Age | Commit message (Expand) | Author |
2015-10-13 | Plug a leak. | Sunil Nimmagadda |
2015-10-13 | Pass unsigned chars to ctype functions. | Reyk Floeter |
2015-09-07 | Fix a regression that was introduced with server.c r1.64: Do NOT free | Reyk Floeter |
2015-08-21 | The WebDAV MOVE method was not included in the switch statement | Reyk Floeter |
2015-08-20 | Change httpd(8) to use C99-style fixed-width integers (uintN_t instead | Reyk Floeter |
2015-07-31 | repair hsts header output, wrong format strings caused broken | Sebastian Benoit |
2015-07-29 | backout the previous: it broke wordpress somehow. | Reyk Floeter |
2015-07-29 | Read fcgi response records until we have the whole http header and can | Florian Obser |
2015-07-23 | The realm in authenticate directive of config file isn't escaped for '"' char. | Sebastien Marie |
2015-07-19 | For the completeness of HSTS, add the non-standard preload option. | Reyk Floeter |
2015-07-18 | Allow to change the default media type globally or per-location, | Reyk Floeter |
2015-07-18 | Implement HTTP Strict Transport Security (HSTS). | Florian Obser |
2015-07-16 | spacing | Reyk Floeter |
2015-07-15 | Escape the message in server_log() as well. | Reyk Floeter |
2015-07-15 | For some values like the User-Agent, use vis(3) instead of url_encode(). | Reyk Floeter |
2015-07-15 | Simplify the error path of the previous commit: by using ret = -1 by | Reyk Floeter |
2015-07-15 | httpd don't sanitize variables before putting them in logs. It is possible for | semarie |
2015-06-23 | escape the matched substrings before using it in expansion. | semarie |
2015-06-23 | Add initial support for pattern matching using Lua's pattern matching code. | Reyk Floeter |
2015-06-22 | After the last change, we also have to url_encode $SERVER_NAME and | Reyk Floeter |
2015-06-21 | When encoding the Location url, only encode the query and path | Reyk Floeter |
2015-05-20 | Use off_t instead of size_t to pass file size and print it using %lld when | Mark Kettenis |
2015-05-03 | Implement byte ranges. | Florian Obser |
2015-04-18 | Regis Leroy reported that httpd does not strictly accept CRLF for | Jonathan Gray |
2015-04-09 | Revert previous as this breaks stuff. | Florian Obser |
2015-04-08 | Do not silently accept multiple Content-Length headers. | Florian Obser |
2015-02-23 | Allow to specify CGI variables as macros in redirection strings, eg. | Reyk Floeter |
2015-02-08 | spacing | Reyk Floeter |
2015-02-07 | spacing | Reyk Floeter |
2015-02-07 | Add support for blocking, dropping, and redirecting requests. | Reyk Floeter |
2015-02-06 | Fix log options in locations. | Reyk Floeter |
2015-02-05 | Fix potential NULL pointer dereference. | Reyk Floeter |
2015-01-21 | httpd is based on relayd and had included many headers that are only | Reyk Floeter |
2015-01-19 | Log the remote user in the access.log. | Florian Obser |
2015-01-19 | s/clt_fcgi_remote_user/clt_remote_user/ | Florian Obser |
2015-01-19 | Decouple auth parameters from struct server_config into struct auth. | Reyk Floeter |
2015-01-18 | First stab at implementing basic auth. | Florian Obser |
2015-01-16 | Replace <sys/param.h> with <limits.h> and other less dirty headers where | Theo de Raadt |
2015-01-13 | bump copyright year | Reyk Floeter |
2015-01-06 | I missed one goto abort instead of free(line). | Reyk Floeter |
2015-01-06 | Instead of calling free(line) in each error case, call it once in fail:. | Reyk Floeter |
2015-01-06 | Return "400 Bad Request" instead of "500 Internal Server Error" for | Reyk Floeter |
2015-01-04 | add new url stripping option: | Christopher Zimmermann |
2015-01-01 | Use the HTML5 doctype for error and auto index pages because it is | Reyk Floeter |
2014-12-21 | Stop pulling in <arpa/inet.h> or <arpa/nameser.h> when unnecessary. | Philip Guenther |
2014-12-08 | Do not send an error body in a HEAD request answer. | Florian Obser |
2014-12-04 | stop viral header propagation. none of this code uses sys/hash.h | Ted Unangst |
2014-10-25 | Remove unnecessary netinet/in_systm.h include. | Lawrence Teo |
2014-10-22 | URL-decode the request path. | Reyk Floeter |
2014-10-21 | Rework the error message a little bit: Do not send details of the | Reyk Floeter |