ServerWatch content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.
The latest edition of Apache Week continues the Under Development
section with information about getting Apache 2.0 running
at www.apache.org, the new release procedure, a security flaw
in version 1.3 fixed and old code removed from the Apache 2.0 repository.
“Martin Kraemer has unearthed and fixed a security flaw in Apache
1.3 which was originally discovered and supposedly fixed earlier
last year. The problem is found on some platforms where a GET
request with a certain number of repeated ‘/’ characters in the URI
will give a directory index response rather than the correct page.
The fix has been checked-in, and a 1.3.18 release has been
tentatively scheduled for this weekend.”
The latest edition of Apache Week continues the Under Development
section with information about getting Apache 2.0 running
at www.apache.org, the new release procedure, a security flaw
in version 1.3 fixed and old code removed from the Apache 2.0 repository.
