General

Profile

helmut

  • Registered on: 2019-01-08
  • Last connection: 2019-09-09

Issues

Activity

2019-09-09

07:57 Lighttpd Feature #2976: Digest auth nonces are not validated
I mostly agree with what you say. I derived the recommendation from the example given in the RFC. This is not the for...

2019-08-30

09:42 Lighttpd Feature #2976 (New): Digest auth nonces are not validated
A malicious client attempting Digest authentication with lighttpd can arbitrarily invent nonces so long as the timest...

2019-01-22

06:59 Lighttpd Bug #2925: autotools cross build failure with lighttpd
Agreed. So not using AS_IF is not a bug here, but requires non-local consistency. I mainly added it because I did not...

2019-01-21

07:08 Lighttpd Bug #2925: autotools cross build failure with lighttpd
FYI, the change from MYSQL_INCLUDE to MYSQL_CFLAGS is not entirely non-required, because PKG_CHECK_MODULES populates ...
07:03 Lighttpd Bug #2925: autotools cross build failure with lighttpd
Please don't replace AS_IF! That's broken. It's broken, because PKG_CHECK_MODULES uses AC_REQUIRE and AC_REQUIRE does...

2019-01-14

08:18 Lighttpd Bug #2925 (Fixed): autotools cross build failure with lighttpd
On Debian systems, mysql_config does not work with cross compilation. For using mysql_config in a cross build, we'd h...

2019-01-10

07:37 Lighttpd Feature #2924: Suboptimal keep-alive handling when request body is not read
Thank you for your review and fixing the issue with improved checks. I expect that your version fully resolves the pr...

2019-01-09

07:58 Lighttpd Feature #2924: Suboptimal keep-alive handling when request body is not read
I should also mention relevant versions:
* Not reproducible on 1.4.35
* Reproducible on 1.4.45
* Reproducible on 1...
07:54 Lighttpd Feature #2924 (Fixed): Suboptimal keep-alive handling when request body is not read
Consider the following situation:
* A HTTP client performs a HTTP request.
* The request is eligible for keep-alive...

Also available in: Atom