Slashdot Mirror

← Back to Stories (view on slashdot.org)

Apache 1.3.23 Released

Posted by Hemos on from the recompile-time dept.

meheler writes "Looks like the Apache Group have released version 1.3.23 of their popular web server. Here's a link to the Official Announcement as well as where you can download it, and even view the ChangeLog."

17 comments

  1. Cool by Anonymous Coward · · Score: 0

    I cant't wait for the 1.3.23.1 and 1.3.24 announcements. They'll be even cooler.

  2. (sigh) I feel like the Dunkin Donuts guy by prisoner-of-enigma · · Score: 3, Interesting

    "It's time to roll Apache"...almost as good as "It's time to make the kernel".

    What I want to know is why Apache 2.0 hasn't made anymore beta progress in the last month or two than it has. Mind you, it's coming along, but it seems to have been in beta a long, long time. How are they coming with it? The bug tracking list doesn't ever seem to shrink much.

    --
    In the end they will lay their freedom at our feet and say to us, Make us your slaves, but feed us. - Fyodor Dostoyevsky
    1. Re:(sigh) I feel like the Dunkin Donuts guy by DarkKnightRadick · · Score: 1

      For real. Last I read on the Apache site, 1.3.22 was supposed to be the last 1.x release of Apache before they went full bore with 2.0. Come on Apache, fix me up with some 2.0 goodness!

      --
      "There is a way that seems right to a man, but its end is the way of death." Proverbs 16:25 (NKJV)
    2. Re:(sigh) I feel like the Dunkin Donuts guy by cloudmaster · · Score: 2

      There seem to be a lot of win32 changes recently - I wonder if they're trying to get the codebase more cross-platform stable before releasing a non-beta 2.0? Of course, there were almost no changes in the .22 release, so maybe this .23 is what should've been .22. :)

    3. Re:(sigh) I feel like the Dunkin Donuts guy by 5alligator · · Score: 1

      They want to make sure that code red works properly before they push 2.0 out the door.

      Go apache!

  3. Apache ports... by Mixailo · · Score: 2

    btw, what 'bout Apache ports for cygwin?

    1. Re:Apache ports... by DarkKnightRadick · · Score: 1

      go here http://www.apache.org/dist/httpd/binaries/cygwin/ for the latest cygwin port of Apache. Doesn't look like there is much there, though.

      --
      "There is a way that seems right to a man, but its end is the way of death." Proverbs 16:25 (NKJV)
  4. CAN-2001-0731 by Anonymous Coward · · Score: 1, Informative


    According to the ChangeLog, vulnerability CAN-2001-0731 is present in Apache 1.3.20, and fixed in 1.3.21. Has anyone managed to reproduce this vulnerability? If so, how? The examples given in the vulnerability report don't seem to work.

    We use 1.3.20 at work. It works very well, and I don't want to upgrade unless I really have to, but this is a potentially bad security hole for us.

    Just in case, I've disabled MultiViews for now. We'll have to turn it on again in a month or so, unless I can code up a fix for some of our instruments so that they no longer rely on it.

    This is the link to CAN-2001-0731

    -- Guges --

    1. Re:CAN-2001-0731 by DarkKnightRadick · · Score: 1

      I would go ahead and upgrade to 1.3.23

      Any upgrade that fixes a security hole is an upgrade worth getting, IMHO, especially if security is an issue.

      --
      "There is a way that seems right to a man, but its end is the way of death." Proverbs 16:25 (NKJV)
    2. Re:CAN-2001-0731 by Anonymous Coward · · Score: 0

      I use a web host tat has Apache 1.3.20/PHP 4.0.6/Frontpage 2002 Extensions and i am unable to exploit that hole. It has MultiViews disabled. Someone they must've patched it up.

  5. Why would you want that? by fireboy1919 · · Score: 2

    I was under the impression that Apache without Cygwin was faster, better, and more secure.

    Why would you want to use the cygwin version?

    --
    Mod me down and I will become more powerful than you can possibly imagine!
  6. EDIT by Anonymous Coward · · Score: 0

    I mean MultiViews enabled!