1555 Commits (c26b50d9ad992ef73ada5a96e0db29781ddad88a)
 

Author SHA1 Message Date
Stefan Bühler c26b50d9ad [mod_auth] add htpasswd -s (SHA1) support if openssl is used (needs openssl for SHA1). This doesn't use any salt, md5 with salt is probably better. 9 years ago
Stefan Bühler 0342dfef1d [mod_auth] use crypt() on encrypted password instead of extracting salt first (fixes #2483) 9 years ago
Stefan Bühler b5da12c008 reject non ASCII characters in HTTP header names 9 years ago
Stefan Bühler 25a2d665aa call ERR_clear_error only for ssl connections in CON_STATE_ERROR 9 years ago
Stefan Bühler 0e48ef6acb [mod_fastcgi,log] support multi line logging (fixes #2252) 9 years ago
Stefan Bühler 543bd249fb fix handling of If-Modified-Since if If-None-Match is present (don't return 412 for date parsing errors); follow current draft for HTTP/1.1, which tells us to ignore If-Modified-Since if we have matching etags. 9 years ago
Stefan Bühler 9cd8faa1b6 mod_fastcgi: fix mix up of "mode" => "authorizer" in other fastcgi configs (fixes #2465, thx peex) 9 years ago
Stefan Bühler 5aef370a2d - next is 1.4.33 9 years ago
Stefan Bühler 79fed4ec04 remove whitespace at end of header keys 9 years ago
Stefan Bühler 6edfc40f93 fix DoS in Connection header value split (reported by Jesse Sipprell, CVE-2012-5533) 9 years ago
Stefan Bühler 6200764f05 tests: check different combination of empty values, leading/trailing spaces and commas in the Connection header 9 years ago
Stefan Bühler 29b126d5d3 mod_extforward: log address of untrusted proxy with debug.log-request-handling 9 years ago
Cyril Brulebois 4f4bcdd3c3 tests: make sure mod_proxy doesn't leave running processes (fixes #2435, thx kibi) 9 years ago
Stefan Bühler 4002dce596 detect "x-gzip"/"x-bzip2" as separate encodings, more strict encoding matching (fixes #2443) 9 years ago
Stefan Bühler c3a9948c75 network_server_init: fix double free and memleak on error (fixes #2440, thx kyprizel) 9 years ago
Stefan Bühler 9b246c5e09 fix :port handling in $HTTP["host"] checks (fixes #2135. thx liming) 9 years ago
Stefan Bühler d4d1ff36aa add PATCH method (fixes #2424) 9 years ago
Stefan Bühler fcb3f42f11 configure.ac: remove old stuff, add some new to fix warnings in automake 1.12 (fixes #2419, thx blino) 9 years ago
Stefan Bühler d09fdd877f Handle ENAMETOOLONG, return 404 Not Found (fixes #2396, thx dererkazo) 9 years ago
Stefan Bühler db1d977dea Ignore EPIPE/ECONNRESET after SSL_shutdown (thx patdk-wk for reporting) 9 years ago
Stefan Bühler 6c9d257742 Code cleanup with clang/sparse (fixes #2437, thx kibi) 9 years ago
Cyril Brulebois 6404e3ba09 [lighttpd-angel] Remove unused variable. 9 years ago
Cyril Brulebois b6757eaae5 [lemon] Use void* as generic pointer instead of char*. 9 years ago
Cyril Brulebois 9c43331382 Use NULL instead of 0 where pointers are expected. 9 years ago
Cyril Brulebois b6b6eda292 [md5] Fix non-ANSI function definitions. 9 years ago
Cyril Brulebois 0c6a564543 Fix non-ANSI function declarations. 9 years ago
Cyril Brulebois f4ba2d4f24 Mark some data as static. 9 years ago
Stefan Bühler b6b694df3d - next is 1.4.32 9 years ago
Stefan Bühler 100ed91f2d Fix --enable-mmap handling in configure.ac 10 years ago
Stefan Bühler 172eeebfaa [mod_redirect] Support url.redirect-code option (fixes #2247) 10 years ago
Stefan Bühler 1ee35acc6f [mod_extforward] Support ipv6 addresses (fixes #1889) 10 years ago
Stefan Bühler 3a13ab8bf2 Detect multiple -f options: show error message instead of assert (fixes #2416) 10 years ago
Stefan Bühler bbaef6ab87 fix typo in debug output 10 years ago
Stefan Bühler 5677f17442 [mod_*cgi,mod_accesslog] Fix splitting :port with ipv6 (fixes #2333, thx simoncpu) 10 years ago
Stefan Bühler 7187271fb6 [auth] Add "AUTH_TYPE" environment (for *cgi), remove fastcgi specific workaround, add fastcgi test case (fixes #889) 10 years ago
Stefan Bühler 61047369c7 [mod_auth] Fix digest "md5-sess" implementation (Errata ID 1649, RFC 2617) (fixes #2410) 10 years ago
Stefan Bühler ab0fa7d873 Fix access log escaping of " and \\ (fixes #1551) 10 years ago
Stefan Bühler 01f9debec3 Fix handling of empty header list entries in http_request_split_value, fixing invalid read in valgrind (fixes #2413) 10 years ago
Stefan Bühler e697869e34 buffer_caseless_compare: always convert letters to lowercase to get transitive results, fixing array lookups (fixes #2405) 10 years ago
Stefan Bühler f4c3a99eea Disable mmap by default (fixes #2391) 10 years ago
Stefan Bühler 33f1ec6d28 [mod_compress] fix handling if etags are disabled but cache-dir is set - may lead to double response 10 years ago
Stefan Bühler 35875cd515 [ssl] include more headers explicitly 10 years ago
Stefan Bühler 6f0752da38 list all network handlers in lighttpd -V (fixes #2376) 10 years ago
Stefan Bühler 79bcfab083 Move fdevent subsystem includes to implementation files to reduce conflicts (fixes #2373) 10 years ago
Stefan Bühler d194c09da9 [ssl] fix segfault in counting renegotiations for openssl versions without TLSEXT/SNI 10 years ago
Stefan Bühler 10e5fda664 [doc] add systemd/lighttpd.service to Makefiles, so it ends up in the tarball 10 years ago
Stefan Bühler beb6709b6c - next is 1.4.31 10 years ago
Stefan Bühler 13d0440ac5 [doc] add systemd lighttpd.service file 10 years ago
Stefan Bühler d83b009d54 [doc] fix ssl config exaple for ssl.cipher-list 10 years ago
Stefan Bühler 761bedd7fe [libev/cgi] fix waitpid ECHILD errors in cgi with libev (fixes #2324) 10 years ago