summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorDiego Elio Pettenò <flameeyes@gentoo.org>2009-07-27 16:42:44 +0000
committerDiego Elio Pettenò <flameeyes@gentoo.org>2009-07-27 16:42:44 +0000
commite7d2fed3c535f7e6b56d966c5986cf25239ba21a (patch)
tree5037e2425c8c2841c21d4f7c0a81b34a01b9e794 /www-apache/mod_security
parentRemove call to elibtoolize since we call eautoreconf and force >=libtool-2 wr... (diff)
downloadhistorical-e7d2fed3c535f7e6b56d966c5986cf25239ba21a.tar.gz
historical-e7d2fed3c535f7e6b56d966c5986cf25239ba21a.tar.bz2
historical-e7d2fed3c535f7e6b56d966c5986cf25239ba21a.zip
Also list rule 950907 in the list of draconian rules.
Package-Manager: portage-2.2_rc33/cvs/Linux x86_64
Diffstat (limited to 'www-apache/mod_security')
-rw-r--r--www-apache/mod_security/ChangeLog6
-rw-r--r--www-apache/mod_security/Manifest10
-rw-r--r--www-apache/mod_security/mod_security-2.5.9-r1.ebuild8
3 files changed, 14 insertions, 10 deletions
diff --git a/www-apache/mod_security/ChangeLog b/www-apache/mod_security/ChangeLog
index fc562df15f36..691d74787b1d 100644
--- a/www-apache/mod_security/ChangeLog
+++ b/www-apache/mod_security/ChangeLog
@@ -1,6 +1,10 @@
# ChangeLog for www-apache/mod_security
# Copyright 1999-2009 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_security/ChangeLog,v 1.26 2009/07/15 19:13:03 flameeyes Exp $
+# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_security/ChangeLog,v 1.27 2009/07/27 16:42:44 flameeyes Exp $
+
+ 27 Jul 2009; Diego E. Pettenò <flameeyes@gentoo.org>
+ mod_security-2.5.9-r1.ebuild:
+ Also list rule 950907 in the list of draconian rules.
15 Jul 2009; Diego E. Pettenò <flameeyes@gentoo.org>
mod_security-2.5.9-r1.ebuild:
diff --git a/www-apache/mod_security/Manifest b/www-apache/mod_security/Manifest
index b57817f4223c..15326e92e29a 100644
--- a/www-apache/mod_security/Manifest
+++ b/www-apache/mod_security/Manifest
@@ -5,14 +5,14 @@ AUX 2.1.2/99_mod_security.conf 198 RMD160 cde9de9e21d3e31467737a87fe6af73e18827b
AUX mod_security-2.5.9-as-needed.patch 1166 RMD160 e70d1e0ff9e8396d4447e25bb0664111a27a31ff SHA1 d2e35d9a823ec37fd11119644bff4c2373b31553 SHA256 4438e7cc1675ce23354cd6ba9c74b5b669f2f80629bdd4cc7532e48cda8ebfd5
AUX mod_security-2.5.9-broken-autotools.patch 2103 RMD160 795e3fc59b881bf02fa5a65b6dae4f120de253f0 SHA1 773a56d9e177056be3de0b0c85747478fb5f3b2f SHA256 68df2416a6b464719fb41772472fd04b196b9fee7e102fc76f95c6827282a283
DIST modsecurity-apache_2.5.9.tar.gz 1252295 RMD160 adab10e5eab50f0d114e3ccb47c343e744119c8f SHA1 875919332a918956371fe8e2f7e46d88081857cf SHA256 02352221ea268f8ae9aae5b84507f51eba2a67c0f7d2efd5cc88e85f1f394056
-EBUILD mod_security-2.5.9-r1.ebuild 2772 RMD160 60a32154341f184abd6c11767c877c5ad2847178 SHA1 360b9363d909dbb531a04ef1e0d42cede35c74cf SHA256 17ea1aeb05b5f4d84c89b9167cb6beb9a6490ec43788e539060336c150fdbfa1
+EBUILD mod_security-2.5.9-r1.ebuild 2791 RMD160 ae084781f213ba77d9bf322ebd511c45cafc0f49 SHA1 98d89c70534b0131f1a5c5b85ad97fb9c00a2b8c SHA256 1992430794f4712bf273933b23be93b7031cdb0570a198bf3ff490664bfdeb90
EBUILD mod_security-2.5.9.ebuild 1944 RMD160 2007bd7cea81b0179a487ac2c96e1901791b02bb SHA1 0c3a515418374db4cd7e11d95bf6dac31fb5374b SHA256 aa0c4b31738d2c5da6e7ace0d766fceaf9fd5c8cccd8f8707ad9ef36a1912c88
-MISC ChangeLog 8474 RMD160 51e9cbece1c401e7fa79d437742421b81a60f6db SHA1 8ac8b988984bab56c67d2a947f62a6bc52d7598b SHA256 1fa1f2ab5694f0afb503fb18178f627b37c2bce377dc7650419ae6fd7b926d4f
+MISC ChangeLog 8619 RMD160 0b478eebc4ebaeee0a0ea3e66d9a9965c46efc3a SHA1 a89ca3366bb7942de7a1c9d050faa3c6c230ff47 SHA256 3b25e95f103848bfd6b3c55d6b9ec97ed754d4348535d4c0ee5bad7bb9571966
MISC metadata.xml 355 RMD160 e410b8b84944364f7964a593beee5dcc44120715 SHA1 43dcb86ef95026473f5b7feedd9bdf9a5c10aa5d SHA256 a5c675cccf7a693a7c467e2e154a55ede60bb80663f10e282cc5dd8c906b7f22
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.11 (GNU/Linux)
-iEYEARECAAYFAkpeKkQACgkQAiZjviIA2Xj9TQCdEqTS5iww5ovgzT0bQDdx9Uym
-lxwAoKYAOGI6cfSEiJS7ShCehjzRa1et
-=yH64
+iEYEARECAAYFAkpt2QoACgkQAiZjviIA2XhSZQCggGHw47TClPhIf97DQYl1jTGG
+FN0AoMF8EmH1LpLzfuYo3Gx1jgEu82p6
+=nfMM
-----END PGP SIGNATURE-----
diff --git a/www-apache/mod_security/mod_security-2.5.9-r1.ebuild b/www-apache/mod_security/mod_security-2.5.9-r1.ebuild
index 94b4a68daa9f..b9b9f05a0704 100644
--- a/www-apache/mod_security/mod_security-2.5.9-r1.ebuild
+++ b/www-apache/mod_security/mod_security-2.5.9-r1.ebuild
@@ -1,6 +1,6 @@
# Copyright 1999-2009 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_security/mod_security-2.5.9-r1.ebuild,v 1.2 2009/07/15 19:13:03 flameeyes Exp $
+# $Header: /var/cvsroot/gentoo-x86/www-apache/mod_security/mod_security-2.5.9-r1.ebuild,v 1.3 2009/07/27 16:42:44 flameeyes Exp $
inherit apache-module autotools
@@ -99,14 +99,14 @@ pkg_postinst() {
elog "Please note that the core rule set distributed with mod_security is quite"
elog "draconic. If you're using this on a blog, a forum or another user-submitted"
elog "web application where you might talk about standard Unix paths (such as /etc"
- elog "or /bin), you might want to disable at least rule 950005 (command injection)"
- elog "if you're sure it might not be a security risk."
+ elog "or /bin), you might want to disable at least rules 950005 and 950907"
+ elog "(command injection) if you're sure it might not be a security risk."
elog " "
elog "To do that on the most limited case you might want to use something like"
elog "the following code (this comes from a Typo weblog instance):"
elog " "
elog " <Location /comments>"
- elog " SecRuleRemoveById 950005"
+ elog " SecRuleRemoveById 950005 950907"
elog " </Location>"
elog " "
}