Welcome to the Apache Haus - Your place for the Apache Server and Modules on Windows

The Apache Haus is a community of webmasters, developers and hobbyists who prefer using the Apache Web Server over IIS. Whether for business or pleasure, the use of Apache on Windows is steadily gaining and we hope to see the trend continue by offering people a place to come where they can get help and share their experiences using Apache on Windows. Our forums provide the place for people to meet and ask questions or share their knowledge concerning the installation and operation of Apache, as well as helping them keep up to date with the latest technologies.

Please note that the Apache Haus is not affiliated with, or endorsed by, the Apache Software Foundation. The Apache HTTP Server, Apache, and the Apache feather logo are trademarks of The Apache Software Foundation.

Server powered by: Finetworks Ay

Written by Mario   
If you need to contact us write an email to [email protected] and we will answer as soons as possible.
Announcing the release of Apache 2.4.47
Written by TrustyHausBot   
Thu, 29 Apr 2021 17:18:09 GMT
This release is a bug fix &ampamp stability release.

This release includes:
APR Version: nbspnbsp  nbspnbsp  nbspnbsp  nbspnbsp 1.7.0
APU Version: nbspnbsp  nbspnbsp  nbspnbsp  nbspnbsp 1.6.1
Brotli Version: nbspnbsp  nbspnbsp 1.0.7
Jansson Version: nbspnbsp  nbspnbsp 2.13.1
Libcurl Version: nbspnbsp  nbsp7.76.1
LibXML2 Version: nbspnbsp  nbspnbsp 2.9.10
LUA Version: nbspnbsp  nbspnbsp  nbspnbsp  nbspnbsp 5.2.4
NGHTTP2 Version: nbspnbsp  nbspnbsp 1.43.0
OpenSSL Version: nbspnbsp  nbspnbsp 1.1.1k or LibreSSL 3.2.5
PCRE Version: nbspnbsp  nbspnbsp  nbspnbsp  nbsp8.44
SQLite3 Version: nbspnbsp  nbspnbsp 3.35.5
ZLib Version: nbspnbsp  nbspnbsp  nbspnbsp  nbsp1.2.10

You can get your copy of the

Read more
Apache 2.4.46 with updated OpenSSL 1.1.1k or LibreSSL 3.2.5 available
Written by TrustyHausBot   
Fri, 26 Mar 2021 20:12:05 GMT
I must say I like it when OpenSSL &ampamp LibreSSL release within days of each other, makes it easier for updates, until something else goes wrong.

So with a little fanfare, we give you updates. Updating to OpenSSL is a must, there is a proof of concept that these vulnerabilities can lead to a denial-of-service. LibreSSL is probably a good idea to get updated as well with a use after free bug fixed that can be triggered by remote.

 nbspChanges between OpenSSL 1.1.1j and 1.1.1k [25 Mar 2021]

 nbspnbsp *) Fixe

Read more
Apache 2.4.46 with updated OpenSSL 1.1.1i or LibreSSL 3.2.3 available
Written by TrustyHausBot   
Thu, 10 Dec 2020 06:41:21 GMT
Without much fanfare, both the OpenSSL and LibreSSL releases have been updated.


 nbspnbsp Changes between 1.1.1h and 1.1.1i [8 Dec 2020]

 nbspnbsp *) Fixed NULL pointer deref in the GENERAL_NAME_cmp function
 nbspnbsp  nbspnbsp  nbspThis function could crash if both GENERAL_NAMEs contain an EDIPARTYNAME.
 nbspnbsp  nbspnbsp  nbspIf an attacker can control both items being compared nbspnbsp then this could lead
 nbspnbsp  nbspnbsp  nbspto a possible denial of service attack. OpenSSL itself uses the
 nbspnbsp  nbspnbsp  nbspGENERAL_NAME_cmp function for two purposes:

Read more
Apache 2.4.46 with updated OpenSSL 1.1.1h or LibreSSL 3.1.4 availabe
Written by TrustyHausBot   
Thu, 24 Sep 2020 19:12:17 GMT
Without much fanfare, both the OpenSSL and LibreSSL releases have been updated.

I'#039#039ve had the LibreSSL releases a few weeks and lagged on getting them out with all the fires around this area.
Now is as good a time as any to put them up.


 nbspChanges between OpenSSL 1.1.1g and 1.1.1h [22 Sep 2020]

 nbspnbsp *) Certificates with explicit curve parameters are now disallowed in
 nbspnbsp  nbspnbsp  nbspverification chains if the X509_V_FLAG_X509_STRICT flag is used.
 nbspnbsp  nbspnbsp  nbsp[Tomas Mraz]

 nbspnbsp *) The '#039#039MinProtocol'

Read more

Powered by Apache 2.4