aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorAnders Nordby <anders@FreeBSD.org>2002-06-22 22:50:33 +0000
committerAnders Nordby <anders@FreeBSD.org>2002-06-22 22:50:33 +0000
commite750702899d05e7994bac876981f43299c50b859 (patch)
tree937cb805e63d567ad76e3022da40e700ed26e00c
parent11774a5a835cebdee21169df680e62f6fb8a4b6d (diff)
downloadports-e750702899d05e7994bac876981f43299c50b859.tar.gz
ports-e750702899d05e7994bac876981f43299c50b859.zip
Notes
-rw-r--r--www/Makefile1
-rw-r--r--www/mod_blowchunks/Makefile48
-rw-r--r--www/mod_blowchunks/distinfo1
-rw-r--r--www/mod_blowchunks/files/patch-mod_blowchunks-1.3.c13
-rw-r--r--www/mod_blowchunks/pkg-comment1
-rw-r--r--www/mod_blowchunks/pkg-descr8
-rw-r--r--www/mod_blowchunks/pkg-plist3
7 files changed, 75 insertions, 0 deletions
diff --git a/www/Makefile b/www/Makefile
index 651845bf7f0e..0ab84ee59dee 100644
--- a/www/Makefile
+++ b/www/Makefile
@@ -156,6 +156,7 @@
SUBDIR += mod_auth_pwcheck
SUBDIR += mod_backhand
SUBDIR += mod_bf
+ SUBDIR += mod_blowchunks
SUBDIR += mod_cgi_debug
SUBDIR += mod_color
SUBDIR += mod_csacek
diff --git a/www/mod_blowchunks/Makefile b/www/mod_blowchunks/Makefile
new file mode 100644
index 000000000000..a4a81ba6f33e
--- /dev/null
+++ b/www/mod_blowchunks/Makefile
@@ -0,0 +1,48 @@
+# New ports collection makefile for: mod_blowchunks
+# Date created: 23 June 2002
+# Whom: Anders Nordby <anders@FreeBSD.org>
+#
+# $FreeBSD$
+#
+
+PORTNAME= mod_blowchunks
+PORTVERSION= 1.3
+CATEGORIES= www
+MASTER_SITES= ftp://ftp.nuug.no/pub/anders/distfiles/ \
+ http://atreides.freenix.no/~anders/
+EXTRACT_SUFX= .c
+
+MAINTAINER= ports@FreeBSD.org
+
+BUILD_DEPENDS= ${LOCALBASE}/sbin/apxs:${PORTSDIR}/www/apache13
+RUN_DEPENDS= ${LOCALBASE}/sbin/apxs:${PORTSDIR}/www/apache13
+
+NO_WRKSUBDIR= YES
+
+APXS?= ${LOCALBASE}/sbin/apxs
+APXSFLAGS= -DTRUE=1 -DFALSE=0
+.if !defined(WITHOUT_BLOWCHUNK_LOG)
+APXSFLAGS+= -DLOG_BLOWCHUNK
+.endif
+
+do-extract:
+ @${MKDIR} ${WRKDIR}
+ @${CP} -p ${DISTDIR}/${DISTFILES} ${WRKDIR}
+
+do-build:
+.if !defined(WITHOUT_BLOWCHUNK_LOG)
+ @${ECHO} "================================================================================"
+ @${ECHO} "If you do not want to log chunked requests, rebuild with WITHOUT_BLOWCHUNK_LOG"
+ @${ECHO} "defined."
+ @${ECHO} "================================================================================"
+.endif
+ cd ${WRKSRC} && ${MV} ${PKGNAME}.c ${PORTNAME}.c && \
+ ${APXS} ${APXSFLAGS} -c ${PORTNAME}.c
+
+do-install:
+ cd ${WRKSRC} && ${APXS} -A -i ${PORTNAME}.so
+ @${ECHO} "================================================================================"
+ @${ECHO} "Enable mod_blowchunks in Apache's config manually."
+ @${ECHO} "================================================================================"
+
+.include <bsd.port.mk>
diff --git a/www/mod_blowchunks/distinfo b/www/mod_blowchunks/distinfo
new file mode 100644
index 000000000000..85f549d75b34
--- /dev/null
+++ b/www/mod_blowchunks/distinfo
@@ -0,0 +1 @@
+MD5 (mod_blowchunks-1.3.c) = 3374f730e9518c76619c8c1268c58826
diff --git a/www/mod_blowchunks/files/patch-mod_blowchunks-1.3.c b/www/mod_blowchunks/files/patch-mod_blowchunks-1.3.c
new file mode 100644
index 000000000000..c9e0519485ff
--- /dev/null
+++ b/www/mod_blowchunks/files/patch-mod_blowchunks-1.3.c
@@ -0,0 +1,13 @@
+--- mod_blowchunks-1.3.c.orig Sat Jun 22 22:44:01 2002
++++ mod_blowchunks-1.3.c Sat Jun 22 22:45:18 2002
+@@ -56,8 +56,10 @@
+ ap_table_do(blowchunks_check_one_header,&found,r->headers_in,
+ "Transfer-Encoding",NULL);
+ if (found==TRUE) {
++#ifdef LOG_BLOWCHUNK
+ ap_log_rerror(APLOG_MARK, APLOG_NOERRNO|APLOG_ERR, r,
+ "Transfer-Encoding: chunked - denied and logged");
++#endif
+ return HTTP_BAD_REQUEST;
+ }
+ return DECLINED;
diff --git a/www/mod_blowchunks/pkg-comment b/www/mod_blowchunks/pkg-comment
new file mode 100644
index 000000000000..a2c99280f409
--- /dev/null
+++ b/www/mod_blowchunks/pkg-comment
@@ -0,0 +1 @@
+Apache module for rejecting and logging chunked requests
diff --git a/www/mod_blowchunks/pkg-descr b/www/mod_blowchunks/pkg-descr
new file mode 100644
index 000000000000..0e79de7008c6
--- /dev/null
+++ b/www/mod_blowchunks/pkg-descr
@@ -0,0 +1,8 @@
+This is an Apache module that rejects and logs chunked requests before
+(eventually vulnerable) chunking routines can read them.
+
+WWW: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0392
+
+Author: Cris Bailiff <c.bailiff+blowchunks@devsecure.com>
+
+- Anders Nordby <anders@FreeBSD.org>
diff --git a/www/mod_blowchunks/pkg-plist b/www/mod_blowchunks/pkg-plist
new file mode 100644
index 000000000000..7d3812f09a61
--- /dev/null
+++ b/www/mod_blowchunks/pkg-plist
@@ -0,0 +1,3 @@
+libexec/apache/mod_blowchunks.so
+@exec ${PKG_PREFIX}/sbin/apxs -e -A -n blowchunks mod_blowchunks.so; echo " enable mod_blowchunks in Apache's config manually"
+@unexec ${PKG_PREFIX}/sbin/apxs -e -A -n blowchunks mod_blowchunks.so || echo " remove mod_blowchunks from Apache's config manually"