Age | Commit message (Expand) | Author |
2015-07-31 | repair hsts header output, wrong format strings caused broken | Sebastian Benoit |
2015-07-29 | backout the previous: it broke wordpress somehow. | Reyk Floeter |
2015-07-29 | Read fcgi response records until we have the whole http header and can | Florian Obser |
2015-07-28 | add HSTS to fcgi responses | Florian Obser |
2015-07-23 | The realm in authenticate directive of config file isn't escaped for '"' char. | Sebastien Marie |
2015-07-20 | ensure http_path is escaped before using it in Location redirection. | Sebastien Marie |
2015-07-19 | handle error returns from bufferevent_write() | Bret Lambert |
2015-07-19 | For the completeness of HSTS, add the non-standard preload option. | Reyk Floeter |
2015-07-18 | remove XXX and handle error return from evbuffer_add() | Bret Lambert |
2015-07-18 | libtls has been changed to set SSL_MODE_ENABLE_PARTIAL_WRITE and | Reyk Floeter |
2015-07-18 | treat asprintf failure in REQUEST_URI case as a fatal error | Bret Lambert |
2015-07-18 | Fix check against NULL which was reverted by accident in r1.56. | Matthias Kilian |
2015-07-18 | tweak previous; | Jason McIntyre |
2015-07-18 | Allow to change the default media type globally or per-location, | Reyk Floeter |
2015-07-18 | Implement HTTP Strict Transport Security (HSTS). | Florian Obser |
2015-07-17 | Adjust server_file_modified_since() to our style. Please keep httpd clean. | Reyk Floeter |
2015-07-17 | According to RFC 3875 PATH_INFO should either contain a full path or | Reyk Floeter |
2015-07-16 | spacing | Reyk Floeter |
2015-07-16 | If we can read faster from disk than send data to the client stop | Florian Obser |
2015-07-16 | VIS_QUOTE is not there yet, unbreak the tree. Noticed by semarie@ | Reyk Floeter |
2015-07-15 | Escape the message in server_log() as well. | Reyk Floeter |
2015-07-15 | For some values like the User-Agent, use vis(3) instead of url_encode(). | Reyk Floeter |
2015-07-15 | Simplify the error path of the previous commit: by using ret = -1 by | Reyk Floeter |
2015-07-15 | Close connections that fail to complete a TLS handshake. | Joel Sing |
2015-07-15 | Unbreak configurations that have a non-TLS listen statement followed by a | Joel Sing |
2015-07-15 | Fix typo in comment. | Joel Sing |
2015-07-15 | Document default locations for TLS certificate and key. | Joel Sing |
2015-07-15 | httpd don't sanitize variables before putting them in logs. It is possible for | semarie |
2015-07-15 | Send the TLS certificate and key via separate imsgs, rather than | Joel Sing |
2015-07-15 | Explicitly check for and handle EOF on a TLS connection. | Joel Sing |
2015-07-15 | Fix memory leaks that can occur when config_getserver() fails. | Joel Sing |
2015-06-30 | new sentence, new line; | Jason McIntyre |
2015-06-30 | Add a small paragraph about some difference with Lua implementation. | semarie |
2015-06-27 | Corrects the manpage for patterns(7): the indexing for empty capture follow | semarie |
2015-06-26 | move #include inside #ifndef PATTERNS_H | semarie |
2015-06-26 | Corrects some minors nits. Patch from Theo Buehler. | semarie |
2015-06-23 | various tweaks; | Jason McIntyre |
2015-06-23 | escape the matched substrings before using it in expansion. | semarie |
2015-06-23 | remove a deprecated character class. | semarie |
2015-06-23 | Add initial support for pattern matching using Lua's pattern matching code. | Reyk Floeter |
2015-06-22 | After the last change, we also have to url_encode $SERVER_NAME and | Reyk Floeter |
2015-06-21 | When encoding the Location url, only encode the query and path | Reyk Floeter |
2015-06-11 | Use "compliant" header guards by avoiding the reserved '_' namespace. | Reyk Floeter |
2015-06-09 | plug fd leak found by Todd Mortimer | Joerg Jung |
2015-06-03 | Do not assume that asprintf() clears the pointer on failure, which | Todd C. Miller |
2015-05-28 | use "uri"; from yegor timoschenko | Jason McIntyre |
2015-05-28 | Do not try to unlink the control socket in an unprivileged child | Florian Obser |
2015-05-20 | Use off_t instead of size_t to pass file size and print it using %lld when | Mark Kettenis |
2015-05-19 | better spacing in media types. | Igor Sobrado |
2015-05-19 | sort media type extensions for text/html and image/jpeg as given in | Igor Sobrado |