httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From m...@hyperreal.org
Subject cvs commit: apache-1.3 STATUS
Date Mon, 13 Jul 1998 03:19:40 GMT
marc        98/07/12 20:19:40

  Modified:    .        STATUS
  Log:
  It always rains in Seattle.
  
  Revision  Changes    Path
  1.436     +7 -10     apache-1.3/STATUS
  
  Index: STATUS
  ===================================================================
  RCS file: /export/home/cvs/apache-1.3/STATUS,v
  retrieving revision 1.435
  retrieving revision 1.436
  diff -u -r1.435 -r1.436
  --- STATUS	1998/07/12 14:41:32	1.435
  +++ STATUS	1998/07/13 03:19:38	1.436
  @@ -2,9 +2,12 @@
   
   Release:
   
  -    1.3.1: In development. Plan to release the next days...
  -           Jim offers to be RM.
  +    1.3.1: In development. Hopeful for rolling tarball on Monday
  +           evening, with release a day or two later.  This depends on
  +	   Win32 working and being ready.
   
  +           Does Jim offer to be RM?
  +
       1.3.0: Tagged and rolled on June 1. Announced and Released on the 6th.
              
       2.0  : In pre-alpha development, see apache-2.0 repository
  @@ -30,13 +33,11 @@
   
   WIN32 1.3 RELEASE SHOWSTOPPERS:
   
  -    * SECURITY: numerous uses of strcpy and strcat have potential
  -	for buffer overflow, someone should rewrite or verify
  -	they're safe
  -
       * Win95: when authentication is required for directory /foobar/, direct 
         access to /foobar/bletch is permitted.  PR #2145
   
  +	UPDATE: may be false alarm, probably shouldn't hole 1.3.1.
  +
   Documentation that needs writing:
   
       * Need a document explaining mod_rewrite/"UseCanonicalName off" based
  @@ -277,9 +278,6 @@
   
    Help:
   
  -    * SECURITY: check if the magic con/aux/nul/etc names do anything
  -	really bad
  -
       * chdir() for CGI scripts and mod_include #exec needs to be 
         re-implemented now that CreateProcess is being used.
   
  @@ -346,7 +344,6 @@
   
         That _really_ sucks.  Can we recommend running Apache as some 
         other user?
  -
   
       * need a crypt() of some sort.
   	- sources are easy; problem is export restrictions on DES
  
  
  

Mime
View raw message