mod_ldap-2.4.6-89.el7.centos.1$>(tq&_3^q!>2l?ld  ! X 6OU\h n t  C HTcrD(89t:&GkHkIk(Xk,Yk4\k`]kl^kbkdldelifllllnlCmod_ldap2.4.689.el7.centos.1LDAP authentication modules for the Apache HTTP ServerThe mod_ldap and mod_authnz_ldap modules add support for LDAP authentication to the Apache HTTP Server.]?+x86-02.bsys.centos.org=CentOSASL 2.0CentOS BuildSystem System Environment/Daemonshttp://httpd.apache.org/linuxx86_64x.8]? ]?*]?*cbbbdd396fe056e8ab167abd7b2cb5145b42210bfea38452968ff02a03493fc8cea9d402787a59173e77938cbf68bc915c78d903b5ad1e37447b2a6440de36be2eeca5ee12d6e05615f043c1fe123f6bc1866354aa9115bbe31854d5107596b3rootrootrootrootrootroothttpd-2.4.6-89.el7.centos.1.src.rpmmod_ldapmod_ldap(x86-64)   @@@@@@@@ httpdhttpd-mmnapr-util-ldaprpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(CompressedFileNames)libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)libpthread.so.0()(64bit)rtld(GNU_HASH)rpmlib(PayloadIsXz)0:2.4.6-89.el7.centos.120120211x86644.6.0-14.0-13.0.4-15.2-14.11.3]>] \[+@[+@[+@[*A['[d@[d@ZZS]@Y@YeY@YY@YY@YdYp@Y{Y{Y*@YYw2Y@Y@Y@XXg@X,X,X@XƉX•@XCX@X@XXXXO@XO@XO@XO@XXWWW{@Wc@V͛@U@Uݪ@UoUȒ@UU@Un@UY@U.RT}Tto@TXTG@T2@T @TTS@SS@S@SuSǺS*@SSRUR@RRΏ@R@RkR1@RsRrF@Ri RM\@RC@Q@QQޞ@QQo@Q@QQ@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@CentOS Sources - 2.4.6-89.el7.centos.1Lubos Uhliarik - 2.4.6-89.1Joe Orton - 2.4.6-89Luboš Uhliarik - 2.4.6-88Luboš Uhliarik - 2.4.6-87Luboš Uhliarik - 2.4.6-86Luboš Uhliarik - 2.4.6-85Luboš Uhliarik - 2.4.6-84Luboš Uhliarik - 2.4.6-83Luboš Uhliarik - 2.4.6-82Joe Orton - 2.4.6-81Luboš Uhliarik - 2.4.6-80Luboš Uhliarik - 2.4.6-79Luboš Uhliarik - 2.4.6-78Luboš Uhliarik - 2.4.6-77Luboš Uhliarik - 2.4.6-76Luboš Uhliarik - 2.4.6-75Luboš Uhliarik - 2.4.6-74Luboš Uhliarik - 2.4.6-73Luboš Uhliarik - 2.4.6-72Luboš Uhliarik - 2.4.6-71Luboš Uhliarik - 2.4.6-70Luboš Uhliarik - 2.4.6-69Luboš Uhliarik - 2.4.6-68Luboš Uhliarik - 2.4.6-67Luboš Uhliarik - 2.4.6-66Luboš Uhliarik - 2.4.6-65Luboš Uhliarik - 2.4.6-64Luboš Uhliarik - 2.4.6-63Luboš Uhliarik - 2.4.6-62Luboš Uhliarik - 2.4.6-61Luboš Uhliarik - 2.4.6-60Luboš Uhliarik - 2.4.6-59Luboš Uhliarik - 2.4.6-58Luboš Uhliarik - 2.4.6-57Luboš Uhliarik - 2.4.6-56Luboš Uhliarik - 2.4.6-55Luboš Uhliarik - 2.4.6-54Luboš Uhliarik - 2.4.6-53Luboš Uhliarik - 2.4.6-52Luboš Uhliarik - 2.4.6-51Luboš Uhliarik - 2.4.6-50Luboš Uhliarik - 2.4.6-49Luboš Uhliarik - 2.4.6-48Joe Orton - 2.4.6-47Luboš Uhliarik - 2.4.6-46Luboš Uhliarik - 2.4.6-45Joe Orton - 2.4.6-44Joe Orton - 2.4.6-43Joe Orton - 2.4.6-42Jan Kaluza - 2.4.6-41Jan Kaluza - 2.4.6-40Jan Kaluza - 2.4.6-39Jan Kaluza - 2.4.6-38Jan Kaluza - 2.4.6-37Jan Kaluza - 2.4.6-36Jan Kaluza - 2.4.6-35Jan Kaluza - 2.4.6-34Jan Kaluza - 2.4.6-33Jan Kaluza - 2.4.6-32Jan Kaluza - 2.4.6-31Jan Kaluza - 2.4.6-30Jan Kaluza - 2.4.6-29Jan Kaluza - 2.4.6-28Jan Kaluza - 2.4.6-27Jan Kaluza - 2.4.6-26Jan Kaluza - 2.4.6-25Jan Kaluza - 2.4.6-24Jan Kaluza - 2.4.6-23Jan Kaluza - 2.4.6-22Jan Kaluza - 2.4.6-21Jan Kaluza - 2.4.6-20Jan Kaluza - 2.4.6-19Jan Kaluza - 2.4.6-18Jan Kaluza - 2.4.6-17Joe Orton - 2.4.6-16Joe Orton - 2.4.6-15Daniel Mach - 2.4.6-14Joe Orton - 2.4.6-13Joe Orton - 2.4.6-12Joe Orton - 2.4.6-11Joe Orton - 2.4.6-10Daniel Mach - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Jan Kaluza - 2.4.6-6Jan Kaluza - 2.4.6-5Jan Kaluza - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9.1Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3.2Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Remove index.html, add centos-noindex.tar.gz - change vstring - change symlink for poweredby.png - update welcome.conf with proper aliases- Resolves: #1719722 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in mod_auth_digest- fix per-request leak of bucket brigade structure (#1583218)- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple SIGUSR1- Resolves: #1458364 - RMM list corruption in ldap module results in server hang- Resolves: #1493181 - RFE: mod_ssl: allow sending multiple CA names which differ only in case- Resolves: #1556761 - mod_proxy_wstunned config needs the default port number- Resolves: #1548501 - Make OCSP more configurable (like CRL)- Resolves: #1523536 - Backport Apache BZ#59230 mod_proxy_express uses db after close- Resolves: #1533793 - Use Variable with mod_authnz_ldap- don't terminate connections during graceful stop/restart (#1557785)- Related: #1288395 - httpd segfault when logrotate invoked- Resolves: #1274890 - mod_ssl config: tighten defaults- Resolves: #1506392 - Backport: SSLSessionTickets directive support- Resolves: #1440590 - Need an option to disable UTF8-conversion of certificate DN- Resolves: #1464406 - Apache consumes too much memory for CGI output- Resolves: #1448892 - Cannot override LD_LIBARY_PATH in Apache HTTPD using SetEnv or PassEnv. Needs documentation.- Resolves: #1430640 - "ProxyAddHeaders Off" does not become effective when it's defined outside setting- Resolves: #1499253 - ProxyRemote with HTTPS backend sends requests with absoluteURI instead of abs_path- Resolves: #1288395 - httpd segfault when logrotate invoked- Resolves: #1368491 - mod_authz_dbd segfaults when AuthzDBDQuery missing- Resolves: #1467402 - rotatelogs: creation of zombie processes when -p is used- Resolves: #1493065 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw() authentication bypass - Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference - Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread - Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread - Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection in mod_auth_digest- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1445885 - define _RH_HAS_HTTPPROTOCOLOPTIONS- Resolves: #1442872 - apache user is not created during httpd installation when apache group already exist with GID other than 48- Related: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- Resolves: #1397241 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Related: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1378946 - Backport of apache bug 55910: Continuation lines are broken during buffer resize- Resolves: #1364604 - Upstream Bug 56925 - ErrorDocument directive misbehaves with mod_proxy_http and mod_proxy_ajp- Resolves: #1324416 - Error 404 when switching language in HTML manual more than once- Resolves: #1353740 - Backport Apache PR58118 to fix mod_proxy_fcgi spamming non-errors: AH01075: Error dispatching request to : (passing brigade to output filters)- Resolves: #1371876 - Apache httpd returns "200 OK" for a request exceeding LimitRequestBody when enabling mod_ext_filter- Resolves: #1372692 - Apache httpd does not log status code "413" in access_log when exceeding LimitRequestBody- Resolves: #1376835 - httpd with worker/event mpm segfaults after multiple successive graceful reloads- Resolves: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1396197 - Backport: mod_proxy_wstunnel - AH02447: err/hup on backconn- Resolves: #1348019 - mod_proxy: Fix a race condition that caused a failed worker to be retried before the retry period is over- Resolves: #1389535 - Segmentation fault in SSL_renegotiate- Resolves: #1406184 - stapling_renew_response: abort early (before apr_uri_parse) if ocspuri is empty- prefork: fix delay completing graceful restart (#1327624) - mod_ldap: fix authz regression, failing to rebind (#1415257)- Resolves: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- RFE: run mod_rewrite external mapping program as non-root (#1316900)- add security fix for CVE-2016-5387- add 451 (Unavailable For Legal Reasons) response status-code (#1343582)- mod_cache: treat cache as valid with changed Expires in 304 (#1331341)- mod_cache: merge r->err_headers_out into r->headers when the response is cached for the first time (#1264989) - mod_ssl: Do not send SSL warning when SNI hostname is not found as per RFC 6066 (#1298148) - mod_proxy_fcgi: Ignore body data from backend for 304 responses (#1263038) - fix apache user creation when apache group already exists (#1299889) - fix apache user creation when USERGROUPS_ENAB is set to 'no' (#1288757) - mod_proxy: fix slow response time for reponses with error status code when using ProxyErrorOverride (#1283653) - mod_ldap: Respect LDAPConnectionPoolTTL for authn connections (#1300149) - mod_ssl: use "localhost" in the dummy SSL cert for long FQDNs (#1240495) - rotatelogs: improve support for localtime (#1244545) - ab: fix read failure when targeting SSL server (#1255331) - mod_log_debug: fix LogMessage example in documentation (#1279465) - mod_authz_dbd, mod_authn_dbd, mod_session_dbd, mod_rewrite: Fix lifetime of DB lookup entries independently of the selected DB engine (#1287844) - mod_ssl: fix hardware crypto support with custom DH parms (#1291865) - mod_proxy_fcgi: fix SCRIPT_FILENAME when a balancer is used (#1302797)- mod_dav: follow up fix for previous commit (#1263975)- mod_dav: treat dav_resource uri as escaped (#1255480)- mod_ssl: add support for User Principal Name in SSLUserName (#1242503)- core: fix chunk header parsing defect (CVE-2015-3183) - core: replace of ap_some_auth_required with ap_some_authn_required and ap_force_authn hook (CVE-2015-3185)- Revert fix for #1162152, it is not needed in RHEL7 - mod_proxy_ajp: fix settings ProxyPass parameters for AJP backends (#1242416)- mod_remoteip: correct the trusted proxy match test (#1179306) - mod_dav: send complete response when resource is created (#1235383) - apachectl: correct the apachectl status man page (#1231924)- mod_proxy_fcgi: honor Timeout / ProxyTimeout (#1222328) - do not show all vhosts twice in httpd -D DUMP_VHOSTS output (#1225820) - fix -D[efined] or [d] variables lifetime accross restarts (#1227219) - mod_ssl: do not send NPN extension with not configured (#1226015)- mod_authz_dbm: fix crash when using "Require dbm-file-group" (#1221575)- mod_authn_dbd: fix use-after-free bug with postgresql (#1188779) - mod_remoteip: correct the trusted proxy match test (#1179306) - mod_status: honor remote_ip as documented (#1169081) - mod_deflate: fix decompression of files larger than 4GB (#1170214) - core: improve error message for inaccessible DocumentRoot (#1170220) - ab: try all addresses instead of failing on first one when not available (#1125276) - mod_proxy_wstunnel: add support for SSL (#1180745) - mod_proxy_wstunnel: load this module by default (#1180745) - mod_rewrite: add support for WebSockets (#1180745) - mod_rewrite: do not search for directory if a URL will be rewritten (#1210091) - mod_ssl: Fix SSL_CLIENT_VERIFY value when optional_no_ca and SSLSessionCache are used and SSL session is resumed (#1170206) - mod_ssl: fix memory leak on httpd reloads (#1181690) - mod_ssl: use SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA (#1118476) - mod_cgi: return error code 408 on timeout (#1162152) - mod_dav_fs: set default value of DAVLockDB (#1176449) - add Documentation= to the httpd.service and htcacheclean.service (#1184118) - do not display "bomb" icon for files ending with "core" (#1170215) - add missing Reason-Phrase in HTTP response headers (#1162159) - fix BuildRequires to require openssl-devel >= 1:1.0.1e-37 (#1160625) - apachectl: ignore HTTPD variable from sysconfig (#1214401) - apachectl: fix "graceful" documentation (#1214398) - apachectl: fix "graceful" behaviour when httpd is not running (#1214430)- mod_proxy_fcgi: determine if FCGI_CONN_CLOSE should be enabled instead of hardcoding it (#1168050) - mod_proxy: support Unix Domain Sockets (#1168081)- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581)- rebuild against proper version of OpenSSL (#1080125)- set vstring based on /etc/os-release (#1114123)- fix the dependency on openssl-libs to match the fix for #1080125- allow 'es to be seen under virtual hosts (#1131847)- do not use hardcoded curve for ECDHE suites (#1080125)- allow reverse-proxy to be set via SetHandler (#1136290)- fix possible crash in SIGINT handling (#1131006)- ab: fix integer overflow when printing stats with lot of requests (#1092420)- add pre_htaccess so mpm-itk can be build as separate module (#1059143)- mod_ssl: prefer larger keys and support up to 8192-bit keys (#1073078)- fix build on ppc64le by using configure macro (#1125545) - compile httpd with -O3 on ppc64le (#1123490) - mod_rewrite: expose CONN_REMOTE_ADDR (#1060536)- mod_cgid: add security fix for CVE-2014-0231 (#1120608) - mod_proxy: add security fix for CVE-2014-0117 (#1120608) - mod_deflate: add security fix for CVE-2014-0118 (#1120608) - mod_status: add security fix for CVE-2014-0226 (#1120608) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120608)- mod_dav: add security fix for CVE-2013-6438 (#1077907) - mod_log_config: add security fix for CVE-2014-0098 (#1077907)- mod_ssl: improve DH temp key handling (#1057687)- mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1071276)- Mass rebuild 2014-01-24- mod_ssl: sanity-check use of "SSLCompression" (#1036666) - mod_proxy_http: fix brigade memory usage (#1040447)- rebuild- build with -O3 on ppc64 (#1051066)- mod_dav: fix locktoken handling (#1004046)- Mass rebuild 2013-12-27- use unambiguous httpd-mmn (#1029360)- mod_ssl: allow SSLEngine to override Listen-based default (#1023168)- systemd: Use {MAINPID} notation in service file (#969972)- systemd: send SIGWINCH signal without httpd -k in ExecStop (#969972)- expand macros in macros.httpd (#1011393)- fix "LDAPReferrals off" to really disable LDAP Referrals- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- restore "ServerTokens Full-Release" support (#811714)- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- rebuild- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.6-89.el7.centos.12.4.6-89.el7.centos.101-ldap.confmod_authnz_ldap.somod_ldap.so/etc/httpd/conf.modules.d//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericdrpmxz2x86_64-redhat-linux-gnu?7zXZ !#,_Q8]"k%)-N'~xޑnYP1G_ ,&^NZ`xR'+r*[,]s^T@ڝ׷l۽*}ZFeё^trsiTD!]&753 ?E$!]ALQ}]"j.v@#qY3rp#4'j~m?vr;ULJy2j]Q8,ˌ%g" Knvzw/O&E?P boB~DY.Z%G("\UM3{]ׂ},KG"xDJδL[* l[݇m@{zcFn @Kh~/`pmOuivbeT֧c^T kJg wSQ@D8P,z[ \_]&ח43KN,?Tjs1vӻ&}뱌|+l"Ś뎪g+~9ZdZB6@dr(j|m*) #cPZIRSz@ڼujr2=#ɇ «A>ck"·b]=υ-495"` }Rߍkl<3hqDJz >\*}܊tʾ{wI5:(8 @= VMwplhOZ* zi2t̀(>y~$!}g.Q[[f Nɋa651WlkQƿs22ϽVʀ`~d{3mC+)zS-l >&C68<2C-K2Zt=Ь7mfsb鴶0Aǻ9Sq9 ܪr4aY/ˠi;h2At[Ĥt%5IbHl V[lZlyǨ*LonH7&"$y'cud` gҜyoyGJlX495rt`'o>q'SzX)>N|x},4%XT;ʯ0>=#Hӆ?jRGdmҮã^v#])Bףۖ:4C*mPCa3lv*'J<χjn*)(7[G u'7T~4G{v̕@Mg\W^MZ1E0Qg0Z/@ZZEzPeN^o%U0 K {YNW$ʄqqʈ!끤,܎ep= w(^8ГW"jdMpjs~ѹa_c=Pt,C!9eBHRymKTBie}LI&:܂ܚXU!ھ) 1F֎#ܠH6XFl=}A]@~q 84JpՑ .+RW+ Te%T܏a/wr3 k8_K`ly=i@:k$*Y]C ƮCFYڪ{ m!%q*Zkv1ۆoͮlceŗOcpBOM$GltHu7RAtHyD,SO@fF )ʓ@EhDAr'޸~O~Tt'uݥ^K$4'm^Eʠ񅓙үsmm ݥbOG$>gBG,a7QƌG8@ZJ_Sg  WU@G#i?ޯ_n?&_OhivK' _=;Kmb ڱrL!zf2iz?23o`;]L|Fx/7V52.* pvo̥БiPT CZbZ קԅDEP` :S \dއ(IH1sRyN'8;Ӟ"$Q7rS^7'h"qg%L"Bo=z[d1>0 ޵-zN _<3O`aa˄%B`z1 ;&"I5P3tЩX Hca cf1 f}ϲh1x;$irȇ¦° U_sm#\g$? ]ؓ3Afs6.&@0Svx8BD⛭+yrt3sg YD:@uȸb~ tUFu/+C4`Y nTٱb"/rĵ P"n-oc%S(G`jOR8"2u+dj7+lpysNj ͈1 ;zbMXt& |]U QVqڦyW5V~8mW5jD%>b_i[)X;1765uóKe%CskmoLg0uM%޽EH$,A2sd"堽8?Lk7mM7ӇmMЮxwu YmU8:e8qB#VVp&oA`1y4RR{`QJd7>vK>֤(?xh׹laLx=w7Mr_'t+y6_' ٞvnB0 *(i(yg“n=#;3z|Ku{D)-hW凼UX2 "L*Io j~DDyf2}1;e1kJ1:۟Z˵ClvnkRZ{Y޸B"Lp5p n ؜ GBr9wЪrqO&5aQl6RK& cW܇m6K jy'6r hoRW{.h{CO ?gY|u^˦O"iTyTBت2G-aB MěY^&Dp0aݟp/.Zx}%̺H>'(`kj5F:&unO!n$ANDgE.of3%W\rl-:2^pOH VI-DmWhBhlVT>Fc9FʷaP%~Z&+z5_cr0ݯ7,d!Q(2A+D8"Df0a~t"J>gv mfUB$JJ OKT Z* }8ǕaƏY}@¨#XYxX?l _^bvaj 1mf]QI98B( !BҎ4^w|T^x 3(Y;jP /:4$Wr9~_R8% z~n̖P.)Զ y̏rVY Tҳ^2r'ЉĨZWy5xjMfEO. i(j<4iX\)~T Š$E9׼LSʃF6ڌNp3 .z?,|,o}:gfԍ2XZQcdP`UQX$ԽQX(ekﲬ#i\/]ʰӕ"q(6OZF, i$$boޒmGYK! ]Vָ&1z#;'uCrФ|Ƴz9&q:`x4zZZf$D4؋1S@BV6\tCc#ETy,ʩyI(LYGSt!K/+@1ESwnD0GkRaM#").P&DSs=͆H1ɆHC5z׳'/_Gb~C=x m6̊FGL) Fp "]ţM2gJ=tq Z;y%3CO%no d!=l6̍1킂4^Kr1F}Tc%+c//$`h /}n􏚅EE>wh9_̗ҋܮ!T`Upl6aKӡq8eWjHS^¤v %;^A'ʶ[E!lN1N0~_̡!̣1u닱Ú9I^<Ԭ';LV*kZWcZ,JAreO0 RF)5 vY6Ap+H_T N=E шA#}j0_ `Dx^ UJ(Q}D ŒVaKLn H-sW- M^*sg!b|Ep/;?9=<Zow1< MG R6J}m_i*u~ɋRG vfО4d2}FE? aN~zOFYř^:.J!I%yasش#FNbedA4tmCdžl$z8,/Z*3,b0L#\I8BQ#V*xA4fvsHz2&Y0h{S)BaZЭ6uk͑~:_%BvH"l1! KXO795&HNYBh:WOELD /?aMhx/Hpk]oBC^^8eè@qV&hG$9ܢTwt ΕRsŹk"l{Q(O _ /zrb<<`'a0 U_j92:U/pcѠ|$7Mi8"Μ$l:0ϲɵo4b؜I q" jƀx@F(YB("iZat|ܘM@H@0j" KB RA>%;cC@E6>}Es劗~%RRt{(SnWSh# iOȔ|_CA#&`myc74 "TՁ0x1%x?R MeUC'=gM3ұ .٨/Ux-9 Φ*"m)O@ʚ{ A_?-u6Vnڏp'5p쥯>Qel2u7cn1UѾm`&rKߴ"٣ az94#TbnZL_QRySv1+# 2oz52Ry(-]46ظEmz(4ԌaD/%C,H^H>ma\nqMA&DsU2=]*Tj?ɻ6UΕBo` B04w(,.V1;ӐǕ QxVzDBn'|kKIP+=#˥}xt 4R)xlL^.Y4|D4.Gs1$:[X)S -J2L/K`NhVaO=~rZ,=jG/0C=}ёxg1Pn\2r1X4<^tìF_IMXY\3k~` Dȯ'4dr-@7Kl`HS~8uq׹H3ӭ$W]̞qYίToۺKP2j`%LU6˿.=&W[~x(JNrs͏7Kzر]ɋi[T/D8cEvYM'z ?>=Б9mV5KNikVߙB֖Dkǰ`C.>LG"w9q\vg[kUU ᐣK{OlX}" $6NS<7$የQHs  [Gr:zyVASI?H-iv2F=h{Y%FFYou^.m#cZѶECA&*ғ|hAcf t:]LU$c,yf, ;$7cz#š> k= Rˀ@h /92s[=R 1 謍,I6V 0RI=gʸ^ zs/Y2S֕duE:yqIo?: n4T@/,fTTKGr 1}[^LLt8i6P.?ǐ<94OuH=B} ն첎Q\$DA3O[z`5~]5pNY1Unҹ9Jeb!S.:i]#Xb:bN4>Rt L?1̙4l! R}Csg#%͹RTJ(嬗5+S*( BQsmXĢ:cݦE# OvV{q}'~8_u]!`ǰz-<0@H)^~Ƚ\=3T54>efn+Js1ђܞ W#{B"F|a˻S%uaD-H2mڌ y.\/WƝBFH*t9"!'[P}Qge4.~?݉MT搵G'o|g'xoTEjnϿ0@?̮.5":S祈)WD¹֡ԁw`+ܣNQ½\dTݎ ~F=66{ ˵) 揈KJkGX!8+%_c|~39GQc"[?8 \-hL̲Ya]"A|LQdM(`-J_ȧ1hE}vRTFV*JP%HL^4#(_Z^l 7}rӵ 鑥/ biљzuBtbG4) ڼMu/Du-.=]f1^{2F&RUp}gI.2uZ '@w`V%HT+ KSsMnnaY%p N\QL؊Qڸ;RZlMOM=o>JZ>ƶvVhVyꟿݠT*@yzy[ձpEtj 2#mȜ7exz>'J ݇nf k_ " %!ҡd!^,faOz+ +n0W1=j3v?Dx8XAU^tRZYbWPo9r_c!*0\x,&"*hEly$g5ȉX&oIP3e=  P<{:y}<na)zX dœ-Yu*]뻥Vu[bK: OINVI1~k2Ak*2~ ]šTmj&hlžn?C!ϙj:opQc]O vnuS- V1sūKp۵Yv5KZYn>~0 rOw<#63KS[diVZ?|IvQ· @$e6ڄAPbKkt+Ϧoc@]8(g1Q gKB{# E> x@fHu2.P EO:^X2=hM~I]3g5uFy 3?i]~1df gAC;5[U5 9BzMj,Ww ,|̼ Q GrOmW<1 si8) ybxkc$r̆3EXt7|4Ɯ| ͖d 6e'vPJē^.Ka;E!౞_f*zмJp`s (c ʖJ䝀AA}< } ! l\{+RݧlÖ 9$İ.T,L52f7tczh_{:{3!Ad ǰ+Cxk9fQ0kJVWkvwm\ؑ"_-̜*7%^dk+E.v1+.ƅe = pqwkBX@sT!n'\.3:F$w+ͬIsbl҃Wښz(Yhv_׭!:ӑC/؎\NseH5ڒQt)ZZE1(n T8jt/lWt*L #}!9-`Ӆ+><:!נ1,l<:m<vK"3sA,0UGCyO}=;DI ݾdX.6$un!#[X̸+(OMh9iJ<>4WWgs~S{FXpƦ9_% zvupwEЀV7H~l%ȬPay<~?^4"1=DQu/3J(]g*RG{]!i~oBҧjZZJ%jxP5z1׹s2kE) m.)T>LRC3][$W8U6{T 0W_Z=IϦeL x"'qiO)-,iu2D|3OU/:fbUM̉EeU~y1=E ;8k*]בu}Qxp§މWןCnlB@v~RrўC}B`_`Tbq99E&D +|~!kl`N>0G{gNUxǏhv!( bpuH( Y`@fܪd1|z&foV &g1^(&!NLq1GLiB¬2d{'vWP+~j~Zz*uG9_]XYtX~N/@V726#]Y=p7,'7צ{3R?`#2=xIT$WHν#I j)1ii6EF&e;+ܷO6'$Kz%AUҪښyR _e_|!a~q-c`.~j.7-0%pe60M!s yad`Wfr4՚$g,~M*>]@BK1cF>`_Q8p7QD+W`PU2s? ,~b{erOg|Ne\թ$]VMTsQ؎,t c*&c%OǷ,@oĥgmQdYUXİͲ3Ȉt_ QD]E:Eo:5KHaGG56j%a@zANgruÛ8Bo<3GGTVNsdN4`QD6iq뉿ěj&u\0paaA͊f41 Px8{& kͪ@olECCKCD gSFxy2@bL Pޡ-,)[Hpă8 j>RJT:oa:cۏ8'6K\on9׫Eop݈#g6Y=.JͣK(=8V~E<|3yaehC$*hiX`ۄyŵXhrz! ㇺL ɔ#|Tj 83‘iSi#YP`( 2>zw,cL_oi;YOlrDgKmRYsYn1cA5ǂW&cɑ9az1=ӌMdѳB` x"tr#ry8)Q#z)N bv!wpF87J2LO'\b JL~(al$E(o=IJvo 5^zqU֋j3ď6XQkJ:*vôtrY雡bblvp2CwE >fK_g 0Wzbprq]L:2'f>~:%?F]uh|FF aR>}3XbU J6DŽp.Fzz`%(d7U~jtLuJ?Tii$i168qie}SeA, , 5]w+p* kMJGt s#aLgLX+y37-̌iԘ4]_Í:ɷvC;A RBRU.%*ec{P!ϔK1@ j6%_rs*Mcf8zp`;̩ C0_==Q݁BO:IC0{Ǝn}R/CMr c^{iE\M ')ߝDc;3a.ɓ8 vyZӛ-v8xW%؍*dXvBʼn=P)A\f$P(bȸ&#etg O)x*Aq.Xl\$ׂص# mYbU5#u~xR_j6f&΄WLE{ ɢ)ԟmy壣  <; YXaą[+}w泔0%~aVPxcH Hܤ^l&C9BA,'_[1+$+jk#rm7z{}-rA'.)RK2]b#1ջ%~ `ŧة#֯;RC ?0LaDidpۓ|x}o-'owޟ@r?z&Z q<г/|q2Bw7oLrā r ׌(y '̰g2L,,ҼD~__Z^!4F{(ыe|DN۴C/;Tۙjf 'OfP铪FyLBs\矋Uå-]vG;6kMx9Q)\C-JѾ U?aRva=Z m\3,\àP)PcϤoG4zk)(Ɯ +s2;La'7Hh=Hp- hIu",2FHPH"e0 "O5Fo