Welcome to the Apache Haus

Home

Main Menu

Welcome to the Apache Haus - Your place for the Apache Server and Modules on Windows

The Apache Haus is a community of webmasters, developers and hobbyists who prefer using the Apache Web Server over IIS. Whether for business or pleasure, the use of Apache on Windows is steadily gaining and we hope to see the trend continue by offering people a place to come where they can get help and share their experiences using Apache on Windows. Our forums provide the place for people to meet and ask questions or share their knowledge concerning the installation and operation of Apache, as well as helping them keep up to date with the latest technologies.

Please note that the Apache Haus is not affiliated with, or endorsed by, the Apache Software Foundation. The Apache HTTP Server, Apache, and the Apache feather logo are trademarks of The Apache Software Foundation.

Server powered by: Finetworks Ay

Contact

Written by Mario

If you need to contact us write an email to [email protected] and we will answer as soons as possible.

Apache 2.4.46 with updated OpenSSL 1.1.1k or LibreSSL 3.2.5 available

Written by TrustyHausBot
Fri, 26 Mar 2021 20:12:05 GMT
I must say I like it when OpenSSL &ampamp LibreSSL release within days of each other, makes it easier for updates, until something else goes wrong. So with a little fanfare, we give you updates. Updating to OpenSSL is a must, there is a proof of concept that these vulnerabilities can lead to a denial-of-service. LibreSSL is probably a good idea to get updated as well with a use after free bug fixed that can be triggered by remote. nbspChanges between OpenSSL 1.1.1j and 1.1.1k [25 Mar 2021] nbspnbsp *) Fixe Read more

Apache 2.4.46 with updated OpenSSL 1.1.1i or LibreSSL 3.2.3 available

Written by TrustyHausBot
Thu, 10 Dec 2020 06:41:21 GMT
Without much fanfare, both the OpenSSL and LibreSSL releases have been updated. Changes: nbspnbsp Changes between 1.1.1h and 1.1.1i [8 Dec 2020] nbspnbsp *) Fixed NULL pointer deref in the GENERAL_NAME_cmp function nbspnbsp nbspnbsp nbspThis function could crash if both GENERAL_NAMEs contain an EDIPARTYNAME. nbspnbsp nbspnbsp nbspIf an attacker can control both items being compared nbspnbsp then this could lead nbspnbsp nbspnbsp nbspto a possible denial of service attack. OpenSSL itself uses the nbspnbsp nbspnbsp nbspGENERAL_NAME_cmp function for two purposes: nbspn Read more

Apache 2.4.46 with updated OpenSSL 1.1.1h or LibreSSL 3.1.4 availabe

Written by TrustyHausBot
Thu, 24 Sep 2020 19:12:17 GMT
Without much fanfare, both the OpenSSL and LibreSSL releases have been updated. I'#039#039ve had the LibreSSL releases a few weeks and lagged on getting them out with all the fires around this area. Now is as good a time as any to put them up. Changes: nbspChanges between OpenSSL 1.1.1g and 1.1.1h [22 Sep 2020] nbspnbsp ) Certificates with explicit curve parameters are now disallowed in nbspnbsp nbspnbsp nbspverification chains if the X509_V_FLAG_X509_STRICT flag is used. nbspnbsp nbspnbsp nbsp[Tomas Mraz] nbspnbsp ) The '#039#039MinProtocol' Read more