diff options
author | Anders Nordby <anders@FreeBSD.org> | 2002-06-22 22:50:33 +0000 |
---|---|---|
committer | Anders Nordby <anders@FreeBSD.org> | 2002-06-22 22:50:33 +0000 |
commit | e750702899d05e7994bac876981f43299c50b859 (patch) | |
tree | 937cb805e63d567ad76e3022da40e700ed26e00c | |
parent | 11774a5a835cebdee21169df680e62f6fb8a4b6d (diff) | |
download | ports-e750702899d05e7994bac876981f43299c50b859.tar.gz ports-e750702899d05e7994bac876981f43299c50b859.zip |
Notes
-rw-r--r-- | www/Makefile | 1 | ||||
-rw-r--r-- | www/mod_blowchunks/Makefile | 48 | ||||
-rw-r--r-- | www/mod_blowchunks/distinfo | 1 | ||||
-rw-r--r-- | www/mod_blowchunks/files/patch-mod_blowchunks-1.3.c | 13 | ||||
-rw-r--r-- | www/mod_blowchunks/pkg-comment | 1 | ||||
-rw-r--r-- | www/mod_blowchunks/pkg-descr | 8 | ||||
-rw-r--r-- | www/mod_blowchunks/pkg-plist | 3 |
7 files changed, 75 insertions, 0 deletions
diff --git a/www/Makefile b/www/Makefile index 651845bf7f0e..0ab84ee59dee 100644 --- a/www/Makefile +++ b/www/Makefile @@ -156,6 +156,7 @@ SUBDIR += mod_auth_pwcheck SUBDIR += mod_backhand SUBDIR += mod_bf + SUBDIR += mod_blowchunks SUBDIR += mod_cgi_debug SUBDIR += mod_color SUBDIR += mod_csacek diff --git a/www/mod_blowchunks/Makefile b/www/mod_blowchunks/Makefile new file mode 100644 index 000000000000..a4a81ba6f33e --- /dev/null +++ b/www/mod_blowchunks/Makefile @@ -0,0 +1,48 @@ +# New ports collection makefile for: mod_blowchunks +# Date created: 23 June 2002 +# Whom: Anders Nordby <anders@FreeBSD.org> +# +# $FreeBSD$ +# + +PORTNAME= mod_blowchunks +PORTVERSION= 1.3 +CATEGORIES= www +MASTER_SITES= ftp://ftp.nuug.no/pub/anders/distfiles/ \ + http://atreides.freenix.no/~anders/ +EXTRACT_SUFX= .c + +MAINTAINER= ports@FreeBSD.org + +BUILD_DEPENDS= ${LOCALBASE}/sbin/apxs:${PORTSDIR}/www/apache13 +RUN_DEPENDS= ${LOCALBASE}/sbin/apxs:${PORTSDIR}/www/apache13 + +NO_WRKSUBDIR= YES + +APXS?= ${LOCALBASE}/sbin/apxs +APXSFLAGS= -DTRUE=1 -DFALSE=0 +.if !defined(WITHOUT_BLOWCHUNK_LOG) +APXSFLAGS+= -DLOG_BLOWCHUNK +.endif + +do-extract: + @${MKDIR} ${WRKDIR} + @${CP} -p ${DISTDIR}/${DISTFILES} ${WRKDIR} + +do-build: +.if !defined(WITHOUT_BLOWCHUNK_LOG) + @${ECHO} "================================================================================" + @${ECHO} "If you do not want to log chunked requests, rebuild with WITHOUT_BLOWCHUNK_LOG" + @${ECHO} "defined." + @${ECHO} "================================================================================" +.endif + cd ${WRKSRC} && ${MV} ${PKGNAME}.c ${PORTNAME}.c && \ + ${APXS} ${APXSFLAGS} -c ${PORTNAME}.c + +do-install: + cd ${WRKSRC} && ${APXS} -A -i ${PORTNAME}.so + @${ECHO} "================================================================================" + @${ECHO} "Enable mod_blowchunks in Apache's config manually." + @${ECHO} "================================================================================" + +.include <bsd.port.mk> diff --git a/www/mod_blowchunks/distinfo b/www/mod_blowchunks/distinfo new file mode 100644 index 000000000000..85f549d75b34 --- /dev/null +++ b/www/mod_blowchunks/distinfo @@ -0,0 +1 @@ +MD5 (mod_blowchunks-1.3.c) = 3374f730e9518c76619c8c1268c58826 diff --git a/www/mod_blowchunks/files/patch-mod_blowchunks-1.3.c b/www/mod_blowchunks/files/patch-mod_blowchunks-1.3.c new file mode 100644 index 000000000000..c9e0519485ff --- /dev/null +++ b/www/mod_blowchunks/files/patch-mod_blowchunks-1.3.c @@ -0,0 +1,13 @@ +--- mod_blowchunks-1.3.c.orig Sat Jun 22 22:44:01 2002 ++++ mod_blowchunks-1.3.c Sat Jun 22 22:45:18 2002 +@@ -56,8 +56,10 @@ + ap_table_do(blowchunks_check_one_header,&found,r->headers_in, + "Transfer-Encoding",NULL); + if (found==TRUE) { ++#ifdef LOG_BLOWCHUNK + ap_log_rerror(APLOG_MARK, APLOG_NOERRNO|APLOG_ERR, r, + "Transfer-Encoding: chunked - denied and logged"); ++#endif + return HTTP_BAD_REQUEST; + } + return DECLINED; diff --git a/www/mod_blowchunks/pkg-comment b/www/mod_blowchunks/pkg-comment new file mode 100644 index 000000000000..a2c99280f409 --- /dev/null +++ b/www/mod_blowchunks/pkg-comment @@ -0,0 +1 @@ +Apache module for rejecting and logging chunked requests diff --git a/www/mod_blowchunks/pkg-descr b/www/mod_blowchunks/pkg-descr new file mode 100644 index 000000000000..0e79de7008c6 --- /dev/null +++ b/www/mod_blowchunks/pkg-descr @@ -0,0 +1,8 @@ +This is an Apache module that rejects and logs chunked requests before +(eventually vulnerable) chunking routines can read them. + +WWW: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0392 + +Author: Cris Bailiff <c.bailiff+blowchunks@devsecure.com> + +- Anders Nordby <anders@FreeBSD.org> diff --git a/www/mod_blowchunks/pkg-plist b/www/mod_blowchunks/pkg-plist new file mode 100644 index 000000000000..7d3812f09a61 --- /dev/null +++ b/www/mod_blowchunks/pkg-plist @@ -0,0 +1,3 @@ +libexec/apache/mod_blowchunks.so +@exec ${PKG_PREFIX}/sbin/apxs -e -A -n blowchunks mod_blowchunks.so; echo " enable mod_blowchunks in Apache's config manually" +@unexec ${PKG_PREFIX}/sbin/apxs -e -A -n blowchunks mod_blowchunks.so || echo " remove mod_blowchunks from Apache's config manually" |