httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jim Jagielski <>
Subject [STATUS] Thu Jun 5 13:42:48 EDT 1997
Date Thu, 05 Jun 1997 17:45:17 GMT

We are almost a quarter-hour from the final close of 1.2b12 and
the official release of 1.2...

Last chance to look over everything and see if we are ready.
How does 15:30GMT sound (which gives us 1.5 hours from the official
close) to have everything done and ready for an announcement??


1.2b12 status as of Thu Jun  5 13:42:48 EDT 1997

  * Code changes committed since 1.2b11:

    * PR624 Closed: Fixed open timestamp fd in proxy_cache.c
      (actually, CHANGES was adjusted to reflect the above which
      was done in 1.2b11).

    * Cleanup to remove malloc() from proxy_host2addr

    * ABOUT_APACHE file added

    * PR#663: SCO3 doesn't have writev()

    * Apache team members pgp keys now available in KEYS file

    * Reordering of $LIBS/$REGLIB in Makefile.tmpl done

    * mod_include+perl+sfio patch

    * Check for NULL read fd in proxy_send_fb()

The Plan

  * We are go for a 1.2 release on June 5, 1997. 
  * We need to setup a time for the 1.2 release process... I would
    suggest 18:00 GMT, at that point the CVS tree is adjusted to
    reflect '1.2' . Tarballs and distributions will then be done
    and announced. Binary builds will proceed after that.
    No need to do an immediate CVS branch right now...

  * We should all start signing up for binary builds for the
    1.2 release. These should include only the standard mods
    (see for naming technique):
     Jim: A/UX 3.1.1, FreeBSD 2.2-STABLE
     Ken: Digital UNIX V3.2E-1 (should work for any V3.2 system)
     MarcS: FreeBSD-2.1-STABLE, SunOS 5.5 & 4.1.4, HPUX 10.10,
      AIX 4.1.4, IRIX 6.2
     Mark Bixby: HP MPE/iX
     Randy: BSDI 2.1
     Paul: i386-whatever-linux1/linux2 and IRIX 5.3

  * Team members to add their keys to KEYS before June 5, 1997 18:00GMT

Problems and Patches

Documentation Changes that would be nice for 1.2 but we're
not gonna hold-up for them:

  * Ken's code documentation fixes... I think everyone is a bit
    concerned/worried about any code-level changes at this point.

  * some better suexec docs would be really nice, detailing some of the
    security risks and compromises discussed
	New Status: Jason working like a dog to make
	 the deadline. Has some stuff available but
	 not in the HTML "color" format we're now using.

  * Document problems with mismatch on FD_SETSIZE=1024?

Post 1.2:

  * Workout path/goals for 2.0. Release 1.2.1 with below
    fixes and improvements but let's give 1.2 some time
    (and ourselves a rest).

  * Rework of Configure/Makefile pair. 2 specfic items of
    interest are making Configure correctly determine if
    'cc' is being used under HP-UX (so a scan of Makefile
    at the "end" of Configure is needed) and some way to
    allow for extra module libs when linking (something

  * PR#94: Content negot fails unless each varient has a charset

  * PR#543: /cgi-bin/foo/bar%2fbaz
    unescape_url in util.c is forbidding %2f in PATH_INFO.
    The problem is that we use the %2f check to avoid security problems
    with stupid scripts.  Roy thinks the best solution would be to
    decode all %2f's before doing any processing on the path, and thus
    reduce %2f... to /.. before doing the path checks.  This makes it
    impossible to have a filename containing slash, but no big deal.

  * Marc's [PATCH] PR#566: mod_status dumps core in inetd mode
    Status: +1 Marc (post-1.2), Roy (with minor change), Dean

  * Dean's solaris 256 FILE * problem
    Status: Dean seeing if it works for user, maybe add to FAQ

  * Various minor tweaks to port to different platforms:
    PR#383, PR#388, PR#399, PR#333, PR#327, PR#445, PR#511

  * Fix mod_negotiation to follow latest TCN draft
    Petr Lampa wants to work on this.

  * Doug MacEachern's [PATCH] merge dbm auth configs
        Status: The question is, should we be merging auth configs?
                Ken says not by default and not unless it's configurable.

  * redo lingering_close to check for old sockets to close out before
    accept() in child.
	Status: doesn't look to be overly clean to do in the current
	framework.  Will not have time to do implementation for this
	beta in any case.  If it turns out to be a big issue,
	could go in later.  (1.2.1?)

  * Marc wants to have a check to be sure
    log directory(ies) isn't writable by anyone except the user starting
    the server.  The posting in bugtraq only highlites the problem.
    Needs override.  See NCSA code for sample implem.
	Status: Marc busy writing

  * Type map can't find appropriate document for language on Solaris
    2.x.  (I can't gistify this one; full details in message ID
    Reporter has provided tar.gz file of config info.
    (no PR#, 1.2b7, 24/2/1997, <>)
        Status: Dean might have fixed this one (the table overlay bug)
	[Dean has mailed the submitter to ask them to test 1.2b8 or b9]

  * SONY NEWS port.  See both:
    Jim working on a patch, but not until after 1.2 release

  * Jim has patch for time taken to handle a request in status module

  * status report shows PIDs in empty slots, user supplied some sort
     of patch; behavior now is correct, but perhaps some cleanup of
     how the results are displayed could be done after 1.2...

Should be added to the bugdb:

  * "Large groups cause authentication errors" on FreeBSD
      []; problem looks to be MAX_STRING_LEN buffer
      in groups_for_user.

Contrib stuff / future:
  * Start digital signing the distributions.

  * Chris Adams <> patch to mod_log_config to add %m and %c.

  * mod_log_config patch for conditional logging
	Status: contrib, not in server

  * Ed has an updated patch for limiting connections per IP

  * mod_include could use boyer-moore searching for <!--# and/or it could
    mmap the file.

  * add some setlocale stuff?

  * status module available from .htaccess files; Ken posted patch

  * Rob's "DONE" status response check for die()
	Roy says it's a feature... Dean agrees, thinks we should slate
	something for 2.0 that can handle this cleanly.

  * provided a patch for mod_imap to make it more
    friendly with MS FrontPage map files.  Available in

  * Dean's gif89 and expires hack

  * mod_userdir needs a DisallowUserDir directive, a la ftp.deny, to
    restrict user names that can be accessed.  Ken says maybe
    "UserDir disabled [user [...]]".

  * get_local_host and NIS patch fo SunOS 4

  * internationalized documentation

  * pagecounter extension to mod_include

  * mod_expires improvements from "Miguel A.L. Paraz" <>
    at <>

  * add is_initial_req() function

  * mod_dir: send HEIGHT/WIDTH tags to improve performance for user see
    PR#393 for a patch that provides this

  * A CIDRized access list patch such as the one supplied in

  * PR#344: 64-bit cleanups

      Jim Jagielski            |       jaguNET Access Services           |
            "Look at me! I'm wearing a cardboard belt!"

View raw message