esam, altiga,alvarion.wimax.v2_2,aptis,asn,audiocodes,avaya,bristol, columbia_university,freedhcp,garderos,infoblox,motorola.illegal, starent.vsa1, telkom, wimax.wichorus.
    Fix internal sanity check when running with "-Xx"
    Allow "inner-tunnel" virtual servers to work better with "accept" and "reject" policies.
    Fix dictionary.huawei data types for Huawei-DNS-Server-IPv6-address and Huawei-Framed-IPv6-Address. Fixes #2803
    Framed-Interface-ID in postgresql/queries.conf is string, not inet Fixes #2817.
    Fix rlm_cache to complain on unknown attributes in the "update" section of its configuration.
    Add configure checks for -latomic. This helps on armel, mips and mipsel. Fixes #2828.
    Add support to Oracle 19 and 18. Via #2857
    Add support for decoding tags in rlm_rest. Fixes #2848.
    Use correct passwords when updating CRLs in raddb/certs/
    Properly separate "originate-coa" packets when accounting packets are read from the detail file reader.
    Use the correct virtual server for pre/post-proxy.
    radsqlrelay fixes backported from "master" branch. Patches from Terry Burton.
    Fix DoS issues due to multithreaded BN_CTX access. Patch from Mathy Vanhoef. CVE-2019-17185

[close]

http://freeradius.org/

[SiLæncer]

Changelog

    Feature: the $proxy_protocol_server_addr and $proxy_protocol_server_port variables.
    Feature: the "limit_conn_dry_run" directive.
    Feature: the $limit_req_status and $limit_conn_status variables.

[close]

http://nginx.org/

[SiLæncer]

TheSSS has been designed for system admins who need a lightweight (TheSSS LiveCD is less than 30MB in size) set of server software for small Local Area Networks. The supported servers are: FTP, HTTP, SFTP, SSH, and Telnet. A proxy server (Polipo) with Tor anonymizer is also included. The main security components are 4MLinux Firewall (based on iptables) and Clam AntiVirus. TheSSS iso images are fully compatible with UNetbootin, which can be used to create an easy-to-use TheSSS Live USB.

License: GPL v3

Whats new:>>

This is a major release based on the 4MLinux Server 31.0, meaning that the components of the LAMP server are now: Linux 4.19.86, Apache 2.4.41, MariaDB 10.4.10, and PHP (both 5.6.40 and 7.3.12).

https://sourceforge.net/projects/thesss/