diff options
| author |   Diego Elio Pettenò <flameeyes@gentoo.org> | 2009-07-27 16:42:44 +0000 |
|---|---|---|
| committer | Diego Elio Pettenò <flameeyes@gentoo.org> | 2009-07-27 16:42:44 +0000 |
| commit | e7d2fed3c535f7e6b56d966c5986cf25239ba21a (patch) | |
| tree | 5037e2425c8c2841c21d4f7c0a81b34a01b9e794 /www-apache | |
| parent | Remove call to elibtoolize since we call eautoreconf and force >=libtool-2 wr... (diff) | |
| download | historical-e7d2fed3c535f7e6b56d966c5986cf25239ba21a.tar.gz historical-e7d2fed3c535f7e6b56d966c5986cf25239ba21a.tar.bz2 historical-e7d2fed3c535f7e6b56d966c5986cf25239ba21a.zip | |
Also list rule 950907 in the list of draconian rules.
Package-Manager: portage-2.2_rc33/cvs/Linux x86_64
Diffstat (limited to 'www-apache')
| -rw-r--r-- | www-apache/mod_security/ChangeLog | 6 | ||||
| -rw-r--r-- | www-apache/mod_security/Manifest | 10 | ||||
| -rw-r--r-- | www-apache/mod_security/mod_security-2.5.9-r1.ebuild | 8 |
3 files changed, 14 insertions, 10 deletions
diff --git a/www-apache/mod_security/ChangeLog b/www-apache/mod_security/ChangeLog index fc562df15f36..691d74787b1d 100644 --- a/www-apache/mod_security/ChangeLog +++ b/www-apache/mod_security/ChangeLog @@ -1,6 +1,10 @@ # ChangeLog for www-apache/mod_security # Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_security/ChangeLog,v 1.26 2009/07/15 19:13:03 flameeyes Exp $ +# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_security/ChangeLog,v 1.27 2009/07/27 16:42:44 flameeyes Exp $ + + 27 Jul 2009; Diego E. Pettenò <flameeyes@gentoo.org> + mod_security-2.5.9-r1.ebuild: + Also list rule 950907 in the list of draconian rules. 15 Jul 2009; Diego E. Pettenò <flameeyes@gentoo.org> mod_security-2.5.9-r1.ebuild: diff --git a/www-apache/mod_security/Manifest b/www-apache/mod_security/Manifest index b57817f4223c..15326e92e29a 100644 --- a/www-apache/mod_security/Manifest +++ b/www-apache/mod_security/Manifest @@ -5,14 +5,14 @@ AUX 2.1.2/99_mod_security.conf 198 RMD160 cde9de9e21d3e31467737a87fe6af73e18827b AUX mod_security-2.5.9-as-needed.patch 1166 RMD160 e70d1e0ff9e8396d4447e25bb0664111a27a31ff SHA1 d2e35d9a823ec37fd11119644bff4c2373b31553 SHA256 4438e7cc1675ce23354cd6ba9c74b5b669f2f80629bdd4cc7532e48cda8ebfd5 AUX mod_security-2.5.9-broken-autotools.patch 2103 RMD160 795e3fc59b881bf02fa5a65b6dae4f120de253f0 SHA1 773a56d9e177056be3de0b0c85747478fb5f3b2f SHA256 68df2416a6b464719fb41772472fd04b196b9fee7e102fc76f95c6827282a283 DIST modsecurity-apache_2.5.9.tar.gz 1252295 RMD160 adab10e5eab50f0d114e3ccb47c343e744119c8f SHA1 875919332a918956371fe8e2f7e46d88081857cf SHA256 02352221ea268f8ae9aae5b84507f51eba2a67c0f7d2efd5cc88e85f1f394056 -EBUILD mod_security-2.5.9-r1.ebuild 2772 RMD160 60a32154341f184abd6c11767c877c5ad2847178 SHA1 360b9363d909dbb531a04ef1e0d42cede35c74cf SHA256 17ea1aeb05b5f4d84c89b9167cb6beb9a6490ec43788e539060336c150fdbfa1 +EBUILD mod_security-2.5.9-r1.ebuild 2791 RMD160 ae084781f213ba77d9bf322ebd511c45cafc0f49 SHA1 98d89c70534b0131f1a5c5b85ad97fb9c00a2b8c SHA256 1992430794f4712bf273933b23be93b7031cdb0570a198bf3ff490664bfdeb90 EBUILD mod_security-2.5.9.ebuild 1944 RMD160 2007bd7cea81b0179a487ac2c96e1901791b02bb SHA1 0c3a515418374db4cd7e11d95bf6dac31fb5374b SHA256 aa0c4b31738d2c5da6e7ace0d766fceaf9fd5c8cccd8f8707ad9ef36a1912c88 -MISC ChangeLog 8474 RMD160 51e9cbece1c401e7fa79d437742421b81a60f6db SHA1 8ac8b988984bab56c67d2a947f62a6bc52d7598b SHA256 1fa1f2ab5694f0afb503fb18178f627b37c2bce377dc7650419ae6fd7b926d4f +MISC ChangeLog 8619 RMD160 0b478eebc4ebaeee0a0ea3e66d9a9965c46efc3a SHA1 a89ca3366bb7942de7a1c9d050faa3c6c230ff47 SHA256 3b25e95f103848bfd6b3c55d6b9ec97ed754d4348535d4c0ee5bad7bb9571966 MISC metadata.xml 355 RMD160 e410b8b84944364f7964a593beee5dcc44120715 SHA1 43dcb86ef95026473f5b7feedd9bdf9a5c10aa5d SHA256 a5c675cccf7a693a7c467e2e154a55ede60bb80663f10e282cc5dd8c906b7f22 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (GNU/Linux) -iEYEARECAAYFAkpeKkQACgkQAiZjviIA2Xj9TQCdEqTS5iww5ovgzT0bQDdx9Uym -lxwAoKYAOGI6cfSEiJS7ShCehjzRa1et -=yH64 +iEYEARECAAYFAkpt2QoACgkQAiZjviIA2XhSZQCggGHw47TClPhIf97DQYl1jTGG +FN0AoMF8EmH1LpLzfuYo3Gx1jgEu82p6 +=nfMM -----END PGP SIGNATURE----- diff --git a/www-apache/mod_security/mod_security-2.5.9-r1.ebuild b/www-apache/mod_security/mod_security-2.5.9-r1.ebuild index 94b4a68daa9f..b9b9f05a0704 100644 --- a/www-apache/mod_security/mod_security-2.5.9-r1.ebuild +++ b/www-apache/mod_security/mod_security-2.5.9-r1.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2009 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_security/mod_security-2.5.9-r1.ebuild,v 1.2 2009/07/15 19:13:03 flameeyes Exp $ +# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_security/mod_security-2.5.9-r1.ebuild,v 1.3 2009/07/27 16:42:44 flameeyes Exp $ inherit apache-module autotools @@ -99,14 +99,14 @@ pkg_postinst() { elog "Please note that the core rule set distributed with mod_security is quite" elog "draconic. If you're using this on a blog, a forum or another user-submitted" elog "web application where you might talk about standard Unix paths (such as /etc" - elog "or /bin), you might want to disable at least rule 950005 (command injection)" - elog "if you're sure it might not be a security risk." + elog "or /bin), you might want to disable at least rules 950005 and 950907" + elog "(command injection) if you're sure it might not be a security risk." elog " " elog "To do that on the most limited case you might want to use something like" elog "the following code (this comes from a Typo weblog instance):" elog " " elog " <Location /comments>" - elog " SecRuleRemoveById 950005" + elog " SecRuleRemoveById 950005 950907" elog " </Location>" elog " " } |