: Log in!

メインメニュー
Google


ウェブ 検索
サイト内検索
トップ  >  Linux17歩  >  2017-06-22 httpd-2.4.26にupdate
20170622 httpd-2.4.26にupdateしました


httpd.confの更新

--- httpd2425/conf/original/extra/httpd-manual.conf	2016-12-21 14:08:41.912449372 +0900
+++ httpd2426/conf/original/extra/httpd-manual.conf	2017-06-21 02:27:13.224922899 +0900
@@ -18,16 +18,21 @@ AliasMatch ^/manual(?:/(?:da|de|en|es|fr
     <Files *.html>
         SetHandler type-map
     </Files>
+
     # .tr is text/troff in mime.types!
-    <Files *.html.tr.utf8>
-        ForceType "text/html; charset=utf-8"
-    </Files>
+    RemoveType tr
 
+    # Traditionally, used .dk filename extension for da language
     AddLanguage da .da
 
     SetEnvIf Request_URI ^/manual/(da|de|en|es|fr|ja|ko|pt-br|ru|tr|zh-cn)/ prefer-language=$1
     RedirectMatch 301 ^/manual(?:/(da|de|en|es|fr|ja|ko|pt-br|ru|tr|zh-cn)){2,}(/.*)?$ /manual/$1$2
 
-    LanguagePriority en da de es fr ja ko pt-br ru tr
+    # Reflect the greatest effort in translation (most content available),
+    # inferring greater attention to detail (potentially false assumption,
+    # counting translations presently in-sync would be more helpful.)
+    # Use caution counting; safest pattern is '*.xml.XX'. Recent .xml source
+    # document count: 266 214 110 94 82 25 22    18     4  1  1
+    LanguagePriority   en  fr  ko ja tr es de zh-cn pt-br da ru
     ForceLanguagePriority Prefer Fallback
 </Directory>
--- httpd2425/conf/original/extra/httpd-ssl.conf	2016-12-21 14:08:42.022315580 +0900
+++ httpd2426/conf/original/extra/httpd-ssl.conf	2017-06-21 02:27:13.335162893 +0900
@@ -49,8 +49,8 @@ Listen 443
 #   ensure these follow appropriate best practices for this deployment.
 #   httpd 2.2.30, 2.4.13 and later force-disable aNULL, eNULL and EXP ciphers,
 #   while OpenSSL disabled these by default in 0.9.8zf/1.0.0r/1.0.1m/1.0.2a.
-SSLCipherSuite HIGH:MEDIUM:!MD5:!RC4
-SSLProxyCipherSuite HIGH:MEDIUM:!MD5:!RC4
+SSLCipherSuite HIGH:MEDIUM:!MD5:!RC4:!3DES
+SSLProxyCipherSuite HIGH:MEDIUM:!MD5:!RC4:!3DES
 
 #  By the end of 2016, only TLSv1.2 ciphers should remain in use.
 #  Older ciphers should be disallowed as soon as possible, while the

Security Reports

. ap_get_basic_auth_pw() Authentication Bypass CVE-2017-3167
. mod_ssl Null Pointer Dereference CVE-2017-3169
. mod_http2 Null Pointer Dereference CVE-2017-7659
. ap_find_token() Buffer Overread CVE-2017-7668
. mod_mime Buffer Overread CVE-2017-7679

・詳細は"httpd.apache.org/security/vulnerabilities_24.html"を参照してください

CHANGES_2.4.26

・詳細はソースに含まれるCHANGESを参照して下さい
投票数:10 平均点:4.00
前
2017-06-17 bind-9.11.1-P1にupdate
カテゴリートップ
Linux17歩
次
2017-06-27 dovecot-2.2.31にupdate