packages: apache/apache-mod_ssl-vhost.conf, apache/apache-mod_ssl.conf, apa...

Tue Jan 5 11:01:33 CET 2010

Author: psz                          Date: Tue Jan  5 10:01:33 2010 GMT
Module: packages                      Tag: HEAD
---- Log message:
- More secure SSL Cipher Suite
- SSL virtual hosting fixes
- rel 12

---- Files affected:
packages/apache:
   apache-mod_ssl-vhost.conf (1.18 -> 1.19) , apache-mod_ssl.conf (1.18 -> 1.19) , apache.spec (1.589 -> 1.590) 

---- Diffs:

================================================================
Index: packages/apache/apache-mod_ssl-vhost.conf
diff -u packages/apache/apache-mod_ssl-vhost.conf:1.18 packages/apache/apache-mod_ssl-vhost.conf:1.19

--- packages/apache/apache-mod_ssl-vhost.conf:1.18	Wed Nov  5 18:27:28 2008
+++ packages/apache/apache-mod_ssl-vhost.conf	Tue Jan  5 11:01:25 2010
@@ -64,7 +64,8 @@
 ## SSL Virtual Host Context
 ##
 
-<VirtualHost _default_:443>
+NameVirtualHost *:443
+<VirtualHost *:443>
 #   SSL Engine Switch:
 #   Enable/Disable SSL for this virtual host.
 SSLEngine on
@@ -72,7 +73,7 @@
 #   SSL Cipher Suite:
 #   List the ciphers that the client is permitted to negotiate.
 #   See the mod_ssl documentation for a complete list.
-SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
+SSLCipherSuite ALL:!ADH:!EXP:!LOW:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+eNULL
 
 #   Server Certificate:
 #   Point SSLCertificateFile at a PEM encoded certificate.  If

================================================================
Index: packages/apache/apache-mod_ssl.conf
diff -u packages/apache/apache-mod_ssl.conf:1.18 packages/apache/apache-mod_ssl.conf:1.19
--- packages/apache/apache-mod_ssl.conf:1.18	Wed Nov  5 18:27:28 2008
+++ packages/apache/apache-mod_ssl.conf	Tue Jan  5 11:01:25 2010
@@ -64,7 +64,8 @@
 ## SSL Virtual Host Context
 ##
 
-<VirtualHost _default_:443>
+NameVirtualHost *:443
+<VirtualHost *:443>
 #   SSL Engine Switch:
 #   Enable/Disable SSL for this virtual host.
 SSLEngine on
@@ -72,7 +73,7 @@
 #   SSL Cipher Suite:
 #   List the ciphers that the client is permitted to negotiate.
 #   See the mod_ssl documentation for a complete list.
-SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
+SSLCipherSuite ALL:!ADH:!EXP:!LOW:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+eNULL
 
 #   Server Certificate:
 #   Point SSLCertificateFile at a PEM encoded certificate.  If

================================================================
Index: packages/apache/apache.spec
diff -u packages/apache/apache.spec:1.589 packages/apache/apache.spec:1.590
--- packages/apache/apache.spec:1.589	Thu Nov 26 11:25:58 2009
+++ packages/apache/apache.spec	Tue Jan  5 11:01:25 2010
@@ -42,7 +42,7 @@
 Summary(tr.UTF-8):	Lider WWW tarayıcı
 Name:		apache
 Version:	2.2.14
-Release:	11
+Release:	12
 License:	Apache v2.0
 Group:		Networking/Daemons/HTTP
 Source0:	http://www.apache.org/dist/httpd/httpd-%{version}.tar.gz
@@ -2736,6 +2736,11 @@
 All persons listed below can be reached at <cvs_login>@pld-linux.org
 
 $Log$
+Revision 1.590  2010/01/05 10:01:25  psz
+- More secure SSL Cipher Suite
+- SSL virtual hosting fixes
+- rel 12
+
 Revision 1.589  2009/11/26 10:25:58  psz
 - fixes in NameVirtualHost conflict with mod_ssl
 - addition of example virtual host config file
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/packages/apache/apache-mod_ssl-vhost.conf?r1=1.18&r2=1.19&f=u
    http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/packages/apache/apache-mod_ssl.conf?r1=1.18&r2=1.19&f=u
    http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/packages/apache/apache.spec?r1=1.589&r2=1.590&f=u

