head 1.4; access; symbols pkgsrc-2023Q4:1.4.0.104 pkgsrc-2023Q4-base:1.4 pkgsrc-2023Q3:1.4.0.102 pkgsrc-2023Q3-base:1.4 pkgsrc-2023Q2:1.4.0.100 pkgsrc-2023Q2-base:1.4 pkgsrc-2023Q1:1.4.0.98 pkgsrc-2023Q1-base:1.4 pkgsrc-2022Q4:1.4.0.96 pkgsrc-2022Q4-base:1.4 pkgsrc-2022Q3:1.4.0.94 pkgsrc-2022Q3-base:1.4 pkgsrc-2022Q2:1.4.0.92 pkgsrc-2022Q2-base:1.4 pkgsrc-2022Q1:1.4.0.90 pkgsrc-2022Q1-base:1.4 pkgsrc-2021Q4:1.4.0.88 pkgsrc-2021Q4-base:1.4 pkgsrc-2021Q3:1.4.0.86 pkgsrc-2021Q3-base:1.4 pkgsrc-2021Q2:1.4.0.84 pkgsrc-2021Q2-base:1.4 pkgsrc-2021Q1:1.4.0.82 pkgsrc-2021Q1-base:1.4 pkgsrc-2020Q4:1.4.0.80 pkgsrc-2020Q4-base:1.4 pkgsrc-2020Q3:1.4.0.78 pkgsrc-2020Q3-base:1.4 pkgsrc-2020Q2:1.4.0.74 pkgsrc-2020Q2-base:1.4 pkgsrc-2020Q1:1.4.0.54 pkgsrc-2020Q1-base:1.4 pkgsrc-2019Q4:1.4.0.76 pkgsrc-2019Q4-base:1.4 pkgsrc-2019Q3:1.4.0.72 pkgsrc-2019Q3-base:1.4 pkgsrc-2019Q2:1.4.0.70 pkgsrc-2019Q2-base:1.4 pkgsrc-2019Q1:1.4.0.68 pkgsrc-2019Q1-base:1.4 pkgsrc-2018Q4:1.4.0.66 pkgsrc-2018Q4-base:1.4 pkgsrc-2018Q3:1.4.0.64 pkgsrc-2018Q3-base:1.4 pkgsrc-2018Q2:1.4.0.62 pkgsrc-2018Q2-base:1.4 pkgsrc-2018Q1:1.4.0.60 pkgsrc-2018Q1-base:1.4 pkgsrc-2017Q4:1.4.0.58 pkgsrc-2017Q4-base:1.4 pkgsrc-2017Q3:1.4.0.56 pkgsrc-2017Q3-base:1.4 pkgsrc-2017Q2:1.4.0.52 pkgsrc-2017Q2-base:1.4 pkgsrc-2017Q1:1.4.0.50 pkgsrc-2017Q1-base:1.4 pkgsrc-2016Q4:1.4.0.48 pkgsrc-2016Q4-base:1.4 pkgsrc-2016Q3:1.4.0.46 pkgsrc-2016Q3-base:1.4 pkgsrc-2016Q2:1.4.0.44 pkgsrc-2016Q2-base:1.4 pkgsrc-2016Q1:1.4.0.42 pkgsrc-2016Q1-base:1.4 pkgsrc-2015Q4:1.4.0.40 pkgsrc-2015Q4-base:1.4 pkgsrc-2015Q3:1.4.0.38 pkgsrc-2015Q3-base:1.4 pkgsrc-2015Q2:1.4.0.36 pkgsrc-2015Q2-base:1.4 pkgsrc-2015Q1:1.4.0.34 pkgsrc-2015Q1-base:1.4 pkgsrc-2014Q4:1.4.0.32 pkgsrc-2014Q4-base:1.4 pkgsrc-2014Q3:1.4.0.30 pkgsrc-2014Q3-base:1.4 pkgsrc-2014Q2:1.4.0.28 pkgsrc-2014Q2-base:1.4 pkgsrc-2014Q1:1.4.0.26 pkgsrc-2014Q1-base:1.4 pkgsrc-2013Q4:1.4.0.24 pkgsrc-2013Q4-base:1.4 pkgsrc-2013Q3:1.4.0.22 pkgsrc-2013Q3-base:1.4 pkgsrc-2013Q2:1.4.0.20 pkgsrc-2013Q2-base:1.4 pkgsrc-2013Q1:1.4.0.18 pkgsrc-2013Q1-base:1.4 pkgsrc-2012Q4:1.4.0.16 pkgsrc-2012Q4-base:1.4 pkgsrc-2012Q3:1.4.0.14 pkgsrc-2012Q3-base:1.4 pkgsrc-2012Q2:1.4.0.12 pkgsrc-2012Q2-base:1.4 pkgsrc-2012Q1:1.4.0.10 pkgsrc-2012Q1-base:1.4 pkgsrc-2011Q4:1.4.0.8 pkgsrc-2011Q4-base:1.4 pkgsrc-2011Q3:1.4.0.6 pkgsrc-2011Q3-base:1.4 pkgsrc-2011Q2:1.4.0.4 pkgsrc-2011Q2-base:1.4 pkgsrc-2011Q1:1.4.0.2 pkgsrc-2011Q1-base:1.4 pkgsrc-2010Q4:1.3.0.18 pkgsrc-2010Q4-base:1.3 pkgsrc-2010Q3:1.3.0.16 pkgsrc-2010Q3-base:1.3 pkgsrc-2010Q2:1.3.0.14 pkgsrc-2010Q2-base:1.3 pkgsrc-2010Q1:1.3.0.12 pkgsrc-2010Q1-base:1.3 pkgsrc-2009Q4:1.3.0.10 pkgsrc-2009Q4-base:1.3 pkgsrc-2009Q3:1.3.0.8 pkgsrc-2009Q3-base:1.3 pkgsrc-2009Q2:1.3.0.6 pkgsrc-2009Q2-base:1.3 pkgsrc-2009Q1:1.3.0.4 pkgsrc-2009Q1-base:1.3 pkgsrc-2008Q4:1.3.0.2 pkgsrc-2008Q4-base:1.3 pkgsrc-2008Q3:1.2.0.18 pkgsrc-2008Q3-base:1.2 cube-native-xorg:1.2.0.16 cube-native-xorg-base:1.2 pkgsrc-2008Q2:1.2.0.14 pkgsrc-2008Q2-base:1.2 cwrapper:1.2.0.12 pkgsrc-2008Q1:1.2.0.10 pkgsrc-2008Q1-base:1.2 pkgsrc-2007Q4:1.2.0.8 pkgsrc-2007Q4-base:1.2 pkgsrc-2007Q3:1.2.0.6 pkgsrc-2007Q3-base:1.2 pkgsrc-2007Q2:1.2.0.4 pkgsrc-2007Q2-base:1.2 pkgsrc-2007Q1:1.2.0.2 pkgsrc-2007Q1-base:1.2 pkgsrc-2006Q4:1.1.1.1.0.2 pkgsrc-2006Q4-base:1.1.1.1 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.4 date 2011.03.19.13.31.52; author obache; state Exp; branches; next 1.3; 1.3 date 2008.10.12.12.50.17; author adrianp; state Exp; branches; next 1.2; 1.2 date 2007.03.18.10.35.13; author adrianp; state Exp; branches; next 1.1; 1.1 date 2006.11.05.14.33.37; author adrianp; state Exp; branches 1.1.1.1; next ; 1.1.1.1 date 2006.11.05.14.33.37; author adrianp; state Exp; branches; next ; desc @@ 1.4 log @* additional missing clean up after removal of libxml option. * pass to configure more preferred variables. @ text @# $NetBSD: options.mk,v 1.3 2008/10/12 12:50:17 adrianp Exp $ PKG_OPTIONS_VAR= PKG_OPTIONS.ap-modsecurity2 PKG_SUPPORTED_OPTIONS= curl .include "../../mk/bsd.options.mk" ### ### Bring in support for curl ### .if !empty(PKG_OPTIONS:Mcurl) . include "../../www/curl/buildlink3.mk" CONFIGURE_ARGS+= --with-curl=${BUILDLINK_PREFIX.curl} .else CONFIGURE_ARGS+= --without-curl .endif @ 1.3 log @Update from 2.1.4->2.5.7 Use ./configure as one is now supplied libmxl2 is no longer optional but curl is Rename doc/eg dirs from ap-security to ap-modsecurity * Allow for disabling request body limit checks in phase:1 * Now log XML parsing/validation warnings and errors to be in the debug log at levels 3 and 4, respectivly. * Transformation caching has been deprecated, and is now off by default. We now advise against using transformation caching in production. * Improve request body processing error messages. Any many more . . . see CHANGES for all the details @ text @d1 1 a1 1 # $NetBSD: options.mk,v 1.2 2007/03/18 10:35:13 adrianp Exp $ a9 11 ### Bring in support for libxml2 ### .if !empty(PKG_OPTIONS:Mxml) . include "../../textproc/libxml2/buildlink3.mk" CONFIGURE_ARGS+= --with-libxml MESSAGE_SRC+= ${WRKDIR}/.MESSAGE_SRC.xml .else CONFIGURE_ARGS+= --without-libxml .endif ### d14 1 a14 1 CONFIGURE_ARGS+= --with-curl=${PREFIX}/bin/curl @ 1.2 log @Update to 2.1.0 Fix a typo in options.mk 23 Feb 2006 - 2.1.0 ------------------- * Removed the "Connection reset by peer" message, which has nothing to do with us. Actually the message was downgraded from ERROR to NOTICE so it will still appear in the debug log. * Removed the (harmless) message mentioning LAST_UPDATE_TIME missing. * It was not possible to remove a rule placed in phase 4 using SecRuleRemoveById or SecRuleRemoveByMsg. Fixed. * Fixed a problem with incorrectly setting requestBodyProcessor using the ctl action. * Bundled Core Rules 2.1-1.3.2b4. * Updates to the reference manual. * Reversed the return values of @@validateDTD and @@validateSchema, to make them consistent with other operators. * Added a few helpful debug messages in the XML validation area. * Updates to the reference manual. * Fixed the validateByteRange operator. * Default value for the status action is now 403 (as it was supposed to be but it was effectively 500). * Rule exceptions (removing using an ID range or an regular expression) is now applied to the current context too. (Previously it only worked on rules that are inherited from the parent context.) * Fix of a bug with expired variables. * Fixed regular expression variable selectors for many collections. * Performance improvements - up to two times for real-life work loads! * Memory consumption improvements (not measured but significant). * The allow action did not work in phases 3 and 4. Fixed. * Unlocked collections GLOBAL and RESOURCE. * Added support for variable expansion in the msg action. * New feature: It is now possible to make relative changes to the audit log parts with the ctl action. For example: "ctl:auditLogParts=+E". * New feature: "tag" action. To be used for event categorisation. * XML parser was not reporting errors that occured at the end of XML payload. * Files were not extracted from request if SecUploadKeepFiles was Off. Fixed. * Regular expressions that are too long are truncated to 256 characters before used in error messages. (In order to keep the error messages in the log at a reasonable size.) * Fixed the sha1 transformation function. * Fixed the skip action. * Fixed REQUEST_PROTOCOL, REMOTE_USER, and AUTH_TYPE. * SecRuleEngine did not work in child configuration contexts (e.g. ). * Fixed base64Decode and base64Encode. 15 Nov 2006 - 2.0.4 ------------------- * Fixed the "deprecatevar" action. * Decreasing variable values did not work. * Made "nolog" do what it is supposed to do - cause a rule match to not be logged. Also "nolog" now implies "noauditlog" but it's possible to follow "nolog" with "auditlog" and have the match not logged to the error log but logged to the auditlog. (Not something that strikes me as useful but it's possible.) * Relative paths given to SecDataDir will now be treated as relative * Decreasing variable values did not work. * Made "nolog" do what it is supposed to do - cause a rule match to not be logged. Also "nolog" now implies "noauditlog" but it's possible to follow "nolog" with "auditlog" and have the match not logged to the error log but logged to the auditlog. (Not something that strikes me as useful but it's possible.) * Relative paths given to SecDataDir will now be treated as relative to the Apache server root. * Added checks to make sure only correct actions are specified in SecDefaultAction (some actions are required, some don't make any sense) and in rules that are not chain starters (same). This should make the unhelpful "Internal Error: Failed to add rule to the ruleset" message go away. * Fixed the problem when "SecRuleInheritance Off" is used in a context with no rules defined. * Fixed a problem of lost input (request body) data on some redirections, for example when mod_rewrite is used. @ text @d1 1 a1 1 # $NetBSD: options.mk,v 1.1.1.1 2006/11/05 14:33:37 adrianp Exp $ d5 1 a5 2 PKG_SUPPORTED_OPTIONS= xml PKG_SUGGESTED_OPTIONS= xml d14 1 d16 12 @ 1.1 log @Initial revision @ text @d1 1 a1 1 # $NetBSD$ d11 1 a11 1 ### Brink in support for libxml2 @ 1.1.1.1 log @ModSecurity is an open source intrusion detection and prevention engine for web applications (or a web application firewall). Operating as an Apache Web server module or standalone, the purpose of ModSecurity is to increase web application security, protecting web applications from known and unknown attacks. This is the 2.x branch of modsecurity and only supports Apache 2.x @ text @@