Lighttpd

2019-01-11

04:20 Feature #426 (Fixed): mod_auth_tkt for lighttpd

I just posted a real port of Apache mod_auth_tkt to lighttpd: https://github.com/gstrauss/lighttpd-mod_authn_tkt
(cu... gstrauss

2019-01-10

07:37 Feature #2924: Suboptimal keep-alive handling when request body is not read

Thank you for your review and fixing the issue with improved checks. I expect that your version fully resolves the pr... helmut

07:25 Feature #2924 (Fixed): Suboptimal keep-alive handling when request body is not read

Applied in changeset commit:629b16f188173b1d4d7434fc68fb85938b2fc582. gstrauss

07:18 Revision 629b16f1: [core] send Connection: close if reqbody not read (fixes #2924)

send Connection: close if it is known that request body has not finished
being read and will not finish being read
x... gstrauss

07:14 Revision 96061c1e: [mod_auth] permit additional auth backends to load

(For testing purposes, allow for all current auth module backends
to be loaded and registered at the same time) gstrauss

07:14 Revision ed6b8941: [core] define MD5_DIGEST_LENGTH 16

gstrauss

07:14 Revision e47ea5e2: [core] memeq compare rounded to 64, not next 1M

gstrauss

07:14 Revision b541b674: [core] use con->server_name for dir redir

use con->server_name for dir redir if con->server_name is not empty
and Host header not provided in request. gstrauss

2019-01-09

23:57 Feature #2924: Suboptimal keep-alive handling when request body is not read

> A remote client may be unprepared for such a shutdown, because lighttpd did not include a "Connection: close" heade... gstrauss

07:58 Feature #2924: Suboptimal keep-alive handling when request body is not read

I should also mention relevant versions:
* Not reproducible on 1.4.35
* Reproducible on 1.4.45
* Reproducible on 1... helmut

07:54 Feature #2924 (Fixed): Suboptimal keep-alive handling when request body is not read

Consider the following situation:
* A HTTP client performs a HTTP request.
* The request is eligible for keep-alive... helmut