diff options
28 files changed, 1578 insertions, 0 deletions
diff --git a/net-www/mod_contribs/ChangeLog b/net-www/mod_contribs/ChangeLog new file mode 100644 index 000000000000..46c2e0d7c2d6 --- /dev/null +++ b/net-www/mod_contribs/ChangeLog @@ -0,0 +1,9 @@ +# ChangeLog for net-www/mod_contribs +# Copyright 2002 Gentoo Technologies, Inc.; Distributed under the GPL +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_contribs/ChangeLog,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +*mod_contribs-1.0.8 (9 Apr 2002) + + 9 Apr 2002; Donny Davies <woodchip@gentoo.org> : + + New package to go along with the rewritten apache ebuild. diff --git a/net-www/mod_contribs/files/digest-mod_contribs-1.0.8 b/net-www/mod_contribs/files/digest-mod_contribs-1.0.8 new file mode 100644 index 000000000000..ce4d24a60374 --- /dev/null +++ b/net-www/mod_contribs/files/digest-mod_contribs-1.0.8 @@ -0,0 +1,3 @@ +MD5 a289d3596091ad8f7722f62aaa2d1465 apache-contrib-1.0.8.tar.gz 194413 +MD5 5986bbf65c420a4637e6a3c4229f028b mod_layout-3.0.3.tar.gz 31189 +MD5 8e78493f775c9cdebaf39401f1088885 mod_random-1.4.tar.gz 7483 diff --git a/net-www/mod_contribs/mod_contribs-1.0.8.ebuild b/net-www/mod_contribs/mod_contribs-1.0.8.ebuild new file mode 100644 index 000000000000..94750fde8cc5 --- /dev/null +++ b/net-www/mod_contribs/mod_contribs-1.0.8.ebuild @@ -0,0 +1,104 @@ +# Copyright 1999-2002 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License, v2 or later +# Maintainer: Donny Davies <woodchip@gentoo.org> +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_contribs/mod_contribs-1.0.8.ebuild,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +# The mod_layout and mod_random that come in the archive are really old, +# so I've replaced them with more current versions. +mod_layout_ver=3.0.3 +mod_random_ver=1.4 + +DESCRIPTION="Collection of third-party contributed modules for Apache" +HOMEPAGE="http://www.apache.org/dist/httpd/contrib/modules/1.3/" + +S=${WORKDIR}/apache-contrib-${PV} +SRC_URI="http://www.apache.org/dist/httpd/contrib/modules/1.3/apache-contrib-${PV}.tar.gz + http://software.tangent.org/download/mod_layout-${mod_layout_ver}.tar.gz + http://software.tangent.org/download/mod_random-${mod_random_ver}.tar.gz" + +DEPEND="virtual/glibc >=net-www/apache-1.3.24" + +MY_MODS="mod_allowdev mod_auth_system mod_disallow_id mod_lock mod_random + mod_auth_cookie mod_bandwidth mod_eaccess mod_macro mod_roaming + mod_auth_cookie_file mod_cache mod_fastcgi mod_peephole mod_session + mod_auth_external mod_cgisock mod_ip_forwarding mod_put mod_ticket + mod_auth_inst mod_cvs mod_layout mod_qs2ssi mod_urlcount" + +src_unpack() { + unpack ${A} ; cd ${S} + + # update mod_random.. + cd ${S}/mod_random + rm -f mod_random.c + cp ${S}/../mod_random-${mod_random_ver}/{mod_random.c,README,faq.html} . + + # update mod_layout.. + cd ${S}/mod_layout + rm -f mod_layout.c + cp ${S}/../mod_layout-${mod_layout_ver}/{*.c,*.h,README,faq.html,directives/*} . + cp Makefile Makefile.orig + sed -e "s%^\(SRCS\)\(.*\)%\1\2 utility.c origin.c footer.c header.c%" \ + Makefile.orig > Makefile + + # fix to be like others: libcache.so -> mod_cache.so + cd ${S}/mod_cache + cp Makefile Makefile.orig + sed -e "s%^\(DSO\).*%\1=mod_cache.so%" Makefile.orig > Makefile +} + +src_compile() { + emake || die "compile problem" +} + +src_install() { + local i + for i in ${MY_MODS} + do + if [ -f $i/$i.so ] + then + exeinto /usr/lib/apache-extramodules + doexe $i/$i.so + fi + if [ -f $i/README ] + then + docinto $i + dodoc $i/README + fi + if [ -f $i/00BLURB ] + then + docinto $i + dodoc $i/00BLURB + fi + ls $i/*.html >/dev/null 2>&1 + if [ $? -eq 0 ] + then + mkdir -p ${D}/usr/share/doc/${PF}/${i}/html + cp $i/*.html ${D}/usr/share/doc/${PF}/${i}/html + fi + done +} + +pkg_postinst() { + einfo + einfo "Execute ebuild /var/db/pkg/${CATEGORY}/${PF}/${PF}.ebuild config" + einfo "to have your apache.conf auto-updated for use with these modules." + einfo "You should then edit your /etc/conf.d/apache file to suit." + einfo +} + +pkg_config() { + local i j k + for i in ${MY_MODS} + do + j="`echo $i | sed -e 's%mod_\(.*\)%\1%'`" + k="`echo $j | tr a-z A-Z`" + ${ROOT}/usr/sbin/apacheaddmod \ + ${ROOT}/etc/apache/conf/apache.conf \ + extramodules/$i.so $i.c ${j}_module define=$k + if [ ! $? ] + then + ewarn "hrmph, problem auto-updating apache.conf for $i!" + fi + done + :; +} diff --git a/net-www/mod_dav/ChangeLog b/net-www/mod_dav/ChangeLog new file mode 100644 index 000000000000..8ae3ec93b120 --- /dev/null +++ b/net-www/mod_dav/ChangeLog @@ -0,0 +1,9 @@ +# ChangeLog for net-www/mod_gzip +# Copyright 2002 Gentoo Technologies, Inc.; Distributed under the GPL +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_dav/ChangeLog,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +*mod_gzip-1.3.19.1a (9 Apr 2002) + + 9 Apr 2002; Donny Davies <woodchip@gentoo.org> : + + New package to go along with the rewritten apache ebuild. diff --git a/net-www/mod_dav/files/digest-mod_dav-1.0.3 b/net-www/mod_dav/files/digest-mod_dav-1.0.3 new file mode 100644 index 000000000000..922f040fb428 --- /dev/null +++ b/net-www/mod_dav/files/digest-mod_dav-1.0.3 @@ -0,0 +1 @@ +MD5 ba83f2aa6e13b216a11d465b82aab484 mod_dav-1.0.3-1.3.6.tar.gz 185284 diff --git a/net-www/mod_dav/files/mod_dav-shared-expat.patch b/net-www/mod_dav/files/mod_dav-shared-expat.patch new file mode 100644 index 000000000000..fe8a89dd6686 --- /dev/null +++ b/net-www/mod_dav/files/mod_dav-shared-expat.patch @@ -0,0 +1,160 @@ +diff -urp mod_dav-1.0.3-1.3.6/config.h.in mod_dav-1.0.3-1.3.6.new/config.h.in +--- mod_dav-1.0.3-1.3.6/config.h.in Mon Nov 5 00:04:48 2001 ++++ mod_dav-1.0.3-1.3.6.new/config.h.in Tue Mar 5 03:33:43 2002 +@@ -1,7 +1,7 @@ + /* config.h.in. Generated automatically from configure.in by autoheader. */ + + /* define to use Expat 2 */ +-#undef HAVE_EXPAT_2 ++#define HAVE_EXPAT_2 + + /* Define if you have the ANSI C header files. */ + #undef STDC_HEADERS +diff -urp mod_dav-1.0.3-1.3.6/configure mod_dav-1.0.3-1.3.6.new/configure +--- mod_dav-1.0.3-1.3.6/configure Mon Nov 5 00:04:50 2001 ++++ mod_dav-1.0.3-1.3.6.new/configure Tue Mar 5 03:31:12 2002 +@@ -2196,20 +2196,20 @@ if test "${with_expat+set}" = set; then + withval="$with_expat" + + if test "$withval" != "no" ; then +- if test -f "$withval/include/xmlparse.h" ; then ++ if test -f "$withval/include/expat.h" ; then + XML_DIR=$withval + XML_INCLUDE="$withval/include" + XML_LIB="$withval/lib" + fi + if test "$XML_DIR" = "" ; then +- if test -f "$withval/include/xml/xmlparse.h" ; then ++ if test -f "$withval/include/xml/expat.h" ; then + XML_DIR=$withval + XML_INCLUDE="$withval/include/xml" + XML_LIB="$withval/lib" + fi + fi + if test "$XML_DIR" = "" ; then +- if test -f "$withval/include/xmltok/xmlparse.h"; then ++ if test -f "$withval/include/xmltok/expat.h"; then + # Debian + XML_DIR=$withval + XML_INCLUDE="$withval/include/xmltok" +@@ -2218,7 +2218,7 @@ if test "${with_expat+set}" = set; then + fi + fi + if test "$XML_DIR" = "" ; then +- if test -f "$withval/libexpat.a" -a -f "$withval/xmlparse/xmlparse.h" ; then ++ if test -f "$withval/libexpat.a" -a -f "$withval/xmlparse/expat.h" ; then + XML_DIR=$withval + XML_INCLUDE="$withval/xmlparse" + XML_LIB=$withval +@@ -2253,15 +2253,15 @@ fi; + # + if test "$XML_DIR" = ""; then + if test -n "$APXS"; then +- if test -f "$APXS_INCLUDE/xml/xmlparse.h"; then ++ if test -f "$APXS_INCLUDE/xml/expat.h"; then + XML_DIR=$APXS_INCLUDE + XML_INCLUDE="$APXS_INCLUDE/xml" + fi + else +- if test -f "$APACHE_BASE/src/lib/expat-lite/xmlparse.h" ; then ++ if test -f "$APACHE_BASE/src/lib/expat-lite/expat.h" ; then + XML_DIR="$APACHE_BASE/src/lib/expat-lite" + XML_INCLUDE=$XML_DIR +- elif test -f "$APACHE_INCLUDE/xml/xmlparse.h" ; then ++ elif test -f "$APACHE_INCLUDE/xml/expat.h" ; then + XML_DIR="$APACHE_INCLUDE/xml" + XML_INCLUDE=$XML_DIR + fi +@@ -2273,15 +2273,15 @@ fi + # + if test "$XML_DIR" = ""; then + for i in /usr /usr/local ; do +- if test -f "$i/include/xmlparse.h"; then ++ if test -f "$i/include/expat.h"; then + XML_DIR=$i + XML_INCLUDE="$i/include" + XML_LIB="$i/lib" +- elif test -f "$i/include/xml/xmlparse.h"; then ++ elif test -f "$i/include/xml/expat.h"; then + XML_DIR=$i + XML_INCLUDE="$i/include/xml" + XML_LIB="$i/lib" +- elif test -f "$i/include/xmltok/xmlparse.h"; then ++ elif test -f "$i/include/xmltok/expat.h"; then + # Debian + XML_DIR=$i + XML_INCLUDE="$i/include/xmltok" +diff -urp mod_dav-1.0.3-1.3.6/configure.in mod_dav-1.0.3-1.3.6.new/configure.in +--- mod_dav-1.0.3-1.3.6/configure.in Sat Nov 3 09:48:13 2001 ++++ mod_dav-1.0.3-1.3.6.new/configure.in Tue Mar 5 03:31:12 2002 +@@ -144,20 +144,20 @@ AC_ARG_WITH(expat, + default search.], + [ + if test "$withval" != "no" ; then +- if test -f "$withval/include/xmlparse.h" ; then ++ if test -f "$withval/include/expat.h" ; then + XML_DIR=$withval + XML_INCLUDE="$withval/include" + XML_LIB="$withval/lib" + fi + if test "$XML_DIR" = "" ; then +- if test -f "$withval/include/xml/xmlparse.h" ; then ++ if test -f "$withval/include/xml/expat.h" ; then + XML_DIR=$withval + XML_INCLUDE="$withval/include/xml" + XML_LIB="$withval/lib" + fi + fi + if test "$XML_DIR" = "" ; then +- if test -f "$withval/include/xmltok/xmlparse.h"; then ++ if test -f "$withval/include/xmltok/expat.h"; then + # Debian + XML_DIR=$withval + XML_INCLUDE="$withval/include/xmltok" +@@ -166,7 +166,7 @@ AC_ARG_WITH(expat, + fi + fi + if test "$XML_DIR" = "" ; then +- if test -f "$withval/libexpat.a" -a -f "$withval/xmlparse/xmlparse.h" ; then ++ if test -f "$withval/libexpat.a" -a -f "$withval/xmlparse/expat.h" ; then + XML_DIR=$withval + XML_INCLUDE="$withval/xmlparse" + XML_LIB=$withval +@@ -194,15 +194,15 @@ AC_ARG_WITH(expat, + # + if test "$XML_DIR" = ""; then + if test -n "$APXS"; then +- if test -f "$APXS_INCLUDE/xml/xmlparse.h"; then ++ if test -f "$APXS_INCLUDE/xml/expat.h"; then + XML_DIR=$APXS_INCLUDE + XML_INCLUDE="$APXS_INCLUDE/xml" + fi + else +- if test -f "$APACHE_BASE/src/lib/expat-lite/xmlparse.h" ; then ++ if test -f "$APACHE_BASE/src/lib/expat-lite/expat.h" ; then + XML_DIR="$APACHE_BASE/src/lib/expat-lite" + XML_INCLUDE=$XML_DIR +- elif test -f "$APACHE_INCLUDE/xml/xmlparse.h" ; then ++ elif test -f "$APACHE_INCLUDE/xml/expat.h" ; then + XML_DIR="$APACHE_INCLUDE/xml" + XML_INCLUDE=$XML_DIR + fi +@@ -214,15 +214,15 @@ fi + # + if test "$XML_DIR" = ""; then + for i in /usr /usr/local ; do +- if test -f "$i/include/xmlparse.h"; then ++ if test -f "$i/include/expat.h"; then + XML_DIR=$i + XML_INCLUDE="$i/include" + XML_LIB="$i/lib" +- elif test -f "$i/include/xml/xmlparse.h"; then ++ elif test -f "$i/include/xml/expat.h"; then + XML_DIR=$i + XML_INCLUDE="$i/include/xml" + XML_LIB="$i/lib" +- elif test -f "$i/include/xmltok/xmlparse.h"; then ++ elif test -f "$i/include/xmltok/expat.h"; then + # Debian + XML_DIR=$i + XML_INCLUDE="$i/include/xmltok" diff --git a/net-www/mod_dav/files/mod_dav.conf b/net-www/mod_dav/files/mod_dav.conf new file mode 100644 index 000000000000..6b7f54cd0b88 --- /dev/null +++ b/net-www/mod_dav/files/mod_dav.conf @@ -0,0 +1,5 @@ +<IfModule mod_dav.c> + +DAVLockDB /var/lock/mod_dav + +</IfModule> diff --git a/net-www/mod_dav/mod_dav-1.0.3.ebuild b/net-www/mod_dav/mod_dav-1.0.3.ebuild new file mode 100644 index 000000000000..7d2aa1dda0a2 --- /dev/null +++ b/net-www/mod_dav/mod_dav-1.0.3.ebuild @@ -0,0 +1,55 @@ +# Copyright 1999-2002 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License, v2 or later +# Maintainer: Donny Davies <woodchip@gentoo.org> +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_dav/mod_dav-1.0.3.ebuild,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +MY_V=${PV}-1.3.6 + +DESCRIPTION="Apache module for Distributed Authoring and Versioning" +HOMEPAGE="http://www.webdav.org/mod_dav/" + +S=${WORKDIR}/${PN}-${MY_V} +SRC_URI="http://www.webdav.org/mod_dav/${PN}-${MY_V}.tar.gz" + +DEPEND="virtual/glibc >=net-www/apache-1.3.24" + +src_unpack() { + unpack ${A} ; cd ${S} + patch -p1 < ${FILESDIR}/${PN}-shared-expat.patch || die + autoconf || die +} + +src_compile() { + ./configure --host=${CHOST} || die + emake || die "compile problem" +} + +src_install() { + exeinto /usr/lib/apache-extramodules + doexe libdav.so + + dodoc README CHANGES INSTALL + dohtml LICENSE.html + + insinto /etc/apache/conf/addon-modules + doins ${FILESDIR}/mod_dav.conf +} + +pkg_postinst() { + # empty lock dir.. + install -m0750 -o apache -g apache -d ${ROOT}/var/lock/mod_dav + + einfo + einfo "Execute ebuild /var/db/pkg/${CATEGORY}/${PF}/${PF}.ebuild config" + einfo "to have your apache.conf auto-updated for use with this module." + einfo "You should then edit your /etc/conf.d/apache file to suit." + einfo +} + +pkg_config() { + ${ROOT}/usr/sbin/apacheaddmod \ + ${ROOT}/etc/apache/conf/apache.conf \ + extramodules/libdav.so mod_dav.c dav_module \ + define=DAV addconf=conf/addon-modules/mod_dav.conf + :; +} diff --git a/net-www/mod_gzip/ChangeLog b/net-www/mod_gzip/ChangeLog new file mode 100644 index 000000000000..a58e8982612d --- /dev/null +++ b/net-www/mod_gzip/ChangeLog @@ -0,0 +1,9 @@ +# ChangeLog for net-www/mod_dav +# Copyright 2002 Gentoo Technologies, Inc.; Distributed under the GPL +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_gzip/ChangeLog,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +*mod_dav-1.0.3 (9 Apr 2002) + + 9 Apr 2002; Donny Davies <woodchip@gentoo.org> : + + New package to go along with the rewritten apache ebuild. diff --git a/net-www/mod_gzip/files/changes.txt b/net-www/mod_gzip/files/changes.txt new file mode 100644 index 000000000000..9dc4335950d7 --- /dev/null +++ b/net-www/mod_gzip/files/changes.txt @@ -0,0 +1,192 @@ + +CHANGES in Version 1.3.19.1a + +* mod_gzip_can_negotiate Yes + +This new httpd.conf directive is probably the most +important new feature. + +If 'mod_gzip_can_negotiate' command is set to 'Yes' +then mod_gzip will essentially 'take over' some of +the duties of mod_negotiate and will automatically +check for static pre-existing compressed versions +of requested file(s). + +In other words... if the user requests 'filename.html' +and there happens to already be a pre-compressed +version of that page named 'filename.html.gz' then +mod_gzip will immediately return the pre-compressed +version rather than perform a dynamic compression +of the file. + +The delivery of the pre-compressed version of the file +is still subject to the same 'rules' that govern the +delivery of compressed data to a user-agent. The user-agent +must have indicated it is capable of receiving compressed +content and the file/mime type itself must be one of the +valid mod_gzip 'inclusion' items specified using the +normal mod_gzip_item_include/exclude statements. + +The 'mod_negotiate' module for Apache does not currently +have the 'smarts' that mod_gzip does with regards to +evaluating user-agents and inbound request headers and while it +is (sometimes) able to 'negotiate' for static compressed versions +of files it does not have anything comparable to the safety checks +or the include/exclude item filtering logic that mod_gzip has. + +It is much 'safer' to set the 'mod_gzip_can_negotiate' +flag to 'Yes' and let mod_gzip check for ( and deliver ) +static compressed versions of files than it is to let +mod_negotiate make the same decisions. + +If mod_gzip finds a pre-compressed version of a requested +file and all the filtering and safety checks allow that +static compressed version to be delivered back to the +client then the mod_gzip 'result' string in the access.log +file will be... + +mod_gzip: DECLINED:STATIC_GZ_FOUND + +In this case... 'DECLINED' does not mean that no compressed +data was returned. It means that mod_gzip has screened the +request according to its filtering logic and has concluded +that is is OK for Apache itself to flow the pre-compressed +version back to the user-agent. 'DECLINED' means it was +not 'dynamically' compressed and 'STATIC_GZ_FOUND' means +a pre-compressed version was returned to the user-agent. + +In the cases where a user-agent has specifically requested +a filename.html.gz file then the result string will be... + +mod_gzip: DECLINED:FEXT_GZ + +Which means that mod_gzip simply 'passed' on the transaction. + + +* 'mod_gzip_command_version' directive has returned. + +The mod_gzip 'command' interface is back but now it +has a different 'twist'. For security reasons you must +now specify yourself what the 'command' is for certain +functions like 'Get version'. + +This way... only you will know what the command is so +you can test your own site(s). The command(s) can be +different strings for each Virtual Host, if desired. + +To enable mod_gzip to do the 'version' command just +add this to your httpd.conf file... + +mod_gzip_command_version mod_gzip_show_version + +The 'mod_gzip_show_version' string can be anything you +like and this is the 'command' that you can now send +to your server to have it respond with mod_gzip version +information as an HTML response page. + +Example: Using the above command definition all you have +to do to get the Server to provide the mod_gzip version +information ( and whether or not mod_gzip is enabled +for that location ) is type this into your browser... + +http://www.your_server_name.com/mod_gzip_show_version + +If you have added the 'mod_gzip_command_version' config +parameter to 'your_server_name' httpd.conf file then +you will not get a '404 File not found'... you will get this... + +mod_gzip is available on this Server... +mod_gzip_version = 1.3.19.1a +mod_gzip_on = Yes + +If mod_gzip is installed but is not 'on' for whatever +location is requested ( based on Virtual Server name ) +then this will also be indicated with 'mod_gzip_on = No' +in the response. + +This is a good way to tell 3 things... + +1. Is mod_gzip installed and functioning correctly. +2. What version is it? +3. Is mod_gzip turned 'on' for the requested 'location' (Server)? + +The command interface will check the entire URI for the +command pickup string so, if you desire, you can do this +as well... + +http://www.your_server_name.com/dummypage.html?mod_gzip_show_version + +The command string does not have to be part of the URI filename +and can be included as a query parm following any filename. +You will not receive the file... you will get the mod_gzip +command result page instead. + +This might work better for some who want to add the 'command' +link to existing pages since, if mod_gzip is not installed +on 'your_server_name', Apache will still try to locate and +return the page called 'dummypage.html' which might be better +for some scenarios than a '404 Not found' response. + + +* New 'uri' include/exclude record type added... + +The existing 'type' names for inclusion/exclusion should +be adequate for just about anything but one or two +scenarios involving complicated uses of 'ScriptAlias' +have surfaced which could probably benefit from doing +a keyword lookup on the URI itself and not the filename +or mime type. + +To that end there is now a new 'type' name that can used... + +mod_gzip_item_include uri .*foo.* + +This will cause all requests for URIs with the characters 'foo' +in it to be 'included'. + +NOTE: You can use either 'uri' or 'url' as the record type name. + +Using the 'file' pickup type is still the best ( and most accurate ) +thing to do so using the new 'uri' pickup is 'swim at your own risk'. +It should work fine if used properly. + + +* In-memory compression option is back on. + +The 'in-memory' compression option which was temporarily +disabled in the prior version is now back on. The +'mod_gzip_maximum_inmem_size xxxx' config parameter is +what sets the maximum size of a source object ( in bytes ) +that can/will be compressed completely in memory. + +If the 'mod_gzip_maximum_inmem_size' value is either +ZERO or not specified then the 'in-memory' compression +option is effectively disabled and will not be used. + +Due to one remaining problem with some OS'es being unable +to use allocations greater than 64k the maximum value +is limited to 60,000 bytes ( allowing for some overspill ). + +60,000 bytes is perfectly adequate for most responses. +Anything larger than that probably SHOULD use a workfile. + +Next version will allow any size to be used but be forewarned +that testing has already shown that on a busy Server anything +over 60k should probably not use the 'in-memory' option anyway +since a busy Server needs all the memory it can get spread across +hundreds of transactions per second to keep the performance up. + + +* mod_gzip_item_include/exclude description updated. + +Used to report... +ARG1=[mime,file,handler,agent] + +Now correctly reports... +ARG1=[mime,file,uri,handler,reqheader,rspheader] + + +END OF FILE + + + diff --git a/net-www/mod_gzip/files/commands.txt b/net-www/mod_gzip/files/commands.txt new file mode 100644 index 000000000000..cbb327803857 --- /dev/null +++ b/net-www/mod_gzip/files/commands.txt @@ -0,0 +1,262 @@ + +* MOD_GZIP APACHE CONFIGURATION DIRECTIVES + +NOTE: This documentation applies to mod-gzip +version(s) 1.3.19.1a ( and above ). + +* HOW TO ADD MOD_GZIP INFORMATION TO YOUR APACHE LOG FILES + +mod_gzip uses the existing Apache 'notes' method to allow you +to add information to your existing Apache access.log file(s). + +The following special 'LogFormat' will show only the compression +rate achieved. If a file as not compressed a 'dash' or a ZERO +will print instead of the number... + +LogFormat "%h %l %u %t \"%r\" %>s %b +mod_gzip: %{mod_gzip_compression_ratio}npct." +common_with_mod_gzip_info1 + +The following special 'LogFormat' will show all the details +about a compressed file... + +LogFormat "%h %l %u %t \"%r\" %>s %b +mod_gzip: %{mod_gzip_result}n +In:%{mod_gzip_input_size}n +Out:%{mod_gzip_output_size}n:%{mod_gzip_compression_ratio}npct." +common_with_mod_gzip_info2 + +In order to actually use any special 'LogFormat' you must specify +it as a 'CustomLog' entry using the following Apache directive... + +CustomLog logs/access.log common_with_mod_gzip_info2 + +Warning: If you have more than one 'CustomLog' entry defined then +you will get more than 1 log entry for each page requested from +the Server. Unless you desire multiple log entries for each +request then make sure there is only one active 'CustomLog' entry +in your httpd.conf file. + +See the Apache documentation itself for more information about +how to use the 'LogFormat' and 'CustomLog' directives. + + +* MOD_GZIP CONFIGURATION DIRECTIVES + +These are the mod_gzip configuration directives that can be +added to your existing Apache httpd.conf configuration file... + +mod_gzip_on [Yes/No] +Yes=mod_gzip will handle requests. No=mod_gzip is disabled. + +mod_gzip_add_header_count [Yes/No] +Yes=Add header byte counts to Common Log Format output total(s). + +mod_gzip_keep_workfiles [Yes/No] +Yes=Keep any work files used. No=Automatically delete any work files used. +Only set this to 'Yes' for debugging purposes. + +mod_gzip_dechunk [Yes/No] +Yes=Allow removal of 'Transfer-encoding: chunked' when necessary. +Certain 'Back-end' CGI processors such as PHP4 and ColdFusion are +always returning responses using 'Transfer-Encoding: chunked'. +In order for these responses to be compressed you should set this +directive to 'Yes' which will allow mod_gzip to remove the +'Transfer-Encoding: chunked' if/when it is necessary to do so. + +mod_gzip_min_http [ 1000 or 1001 or ???? ] +Minimum HTTP protocol value to support. 1000 = HTTP/1.0 1001 = HTTP/1.1 +If a browser or User-Agent does not report itself as being capable +of doing the 'minimum' HTTP level then no compression will be sent. +The directive uses the same 'numeric' protocol numbers used internally +by Apache itself. + +mod_gzip_minimum_file_size [bytes] +Minimum size ( bytes ) of a file eligible for compression. + +mod_gzip_maximum_file_size [bytes] +Maximum size ( bytes ) of a file eligible for compression. + +mod_gzip_maximum_inmem_size [bytes] +Maximum size ( bytes ) to use for in-memory compression. + + +mod_gzip_temp_dir [Win32=c:\pathname UNIX=/pathname] + +The directory to use for work files and compression cache. + +The directory must already exist and have the correct +read/write permissions for the user/group name(s) used by +the Server while it is running. + +Do not add a slash to the end of the directory pathname. + +If not specifed, the default for Windows is "c:\temp" and the +default for UNIX is "/tmp". + +mod_gzip_item_include ARG1 ARG2 +ARG1=[mime,handler,file,uri,reqheader,rspheader] +ARG2=[Name of item to INCLUDE in list of things that should be compressed] + +mod_gzip_item_exclude ARG1 ARG2 +ARG1=[mime,handler,file,uri,reqheader,rspheader] +ARG2=[Name of item to EXCLUDE from list of things that should be compressed] + +mod_gzip_command_version [string] +User defined pickup string to use for mod_gzip version command. + +mod_gzip_can_negotiate [Yes/No] +Yes=Negotiate/send static compressed versions of files No=Do not negotiate. + + +The following commands are no longer supported... + +mod_gzip_add_vinfo +mod_gzip_do_static_files +mod_gzip_do_cgi +mod_gzip_verbose_debug +mod_gzip_post_on + + +* USING MOD_INFO TO SEE ALL APACHE MODULE CONFIGURATION DIRECTIVES... + +You can always simply 'ask' any Apache Web Server to show you all +the modules installed and print a list of all the directives +available for each module. + +"mod_info" is the Apache standard module that supplies the information. + +This is a text based reprint of the Apache documentation +page for mod_info taken from a copy of Apache 1.3.12.. + +[snip] + +Apache HTTP Server Version 1.3 + +Module mod_info + +This module is contained in the mod_info.c file. +It provides a comprehensive overview of the server configuration +including all installed modules and directives in the +configuration files. + +This module is not compiled into the server by default. + +It is only available in Apache 1.1 and later. + +To enable it, add the following line to the server build +Configuration file, and rebuild the server: + +AddModule modules/standard/mod_info.o + +To configure it, add the following to your access.conf file. + +<Location /server-info> +SetHandler server-info +</Location> + +You may wish to add a <Limit> clause inside the location directive +to limit access to your server configuration information. + +Once configured, the server information is obtained by accessing + +http://your.host.dom/server-info + +Note that the configuration files are read by the module at run-time, +and therefore the display may not reflect the running server's active +configuration if the files have been changed since the server was last +reloaded. Also, the configuration files must be readable by the user +as which the server is running (see the User directive), or else the +directive settings will not be listed. + +It should also be noted that if mod_info is compiled into the server, +its handler capability is available in all configuration files, +including per-directory files (e.g., .htaccess). +This may have security-related ramifications for your site. + +AddModuleInfo + +Syntax: AddModuleInfo module-name string +Context: server config, virtual host +Status: base +Module: mod_browser +Compatibility: Apache 1.3 and above + +This allows the content of string to be shown as HTML interpreted, +Additional Information for the module module-name. Example: + +AddModuleInfo mod_auth.c +'See <A HREF="http://www.apache.org/docs/mod/mod_auth.html"> +http://www.apache.org/docs/mod/mod_auth.html</A>' + +[snip] + +If both mod_gzip and mod_info are installed and you send the +following request to the Server... + +http://your.host.dom/server-info + +...then this is what you should see in the mod_gzip section +of the report... + +mod_gzip_on +Yes=mod_gzip will handle requests. No=mod_gzip is disabled. + +mod_gzip_add_header_count +Yes=Add header byte counts to Common Log Format output total(s). + +mod_gzip_keep_workfiles +Yes=Keep any work files used. No=Automatically delete any work files used. + +mod_gzip_dechunk +Yes=Allow removal of 'Transfer-encoding: chunked' when necessary. + +mod_gzip_min_http +Minimum HTTP protocol value to support. 1000 = HTTP/1.0 1001 = HTTP/1.1 + +mod_gzip_minimum_file_size +Minimum size ( bytes ) of a file eligible for compression. + +mod_gzip_maximum_file_size +Maximum size ( bytes ) of a file eligible for compression. + +mod_gzip_maximum_inmem_size +Maximum size ( bytes ) to use for in-memory compression. + +mod_gzip_temp_dir +The directory to use for work files and compression cache. + +mod_gzip_item_include +ARG1=[mime,handler,file,uri,reqheader,rspheader] +ARG2=[Name of item to INCLUDE in list of things that should be compressed] + +mod_gzip_item_exclude +ARG1=[mime,handler,file,uri,reqheader,rspheader] +ARG2=[Name of item to EXCLUDE from list of things that should be compressed] + +mod_gzip_command_version +User defined pickup string to use for mod_gzip version command. + +mod_gzip_can_negotiate +Yes=Negotiate/send static compressed versions of files No=Do not negotiate. + +mod_gzip_add_vinfo +Configuration directive no longer supported. + +mod_gzip_do_static_files +Configuration directive no longer supported. + +mod_gzip_do_cgi +Configuration directive no longer supported. + +mod_gzip_verbose_debug +Configuration directive no longer supported. + +mod_gzip_post_on +Configuration directive no longer supported. + +[snip] + +End of document. + + diff --git a/net-www/mod_gzip/files/digest-mod_gzip-1.3.19.1a b/net-www/mod_gzip/files/digest-mod_gzip-1.3.19.1a new file mode 100644 index 000000000000..4c83e458fecf --- /dev/null +++ b/net-www/mod_gzip/files/digest-mod_gzip-1.3.19.1a @@ -0,0 +1 @@ +MD5 4213af3e9a6cf208fa29b04512ce7c75 mod_gzip.c.gz 55269 diff --git a/net-www/mod_gzip/files/mod_gzip.conf b/net-www/mod_gzip/files/mod_gzip.conf new file mode 100644 index 000000000000..155af97b71f2 --- /dev/null +++ b/net-www/mod_gzip/files/mod_gzip.conf @@ -0,0 +1,27 @@ +<IfModule mod_gzip.c> + +mod_gzip_on Yes +mod_gzip_dechunk Yes +mod_gzip_minimum_file_size 300 +mod_gzip_maximum_file_size 0 +mod_gzip_maximum_inmem_size 100000 +mod_gzip_keep_workfiles No +mod_gzip_temp_dir /tmp +mod_gzip_item_include file \.html$ +mod_gzip_item_include file \.htm$ +mod_gzip_item_include file \.jsp$ +mod_gzip_item_include file \.php$ +mod_gzip_item_include file \.pl$ +mod_gzip_item_include mime ^text/.* +mod_gzip_item_include mime ^application/x-httpd-php +mod_gzip_item_include mime ^httpd/unix-directory$ +mod_gzip_item_include handler ^perl-script$ +mod_gzip_item_include handler ^server-status$ +mod_gzip_item_include handler ^server-info$ +mod_gzip_item_include handler "jserv-servlet" +mod_gzip_item_exclude file \.css$ +mod_gzip_item_exclude file \.js$ +mod_gzip_item_exclude file \.wml$ +mod_gzip_item_exclude mime ^image/.* + +</IfModule> diff --git a/net-www/mod_gzip/mod_gzip-1.3.19.1a.ebuild b/net-www/mod_gzip/mod_gzip-1.3.19.1a.ebuild new file mode 100644 index 000000000000..9093f9451b81 --- /dev/null +++ b/net-www/mod_gzip/mod_gzip-1.3.19.1a.ebuild @@ -0,0 +1,49 @@ +# Copyright 1999-2002 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License, v2 or later +# Maintainer: Donny Davies <woodchip@gentoo.org> +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_gzip/mod_gzip-1.3.19.1a.ebuild,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +DESCRIPTION="Apache module which acts as an Internet Content Accelerator" +HOMEPAGE="http://www.remotecommunications.com/apache/mod_gzip/" + +S=${WORKDIR}/${P} +SRC_URI="http://www.remotecommunications.com/apache/${PN}/src/${PV}/${PN}.c.gz" + +DEPEND="virtual/glibc >=net-www/apache-1.3.24 >=sys-libs/zlib-1.1.4" + +src_unpack() { + mkdir ${P} ; cd ${S} + cp ${DISTDIR}/${A} . + gunzip ${A} || die +} + +src_compile() { + /usr/sbin/apxs -I/usr/include -L/usr/lib -lz -c mod_gzip.c + assert "compile problem" +} + +src_install() { + exeinto /usr/lib/apache-extramodules + doexe mod_gzip.so + + dodoc ${FILESDIR}/{changes,commands}.txt + + insinto /etc/apache/conf/addon-modules + doins ${FILESDIR}/mod_gzip.conf +} + +pkg_postinst() { + einfo + einfo "Execute ebuild /var/db/pkg/${CATEGORY}/${PF}/${PF}.ebuild config" + einfo "to have your apache.conf auto-updated for use with this module." + einfo "You should then edit your /etc/conf.d/apache file to suit." + einfo +} + +pkg_config() { + ${ROOT}/usr/sbin/apacheaddmod \ + ${ROOT}/etc/apache/conf/apache.conf \ + extramodules/mod_gzip.so mod_gzip.c gzip_module \ + define=GZIP addconf=conf/addon-modules/mod_gzip.conf + :; +} diff --git a/net-www/mod_mp3/ChangeLog b/net-www/mod_mp3/ChangeLog new file mode 100644 index 000000000000..5bbdbf9ef6c6 --- /dev/null +++ b/net-www/mod_mp3/ChangeLog @@ -0,0 +1,9 @@ +# ChangeLog for net-www/mod_mp3 +# Copyright 2002 Gentoo Technologies, Inc.; Distributed under the GPL +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_mp3/ChangeLog,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +*mod_mp3-0.35 (9 Apr 2002) + + 9 Apr 2002; Donny Davies <woodchip@gentoo.org> : + + New package to go along with the rewritten apache ebuild. diff --git a/net-www/mod_mp3/files/digest-mod_mp3-0.35 b/net-www/mod_mp3/files/digest-mod_mp3-0.35 new file mode 100644 index 000000000000..5754bce8c732 --- /dev/null +++ b/net-www/mod_mp3/files/digest-mod_mp3-0.35 @@ -0,0 +1 @@ +MD5 cad75f267767127b829ac73a809a2954 mod_mp3-0.35.tar.gz 43694 diff --git a/net-www/mod_mp3/files/mod_mp3.conf b/net-www/mod_mp3/files/mod_mp3.conf new file mode 100644 index 000000000000..6fad951f6017 --- /dev/null +++ b/net-www/mod_mp3/files/mod_mp3.conf @@ -0,0 +1,16 @@ +<IfModule mod_mp3.c> + +#Listen 80 +Listen 8000 + +<VirtualHost _default_:8000> + +MP3Engine On +MP3CastName "mod_mp3" +MP3Genre "Sounds of Open Source" +MP3 /export/mp3 +Timeout 1200 + +</VirtualHost> + +</IfModule> diff --git a/net-www/mod_mp3/mod_mp3-0.35.ebuild b/net-www/mod_mp3/mod_mp3-0.35.ebuild new file mode 100644 index 000000000000..fdd74fce4549 --- /dev/null +++ b/net-www/mod_mp3/mod_mp3-0.35.ebuild @@ -0,0 +1,46 @@ +# Copyright 1999-2002 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License, v2 or later +# Maintainer: Donny Davies <woodchip@gentoo.org> +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_mp3/mod_mp3-0.35.ebuild,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +DESCRIPTION="Module for turning Apache into an MP3 or Ogg streaming server" +HOMEPAGE="http://media.tangent.org/" + +S=${WORKDIR}/${P} +SRC_URI="http://software.tangent.org/download/${P}.tar.gz" + +DEPEND="virtual/glibc >=net-www/apache-1.3.24 sys-devel/perl" + +src_compile() { + ./configure || die + make clean + make || die "compile problem" +} + +src_install() { + exeinto /usr/lib/apache-extramodules + doexe src/mod_mp3.so + + dodoc CONTRIBUTORS MANIFEST TODO ChangeLog LICENSE README VERSION + dodoc support/{faq.pod,mp3_with_mysql.conf,mysql_schema,pgsql_schema} + dohtml faq.html + + insinto /etc/apache/conf/addon-modules + doins ${FILESDIR}/mod_mp3.conf +} + +pkg_postinst() { + einfo + einfo "Execute ebuild /var/db/pkg/${CATEGORY}/${PF}/${PF}.ebuild config" + einfo "to have your apache.conf auto-updated for use with this module." + einfo "You should then edit your /etc/conf.d/apache file to suit." + einfo +} + +pkg_config() { + ${ROOT}/usr/sbin/apacheaddmod \ + ${ROOT}/etc/apache/conf/apache.conf \ + extramodules/mod_mp3.so mod_mp3.c mp3_module \ + define=MP3 addconf=conf/addon-modules/mod_mp3.conf + :; +} diff --git a/net-www/mod_ssl/ChangeLog b/net-www/mod_ssl/ChangeLog new file mode 100644 index 000000000000..a1d518931a8a --- /dev/null +++ b/net-www/mod_ssl/ChangeLog @@ -0,0 +1,9 @@ +# ChangeLog for net-www/mod_ssl +# Copyright 2002 Gentoo Technologies, Inc.; Distributed under the GPL +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_ssl/ChangeLog,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +*mod_ssl-2.8.8 (9 Apr 2002) + + 9 Apr 2002; Donny Davies <woodchip@gentoo.org> : + + New package to go along with the rewritten apache ebuild. diff --git a/net-www/mod_ssl/files/digest-mod_ssl-2.8.8 b/net-www/mod_ssl/files/digest-mod_ssl-2.8.8 new file mode 100644 index 000000000000..a66efcbff2ff --- /dev/null +++ b/net-www/mod_ssl/files/digest-mod_ssl-2.8.8 @@ -0,0 +1 @@ +MD5 a48e8b5878f221694983747e60973662 mod_ssl-2.8.8-1.3.24.tar.gz 752322 diff --git a/net-www/mod_ssl/files/gentestcrt.sh b/net-www/mod_ssl/files/gentestcrt.sh new file mode 100644 index 000000000000..d1e9e11facd9 --- /dev/null +++ b/net-www/mod_ssl/files/gentestcrt.sh @@ -0,0 +1,242 @@ +#!/bin/sh +## +## gentestcrt -- Create self-signed test certificate +## (C) 2001 Jean-Michel Dault <jmdault@mandrakesoft.com> and Mandrakesoft +## Based on cca.sh script by Ralf S. Engelschall +## + +# external tools +openssl="/usr/bin/openssl" + +# some optional terminal sequences +case $TERM in + xterm|xterm*|vt220|vt220*) + T_MD=`echo dummy | awk '{ printf("%c%c%c%c", 27, 91, 49, 109); }'` + T_ME=`echo dummy | awk '{ printf("%c%c%c", 27, 91, 109); }'` + ;; + vt100|vt100*) + T_MD=`echo dummy | awk '{ printf("%c%c%c%c%c%c", 27, 91, 49, 109, 0, 0); }'` + T_ME=`echo dummy | awk '{ printf("%c%c%c%c%c", 27, 91, 109, 0, 0); }'` + ;; + default) + T_MD='' + T_ME='' + ;; +esac + +# find some random files +# (do not use /dev/random here, because this device +# doesn't work as expected on all platforms) +randfiles='' +for file in /var/log/messages /var/adm/messages \ + /kernel /vmunix /vmlinuz \ + /etc/hosts /etc/resolv.conf; do + if [ -f $file ]; then + if [ ".$randfiles" = . ]; then + randfiles="$file" + else + randfiles="${randfiles}:$file" + fi + fi +done + + +echo "${T_MD}maketestcrt -- Create self-signed test certificate${T_ME}" +echo "(C) 2001 Jean-Michel Dault <jmdault@mandrakesoft.com> and Mandrakesoft" +echo "Based on cca.sh script by Ralf S. Engelschall" +echo "" + +grep -q -s DUMMY server.crt && mv server.crt server.crt.dummy +grep -q -s DUMMY server.key && mv server.key server.key.dummy + +echo "" +echo "" + +if [ ! -e ./server.crt -a ! -e ./server.key ];then + echo "Will create server.key and server.crt in `pwd`" +else + echo "server.key and server.crt already exist, dying" + exit +fi + +echo "" + + +mkdir -p /tmp/tmpssl-$$ +pushd /tmp/tmpssl-$$ > /dev/null + + + echo "${T_MD}INITIALIZATION${T_ME}" + + echo "" + echo "${T_MD}Generating custom Certificate Authority (CA)${T_ME}" + echo "______________________________________________________________________" + echo "" + echo "${T_MD}STEP 1: Generating RSA private key for CA (1024 bit)${T_ME}" + cp /dev/null ca.rnd + echo '01' >ca.ser + if [ ".$randfiles" != . ]; then + $openssl genrsa -rand $randfiles -out ca.key 1024 + else + $openssl genrsa -out ca.key 1024 + fi + if [ $? -ne 0 ]; then + echo "cca:Error: Failed to generate RSA private key" 1>&2 + exit 1 + fi + echo "______________________________________________________________________" + echo "" + echo "${T_MD}STEP 2: Generating X.509 certificate signing request for CA${T_ME}" + cat >.cfg <<EOT +[ req ] +default_bits = 1024 +distinguished_name = req_DN +RANDFILE = ca.rnd +[ req_DN ] +countryName = "1. Country Name (2 letter code)" +#countryName_default = CA +#countryName_min = 2 +countryName_max = 2 +stateOrProvinceName = "2. State or Province Name (full name) " +#stateOrProvinceName_default = "Quebec" +localityName = "3. Locality Name (eg, city) " +#localityName_default = "Montreal" +0.organizationName = "4. Organization Name (eg, company) " +0.organizationName_default = "Apache HTTP Server" +organizationalUnitName = "5. Organizational Unit Name (eg, section) " +organizationalUnitName_default = "For testing purposes only" +commonName = "6. Common Name (eg, CA name) " +commonName_max = 64 +commonName_default = "localhost" +emailAddress = "7. Email Address (eg, name@FQDN)" +emailAddress_max = 40 +#emailAddress_default = "root@localhost" +EOT + $openssl req -config .cfg -new -key ca.key -out ca.csr + if [ $? -ne 0 ]; then + echo "cca:Error: Failed to generate certificate signing request" 1>&2 + exit 1 + fi + echo "______________________________________________________________________" + echo "" + echo "${T_MD}STEP 3: Generating X.509 certificate for CA signed by itself${T_ME}" + cat >.cfg <<EOT +#extensions = x509v3 +#[ x509v3 ] +#subjectAltName = email:copy +#basicConstraints = CA:true,pathlen:0 +#nsComment = "CCA generated custom CA certificate" +#nsCertType = sslCA +EOT + $openssl x509 -extfile .cfg -req -days 365 -signkey ca.key -in ca.csr -out ca.crt + if [ $? -ne 0 ]; then + echo "cca:Error: Failed to generate self-signed CA certificate" 1>&2 + exit 1 + fi + echo "______________________________________________________________________" + echo "" + echo "${T_MD}RESULT:${T_ME}" + $openssl verify ca.crt + if [ $? -ne 0 ]; then + echo "cca:Error: Failed to verify resulting X.509 certificate" 1>&2 + exit 1 + fi + $openssl x509 -text -in ca.crt + $openssl rsa -text -in ca.key + + echo "${T_MD}CERTIFICATE GENERATION${T_ME}" + user="server" + + echo "" + echo "${T_MD}Generating custom USER${T_ME} [$user]" + echo "______________________________________________________________________" + echo "" + echo "${T_MD}STEP 5: Generating RSA private key for USER (1024 bit)${T_ME}" + if [ ".$randfiles" != . ]; then + $openssl genrsa -rand $randfiles -out $user.key 1024 + else + $openssl genrsa -out $user.key 1024 + fi + if [ $? -ne 0 ]; then + echo "cca:Error: Failed to generate RSA private key" 1>&2 + exit 1 + fi + echo "______________________________________________________________________" + echo "" + echo "${T_MD}STEP 6: Generating X.509 certificate signing request for USER${T_ME}" + cat >.cfg <<EOT +[ req ] +default_bits = 1024 +distinguished_name = req_DN +RANDFILE = ca.rnd +[ req_DN ] +countryName = "1. Country Name (2 letter code)" +#countryName_default = XY +#countryName_min = 2 +countryName_max = 2 +stateOrProvinceName = "2. State or Province Name (full name) " +#stateOrProvinceName_default = "Unknown" +localityName = "3. Locality Name (eg, city) " +#localityName_default = "Server Room" +0.organizationName = "4. Organization Name (eg, company) " +0.organizationName_default = "Apache HTTP Server" +organizationalUnitName = "5. Organizational Unit Name (eg, section) " +organizationalUnitName_default = "Test Certificate" +commonName = "6. Common Name (eg, DOMAIN NAME) " +commonName_max = 64 +commonName_default = "localhost" +emailAddress = "7. Email Address (eg, name@fqdn)" +emailAddress_max = 40 +#emailAddress_default = "root@localhost" +EOT + $openssl req -config .cfg -new -key $user.key -out $user.csr + if [ $? -ne 0 ]; then + echo "cca:Error: Failed to generate certificate signing request" 1>&2 + exit 1 + fi + rm -f .cfg + echo "______________________________________________________________________" + echo "" + echo "${T_MD}STEP 7: Generating X.509 certificate signed by own CA${T_ME}" + cat >.cfg <<EOT +#extensions = x509v3 +#[ x509v3 ] +#subjectAltName = email:copy +#basicConstraints = CA:false,pathlen:0 +#nsComment = "CCA generated client certificate" +#nsCertType = client +EOT + $openssl x509 -extfile .cfg -days 365 -CAserial ca.ser -CA ca.crt -CAkey ca.key -in $user.csr -req -out $user.crt + if [ $? -ne 0 ]; then + echo "cca:Error: Failed to generate X.509 certificate" 1>&2 + exit 1 + fi + caname="`$openssl x509 -noout -text -in ca.crt |\ + grep Subject: | sed -e 's;.*CN=;;' -e 's;/Em.*;;'`" + username="`$openssl x509 -noout -text -in $user.crt |\ + grep Subject: | sed -e 's;.*CN=;;' -e 's;/Em.*;;'`" +# echo "Assembling PKCS#12 package" +# $openssl pkcs12 -export -in $user.crt -inkey $user.key -certfile ca.crt -name "$username" -caname "$caname" -out $user.p12 + echo "______________________________________________________________________" + echo "" + echo "${T_MD}RESULT:${T_ME}" + $openssl verify -CAfile ca.crt $user.crt + if [ $? -ne 0 ]; then + echo "cca:Error: Failed to verify resulting X.509 certificate" 1>&2 + exit 1 + fi + $openssl x509 -text -in $user.crt + $openssl rsa -text -in $user.key + + +popd >/dev/null + + +rm -f /tmp/tmpssl-$$/*.csr +rm -f /tmp/tmpssl-$$/ca.* +chmod 400 /tmp/tmpssl-$$/* + +echo "Certificate creation done!" +cp /tmp/tmpssl-$$/server.* . + +rm -rf /tmp/tmpssl-$$ diff --git a/net-www/mod_ssl/files/mod_ssl.conf b/net-www/mod_ssl/files/mod_ssl.conf new file mode 100644 index 000000000000..90ff9a0219d1 --- /dev/null +++ b/net-www/mod_ssl/files/mod_ssl.conf @@ -0,0 +1,69 @@ +<IfModule mod_ssl.c> + +##-------------------------------------------------------------------------- +## Add additional SSL configuration directives which provide a +## robust default configuration: virtual server on port 443 +## which speaks SSL. +##-------------------------------------------------------------------------- +## +## SSL Support +## +## When we also provide SSL we have to listen to the +## standard HTTP port (see above) and to the HTTPS port +## +Listen 443 + +## +## SSL Global Context +## +## All SSL configuration in this context applies both to +## the main server and all SSL-enabled virtual hosts. +## + +# +# Some MIME-types for downloading Certificates and CRLs +# +AddType application/x-x509-ca-cert .crt +AddType application/x-pkcs7-crl .crl + +# Pass Phrase Dialog: +# Configure the pass phrase gathering process. +# The filtering dialog program (`builtin' is a internal +# terminal dialog) has to provide the pass phrase on stdout. +SSLPassPhraseDialog builtin + +# Inter-Process Session Cache: +# Configure the SSL Session Cache: First either `none' +# or `dbm:/path/to/file' for the mechanism to use and +# second the expiring timeout (in seconds). +#SSLSessionCache none +#SSLSessionCache dbm:logs/ssl_scache +SSLSessionCache shm:logs/ssl_scache(512000) +SSLSessionCacheTimeout 300 + +# Semaphore: +# Configure the path to the mutual explusion semaphore the +# SSL engine uses internally for inter-process synchronization. +SSLMutex sem + +# Pseudo Random Number Generator (PRNG): +# Configure one or more sources to seed the PRNG of the +# SSL library. The seed data should be of good random quality. +SSLRandomSeed startup builtin +SSLRandomSeed connect builtin +#SSLRandomSeed startup file:/dev/random 512 +#SSLRandomSeed startup file:/dev/urandom 512 +#SSLRandomSeed connect file:/dev/random 512 +#SSLRandomSeed connect file:/dev/urandom 512 + +# Logging: +# The home of the dedicated SSL protocol logfile. Errors are +# additionally duplicated in the general error log file. Put +# this somewhere where it cannot be used for symlink attacks on +# a real server (i.e. somewhere where only root can write). +# Log levels are (ascending order: higher ones include lower ones): +# none, error, warn, info, trace, debug. +SSLLog logs/ssl_engine_log +SSLLogLevel info + +</IfModule> diff --git a/net-www/mod_ssl/files/ssl.default-vhost.conf b/net-www/mod_ssl/files/ssl.default-vhost.conf new file mode 100644 index 000000000000..3f5edaec28c0 --- /dev/null +++ b/net-www/mod_ssl/files/ssl.default-vhost.conf @@ -0,0 +1,151 @@ +<IfModule mod_ssl.c> + +## +## SSL Virtual Host Context +## + +<VirtualHost _default_:443> + +# General setup for the virtual host +DocumentRoot /home/httpd/htdocs +#ServerName new.host.name +#ServerAdmin you@your.address +ErrorLog logs/ssl-error_log +TransferLog logs/ssl-access_log + +# SSL Engine Switch: +# Enable/Disable SSL for this virtual host. +SSLEngine on + +# SSL Cipher Suite: +# List the ciphers that the client is permitted to negotiate. +# See the mod_ssl documentation for a complete list. +SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL + +# Server Certificate: +# Point SSLCertificateFile at a PEM encoded certificate. If +# the certificate is encrypted, then you will be prompted for a +# pass phrase. Note that a kill -HUP will prompt again. A test +# certificate can be generated with `make certificate' under +# built time. +SSLCertificateFile conf/ssl/server.crt + +# Server Private Key: +# If the key is not combined with the certificate, use this +# directive to point at the key file. +SSLCertificateKeyFile conf/ssl/server.key + +# Server Certificate Chain: +# Point SSLCertificateChainFile at a file containing the +# concatenation of PEM encoded CA certificates which form the +# certificate chain for the server certificate. Alternatively +# the referenced file can be the same as SSLCertificateFile +# when the CA certificates are directly appended to the server +# certificate for convinience. +#SSLCertificateChainFile @@ServerRoot@@/conf/ssl/ssl.crt/ca.crt + +# Certificate Authority (CA): +# Set the CA certificate verification path where to find CA +# certificates for client authentication or alternatively one +# huge file containing all of them (file must be PEM encoded) +# Note: Inside SSLCACertificatePath you need hash symlinks +# to point to the certificate files. Use the provided +# Makefile to update the hash symlinks after changes. +#SSLCACertificatePath @@ServerRoot@@/conf/ssl/ssl.crt +#SSLCACertificateFile @@ServerRoot@@/conf/sssl/sl.crt/ca-bundle.crt + +# Certificate Revocation Lists (CRL): +# Set the CA revocation path where to find CA CRLs for client +# authentication or alternatively one huge file containing all +# of them (file must be PEM encoded) +# Note: Inside SSLCARevocationPath you need hash symlinks +# to point to the certificate files. Use the provided +# Makefile to update the hash symlinks after changes. +#SSLCARevocationPath @@ServerRoot@@/conf/ssl/ssl.crl +#SSLCARevocationFile @@ServerRoot@@/conf/ssl/ssl.crl/ca-bundle.crl + +# Client Authentication (Type): +# Client certificate verification type and depth. Types are +# none, optional, require and optional_no_ca. Depth is a +# number which specifies how deeply to verify the certificate +# issuer chain before deciding the certificate is not valid. +#SSLVerifyClient require +#SSLVerifyDepth 10 + +# Access Control: +# With SSLRequire you can do per-directory access control based +# on arbitrary complex boolean expressions containing server +# variable checks and other lookup directives. The syntax is a +# mixture between C and Perl. See the mod_ssl documentation +# for more details. +#<Location /> +#SSLRequire ( %{SSL_CIPHER} !~ m/^(EXP|NULL)-/ \ +# and %{SSL_CLIENT_S_DN_O} eq "Snake Oil, Ltd." \ +# and %{SSL_CLIENT_S_DN_OU} in {"Staff", "CA", "Dev"} \ +# and %{TIME_WDAY} >= 1 and %{TIME_WDAY} <= 5 \ +# and %{TIME_HOUR} >= 8 and %{TIME_HOUR} <= 20 ) \ +# or %{REMOTE_ADDR} =~ m/^192\.76\.162\.[0-9]+$/ +#</Location> + +# SSL Engine Options: +# Set various options for the SSL engine. +# FakeBasicAuth: +# Translate the client X.509 into a Basic Authorisation. This means that +# the standard Auth/DBMAuth methods can be used for access control. The +# user name is the `one line' version of the client's X.509 certificate. +# Note that no password is obtained from the user. Every entry in the user +# file needs this password: `xxj31ZMTZzkVA'. +# ExportCertData: +# This exports two additional environment variables: SSL_CLIENT_CERT and +# SSL_SERVER_CERT. These contain the PEM-encoded certificates of the +# server (always existing) and the client (only existing when client +# authentication is used). This can be used to import the certificates +# into CGI scripts. +# CompatEnvVars: +# This exports obsolete environment variables for backward compatibility +# to Apache-SSL 1.x, mod_ssl 2.0.x, Sioux 1.0 and Stronghold 2.x. Use this +# to provide compatibility to existing CGI scripts. +# StrictRequire: +# This denies access when "SSLRequireSSL" or "SSLRequire" applied even +# under a "Satisfy any" situation, i.e. when it applies access is denied +# and no other module can change it. +# OptRenegotiate: +# This enables optimized SSL connection renegotiation handling when SSL +# directives are used in per-directory context. +#SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire + +# SSL Protocol Adjustments: +# The safe and default but still SSL/TLS standard compliant shutdown +# approach is that mod_ssl sends the close notify alert but doesn't wait for +# the close notify alert from client. When you need a different shutdown +# approach you can use one of the following variables: +# ssl-unclean-shutdown: +# This forces an unclean shutdown when the connection is closed, i.e. no +# SSL close notify alert is send or allowed to received. This violates +# the SSL/TLS standard but is needed for some brain-dead browsers. Use +# this when you receive I/O errors because of the standard approach where +# mod_ssl sends the close notify alert. +# ssl-accurate-shutdown: +# This forces an accurate shutdown when the connection is closed, i.e. a +# SSL close notify alert is send and mod_ssl waits for the close notify +# alert of the client. This is 100% SSL/TLS standard compliant, but in +# practice often causes hanging connections with brain-dead browsers. Use +# this only for browsers where you know that their SSL implementation +# works correctly. +# Notice: Most problems of broken clients are also related to the HTTP +# keep-alive facility, so you usually additionally want to disable +# keep-alive for those clients, too. Use variable "nokeepalive" for this. +SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown + +# Per-Server Logging: +# The home of a custom SSL log file. Use this when you want a +# compact non-error SSL logfile on a virtual host basis. +CustomLog logs/ssl_request_log \ + "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" + +RewriteEngine On +RewriteOptions inherit + +</VirtualHost> + +</IfModule> diff --git a/net-www/mod_ssl/mod_ssl-2.8.8.ebuild b/net-www/mod_ssl/mod_ssl-2.8.8.ebuild new file mode 100644 index 000000000000..6f30bf4799ac --- /dev/null +++ b/net-www/mod_ssl/mod_ssl-2.8.8.ebuild @@ -0,0 +1,73 @@ +# Copyright 1999-2002 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License, v2 or later +# Maintainer: Donny Davies <woodchip@gentoo.org> +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_ssl/mod_ssl-2.8.8.ebuild,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +MY_P=${P}-1.3.24 + +DESCRIPTION="An SSL module for the Apache Web server" +HOMEPAGE="http://www.modssl.org" + +S=${WORKDIR}/${MY_P} +SRC_URI="http://www.modssl.org/source/${MY_P}.tar.gz" + +DEPEND="virtual/glibc >=net-www/apache-1.3.24 >=dev-libs/openssl-0.9.6c" + +src_unpack() { + unpack ${A} ; cd ${S} + # proper path to openssl + cp pkg.contrib/cca.sh pkg.contrib/cca.sh.orig + sed -e 's%^\(openssl=\).*%\1"/usr/bin/openssl"%' \ + pkg.contrib/cca.sh.orig > pkg.contrib/cca.sh +} + +src_compile() { + SSL_BASE=SYSTEM \ + ./configure \ + --with-apxs=/usr/sbin/apxs || die "bad ./configure" + make || die "compile problem" +} + +src_install() { + exeinto /usr/lib/apache-extramodules + doexe pkg.sslmod/libssl.so + + exeinto /usr/lib/ssl/mod_ssl + doexe pkg.contrib/*.sh ${FILESDIR}/gentestcrt.sh + + dodoc ANNOUNCE CHANGES CREDITS LICENSE NEWS README* + mkdir -p ${D}/usr/share/doc/${PF}/html + cp -a pkg.ssldoc/* ${D}/usr/share/doc/${PF}/html + + insinto /etc/apache/conf/vhosts + doins ${FILESDIR}/ssl.default-vhost.conf + + insinto /etc/apache/conf/addon-modules + doins ${FILESDIR}/mod_ssl.conf +} + +pkg_postinst() { + install -d -o root -g root -m0755 ${ROOT}/etc/apache/conf/ssl + + einfo + einfo "Execute ebuild /var/db/pkg/${CATEGORY}/${PF}/${PF}.ebuild config" + einfo "to have your apache.conf auto-updated for use with this module." + einfo "You should then edit your /etc/conf.d/apache file to suit." + einfo + + cd ${ROOT}/etc/apache/conf/ssl + einfo "Generating self-signed test certificate in /etc/apache/conf/ssl..." + einfo "(Ignore any message from the yes command below)" + yes "" | ${ROOT}/usr/lib/ssl/mod_ssl/gentestcrt.sh >/dev/null 2>&1 + einfo +} + +pkg_config() { + ${ROOT}/usr/sbin/apacheaddmod \ + ${ROOT}/etc/apache/conf/apache.conf \ + extramodules/libssl.so mod_ssl.c ssl_module \ + define=SSL addconf=conf/addon-modules/mod_ssl.conf + + echo "Include conf/vhosts/ssl.default-vhost.conf" \ + >> ${ROOT}/etc/apache/conf/apache.conf +} diff --git a/net-www/mod_throttle/ChangeLog b/net-www/mod_throttle/ChangeLog new file mode 100644 index 000000000000..0396d2caa0a6 --- /dev/null +++ b/net-www/mod_throttle/ChangeLog @@ -0,0 +1,9 @@ +# ChangeLog for net-www/mod_throttle +# Copyright 2002 Gentoo Technologies, Inc.; Distributed under the GPL +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_throttle/ChangeLog,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +*mod_throttle-3.1.2 (9 Apr 2002) + + 9 Apr 2002; Donny Davies <woodchip@gentoo.org> : + + New package to go along with the rewritten apache ebuild. diff --git a/net-www/mod_throttle/files/digest-mod_throttle-3.1.2 b/net-www/mod_throttle/files/digest-mod_throttle-3.1.2 new file mode 100644 index 000000000000..df3d69409322 --- /dev/null +++ b/net-www/mod_throttle/files/digest-mod_throttle-3.1.2 @@ -0,0 +1 @@ +MD5 6edc45c3ea8a0855d4b0b14cf0f76404 mod_throttle312.tgz 41397 diff --git a/net-www/mod_throttle/files/mod_throttle.conf b/net-www/mod_throttle/files/mod_throttle.conf new file mode 100644 index 000000000000..d9d33423098e --- /dev/null +++ b/net-www/mod_throttle/files/mod_throttle.conf @@ -0,0 +1,21 @@ +# Place "ThrottleBps 0" in all your VirtualHost directives to monitor vhosts + +<IfModule mod_throttle.c> + +#ThrottleUser websiteusername speed 300 60 m +#ThrottleSlack 300 +ThrottleIndicator yellow 75 +ThrottleMaxDelay 5 +ThrottleContentType text/html + +# Enable status display handler +<Location /throttle> + +SetHandler throttle-info +Order deny,allow +Deny from all +Allow from 127.0.0.1 + +</Location> + +</IfModule> diff --git a/net-www/mod_throttle/mod_throttle-3.1.2.ebuild b/net-www/mod_throttle/mod_throttle-3.1.2.ebuild new file mode 100644 index 000000000000..1b103fc4ddc2 --- /dev/null +++ b/net-www/mod_throttle/mod_throttle-3.1.2.ebuild @@ -0,0 +1,44 @@ +# Copyright 1999-2002 Gentoo Technologies, Inc. +# Distributed under the terms of the GNU General Public License, v2 or later +# Maintainer: Donny Davies <woodchip@gentoo.org> +# $Header: /var/cvsroot/gentoo-x86/net-www/mod_throttle/mod_throttle-3.1.2.ebuild,v 1.1 2002/04/09 23:57:52 woodchip Exp $ + +DESCRIPTION="Bandwidth and request throttling for Apache" +HOMEPAGE="http://www.snert.com/Software/mod_throttle/" + +MY_V="`echo ${PV} | sed -e 's:\.::g'`" +S=${WORKDIR}/${P} +SRC_URI="http://www.snert.com/Software/${PN}/${PN}${MY_V}.tgz" + +DEPEND="virtual/glibc >=net-www/apache-1.3.24" + +src_compile() { + make || die "compile problem" +} + +src_install() { + exeinto /usr/lib/apache-extramodules + doexe mod_throttle.so + + dodoc CHANGES.txt LICENSE.txt + dohtml index.shtml + + insinto /etc/apache/conf/addon-modules + doins ${FILESDIR}/mod_throttle.conf +} + +pkg_postinst() { + einfo + einfo "Execute ebuild /var/db/pkg/${CATEGORY}/${PF}/${PF}.ebuild config" + einfo "to have your apache.conf auto-updated for use with this module." + einfo "You should then edit your /etc/conf.d/apache file to suit." + einfo +} + +pkg_config() { + ${ROOT}/usr/sbin/apacheaddmod \ + ${ROOT}/etc/apache/conf/apache.conf \ + extramodules/mod_throttle.so mod_throttle.c throttle_module \ + define=THROTTLE addconf=conf/addon-modules/mod_throttle.conf + :; +} |