Sprout from master 2004-10-15 18:57:51 UTC radek <radek@pld-linux.org> '- added Id cvs tag and vim modeline'
Delete:
apache1-mod_ssl-nohttpd.patch
apache1-mod_ssl-server.crt
apache1-mod_ssl-server.key
apache1-mod_ssl-sxnet.html
apache1-mod_ssl.conf
apache1-mod_ssl.logrotate
apache1-mod_ssl.spec
mod_ssl-cca-openssl-path.patch
mod_ssl-db3.patch
+++ /dev/null
---- mod_ssl-2.8.16-1.3.29/configure~ 2004-04-01 09:37:37.000000000 +0000
-+++ mod_ssl-2.8.16-1.3.29/configure 2004-04-01 09:43:04.000000000 +0000
-@@ -283,8 +283,7 @@
-
- # determine Apache parameters
- apache=$APXS_PREFIX
-- APV=`$APXS_SBINDIR/$APXS_TARGET -v | grep "Server version:" |\
-- sed -e 's;^.*Apache/;;' -e 's; .*$;;'`
-+ APV="1.3.31"
- else
- if [ ! -f "$apache/src/include/httpd.h" ]; then
- echo "$0:${T_MD}Error${T_ME}: Cannot find Apache 1.3 source tree under $apache" 1>&2
+++ /dev/null
-issuer :/C=AU/ST=Some-State/L=Somewhere/O=Linux Test Server/OU=Test Certificate/CN=localhost/Email=root@localhost
-subject:/C=AU/ST=Some-State/L=Somewhare/O=Linux Test Server/OU=Test Certificate/CN=localhost/Email=root@localhost
-serial :01
-
-Certificate:
- Data:
- Version: 1 (0x0)
- Serial Number: 1 (0x1)
- Signature Algorithm: md5WithRSAEncryption
- Issuer: C=AU, ST=Some-State, L=Somewhere, O=Linux Test Server, OU=Test Certificate, CN=localhost/Email=root@localhost
- Validity
- Not Before: May 22 00:47:08 1999 GMT
- Not After : May 21 00:47:08 2000 GMT
- Subject: C=AU, ST=Some-State, L=Somewhare, O=Linux Test Server, OU=Test Certificate, CN=localhost/Email=root@localhost
- Subject Public Key Info:
- Public Key Algorithm: rsaEncryption
- RSA Public Key: (1024 bit)
- Modulus (1024 bit):
- 00:b5:69:d7:83:50:91:13:b0:04:34:05:68:6d:61:
- 48:76:b1:d6:7b:8a:10:1a:f3:66:8d:06:2b:fe:de:
- 1e:22:c1:f2:ae:4e:0e:3a:a3:33:0e:ff:4f:19:d4:
- 9a:6a:6f:94:34:d0:6a:74:3d:7c:a0:07:a8:a4:8a:
- c4:2a:e2:89:62:ed:57:e0:9f:0c:24:1f:da:ab:e4:
- 45:ad:b9:c4:27:19:da:d2:99:c3:c1:7c:04:31:fa:
- 8b:be:40:44:ae:bf:bf:a0:8b:3c:d3:ff:5a:84:72:
- d6:89:09:3e:0d:c5:bd:f4:b3:d1:49:48:22:00:76:
- 06:71:b9:7d:bb:b4:2e:34:83
- Exponent: 65537 (0x10001)
- Signature Algorithm: md5WithRSAEncryption
- 5d:98:a4:ab:74:ce:5c:0e:26:7a:59:fb:ba:04:d8:73:56:f3:
- 26:61:60:2f:a6:47:e8:86:14:e1:be:30:67:6f:af:88:cc:20:
- bc:f8:3c:6c:f0:1e:04:ba:e8:1c:63:62:0e:98:9e:2f:1f:d5:
- ac:35:b6:fa:28:62:3c:04:3e:1d:69:cf:97:ab:d3:e1:9a:e7:
- 65:ed:97:0a:83:08:75:4d:56:5c:21:d1:2f:9f:fd:c8:2c:cb:
- c7:c0:10:4c:41:ca:a8:fc:55:e6:27:d9:b6:54:e2:88:f3:89:
- e5:68:99:01:92:a1:88:ac:06:02:5c:9f:6c:53:92:38:72:69:
- d9:a6
-
------BEGIN CERTIFICATE-----
-MIICsTCCAhoCAQEwDQYJKoZIhvcNAQEEBQAwgaAxCzAJBgNVBAYTAkFVMRMwEQYD
-VQQIEwpTb21lLVN0YXRlMRIwEAYDVQQHEwlTb21ld2hlcmUxGjAYBgNVBAoTEUxp
-bnV4IFRlc3QgU2VydmVyMRkwFwYDVQQLExBUZXN0IENlcnRpZmljYXRlMRIwEAYD
-VQQDEwlsb2NhbGhvc3QxHTAbBgkqhkiG9w0BCQEWDnJvb3RAbG9jYWxob3N0MB4X
-DTk5MDUyMjAwNDcwOFoXDTAwMDUyMTAwNDcwOFowgaAxCzAJBgNVBAYTAkFVMRMw
-EQYDVQQIEwpTb21lLVN0YXRlMRIwEAYDVQQHEwlTb21ld2hhcmUxGjAYBgNVBAoT
-EUxpbnV4IFRlc3QgU2VydmVyMRkwFwYDVQQLExBUZXN0IENlcnRpZmljYXRlMRIw
-EAYDVQQDEwlsb2NhbGhvc3QxHTAbBgkqhkiG9w0BCQEWDnJvb3RAbG9jYWxob3N0
-MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1adeDUJETsAQ0BWhtYUh2sdZ7
-ihAa82aNBiv+3h4iwfKuTg46ozMO/08Z1Jpqb5Q00Gp0PXygB6ikisQq4oli7Vfg
-nwwkH9qr5EWtucQnGdrSmcPBfAQx+ou+QESuv7+gizzT/1qEctaJCT4Nxb30s9FJ
-SCIAdgZxuX27tC40gwIDAQABMA0GCSqGSIb3DQEBBAUAA4GBAF2YpKt0zlwOJnpZ
-+7oE2HNW8yZhYC+mR+iGFOG+MGdvr4jMILz4PGzwHgS66BxjYg6Yni8f1aw1tvoo
-YjwEPh1pz5er0+Ga52XtlwqDCHVNVlwh0S+f/cgsy8fAEExByqj8VeYn2bZU4ojz
-ieVomQGSoYisBgJcn2xTkjhyadmm
------END CERTIFICATE-----
-
+++ /dev/null
------BEGIN RSA PRIVATE KEY-----
-MIICXQIBAAKBgQC1adeDUJETsAQ0BWhtYUh2sdZ7ihAa82aNBiv+3h4iwfKuTg46
-ozMO/08Z1Jpqb5Q00Gp0PXygB6ikisQq4oli7VfgnwwkH9qr5EWtucQnGdrSmcPB
-fAQx+ou+QESuv7+gizzT/1qEctaJCT4Nxb30s9FJSCIAdgZxuX27tC40gwIDAQAB
-AoGBAIJ5iD3ykRUm0C8WAKBCipqLlyYtCx5HFuewm63n1KbM9Ry2GPfFbrCHoT2D
-sjeA3ogJqbbGjj6Oo5UMFMB/Q61DU3J7EOyjtraUd3Z38mN9yIK+w1taEESe8KBx
-/NhSEpdqHUbVUTXs/rrvIi3AcJeBxt81w3pCL0olaeaUdGxJAkEA5Q5p164+X+HP
-pKoa6dApnxZy1DZJoTVk52k6PMt6zZiHqA8sh7rUhb9YumrW9qGmSRSyqzqbDvno
-J7eWt24BdwJBAMrAwY7saJWQNdGoeRO4E3xitQ50haMICAuxVourl4yd5DIHwWdM
-HasCzOKMQYhE+x3SwjNI7fujb6+XUQ9ECFUCQQCFBbXaF8sJi+42xsMSfl1tkm/l
-ZhGkmYmcCrRTkigjNi2yH/3QZWP+uH0i5eEpIf+b+XU5k7NxIxj719ajeDNJAkAX
-upNsnLJovqXt0Z/J9QMizZKPDIgPWoNGiwyr7/sek+P/DvVNl5TpTLyZzvxkbF5P
-UTk1M1XW23vYuwbbmIS5AkBTmQu6nKkGa2IiYCmo9OWH4eINxKs0F3h9tch9Xz8g
-L/0cBZIsnckVV0K1YrQdv/2IfhUSVM0xzrLcAY49dfm2
------END RSA PRIVATE KEY-----
+++ /dev/null
-<!doctype html public "-//w3c//dtd html 4.0 transitional//en">
-<html>
-<head>
- <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
- <meta name="GENERATOR" content="Mozilla/4.6 [en] (X11; I; Linux 2.2.9-23mdk i686) [Netscape]">
- <title>Test Page for Mandrake Linux's Apache Installation</title>
-<!-- Background white, links blue (unvisited), navy (visited), red (active) -->
-</head>
-<body text="#000000" bgcolor="#FFFFFF" link="#0000FF" vlink="#000080" alink="#FF0000">
-
-<center><a href="http://www.thawte.com/">
-<img SRC="http://www.thawte.com/certs/logos/thawte1.gif" BORDER=0></a>
-</center>
-
-<TITLE>About the Strong Extranet</TITLE>
-
-<H1> About the Strong Extranet</H1>
-<pre>
-The Strong Extranet allows you to use digital certificates to authenticate
-users on your web server. Typically, your users enroll in your Strong
-Extranet, under your control, through the Thawte Personal Cert System.
-
-BENEFITS OF THE STRONG EXTRANET
-
- 1. SXNet certificates contain usernames. You can allocate these usernames
- to users as required, and your server will extract the username from the
- certificate when a user accesses your server. Your CGI scripts can
- obtain the username in the same way they do so with password
- authentication, through the REMOTE_USER environment variable.
-
- 2. Low cost of CA. Thawte provides a full-server CA infrastructure for
- your Strong Extranet users for $1000 per year for up to 10 000 users.
- That's the lowest cost CA program, period.
-
- 3. Full control and security. Users are enrolled in your Strong Extranet
- under your full control. There are several enrollment methods with
- different levels of security. Choose the one which suits your business
- processes and requirements.
-
-MORE INFORMATION
-
-<A HREF="http://www.thawte.com/certs/strongextranet/">
-http://www.thawte.com/certs/strongextranet/</A>
-
-<HR>
-USING THE MODULE:
-
- The module adds the following directives:
-
- AuthType StrongExtranet
- SXNetZone a number (the zone number)
- SXNetGroupFile /path/to/groups/file
- SXNetB64EncodeID on/off
-
- "AuthType StrongExtranet" tells the server to use Strong Extranet
- Authentication in that directory. It's the equivalent of
- "AuthType Basic" or "AuthType Digest". Note that you need to
- have turned ON client certificate requesting, and set the CA
- details, as part of normal SSL configuration.
-
- The SXNetZone is a single integer. It defines the zone in which
- the client has to have an ID in order to gain access to the directory.
- The Thawte ACME Test Zone is 2, so use that for demos.
-
- The SXNetGroupFile is a file that can be used to put users in groups,
- just like the standard Basic authentication mechanism.
-
- SXNetB64EncodeID allows you to have the ID base64 encoded before it
- is put into the REMOTE_USER CGI variable. Use this if your ID can be
- 8-bit.
-
-Example:
-
-The following configuration snippet will setup the server to require
-that client certs have the StrongExtranet extension, with an ID in
-zone 23 embedded:
-
- <Directory />
- AuthType StrongExtranet
- AuthName Test Extranet
- SXNetB64EncodeID on
- SXNetZone 23
- SXNetGroupFile /etc/httpd/groups
- require valid-user
- </Directory>
-
-</PRE>
+++ /dev/null
-LoadModule ssl_module lib/apache1/libssl.so
-AddModule mod_ssl.c
-
-##--------------------------------------------------------------------------
-## Add additional SSL configuration directives which provide a
-## robust default configuration: virtual server on port 443
-## which speaks SSL.
-##--------------------------------------------------------------------------
-##
-## SSL Support
-##
-## When we also provide SSL we have to listen to the
-## standard HTTP port (see above) and to the HTTPS port
-##
-Listen 443
-
-##
-## SSL Global Context
-##
-## All SSL configuration in this context applies both to
-## the main server and all SSL-enabled virtual hosts.
-##
-
-#
-# Some MIME-types for downloading Certificates and CRLs
-#
-AddType application/x-x509-ca-cert .crt
-AddType application/x-pkcs7-crl .crl
-
-# Pass Phrase Dialog:
-# Configure the pass phrase gathering process.
-# The filtering dialog program (`builtin' is a internal
-# terminal dialog) has to provide the pass phrase on stdout.
-SSLPassPhraseDialog builtin
-
-# Inter-Process Session Cache:
-# Configure the SSL Session Cache: First either `none'
-# or `dbm:/path/to/file' for the mechanism to use and
-# second the expiring timeout (in seconds).
-#SSLSessionCache none
-#SSLSessionCache dbm:logs/ssl_scache
-SSLSessionCache shm:/var/run/ssl_scache(512000)
-SSLSessionCacheTimeout 300
-
-# Semaphore:
-# Configure the path to the mutual explusion semaphore the
-# SSL engine uses internally for inter-process synchronization.
-SSLMutex file:/var/run/ssl_mutex
-
-# Pseudo Random Number Generator (PRNG):
-# Configure one or more sources to seed the PRNG of the
-# SSL library. The seed data should be of good random quality.
-SSLRandomSeed startup builtin
-SSLRandomSeed connect builtin
-#SSLRandomSeed startup file:/dev/random 512
-#SSLRandomSeed startup file:/dev/urandom 512
-#SSLRandomSeed connect file:/dev/random 512
-#SSLRandomSeed connect file:/dev/urandom 512
-
-# Logging:
-# The home of the dedicated SSL protocol logfile. Errors are
-# additionally duplicated in the general error log file. Put
-# this somewhere where it cannot be used for symlink attacks on
-# a real server (i.e. somewhere where only root can write).
-# Log levels are (ascending order: higher ones include lower ones):
-# none, error, warn, info, trace, debug.
-SSLLog /var/log/apache/ssl_engine_log
-SSLLogLevel info
-
-<VirtualHost _default_:443>
-SSLEngine on
-#SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
-SSLCertificateFile /etc/apache/server.crt
-SSLCertificateKeyFile /etc/apache/server.key
-#SSLCertificateChainFile /etc/apache/conf/ssl.crt/ca.crt
-#SSLCACertificatePath /etc/apache/conf/ssl.crt
-#SSLCACertificateFile /etc/apache/conf/ssl.crt/ca-bundle.crt
-#SSLCARevocationPath /etc/apache/conf/ssl.crl
-#SSLCARevocationFile /etc/apache/conf/ssl.crl/ca-bundle.crl
-#SSLVerifyClient require
-#SSLVerifyDepth 10
-
-#SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire
-<Files ~ "\.(cgi|shtml)$">
- SSLOptions +StdEnvVars
-</Files>
-<Directory "/home/services/apache/html/cgi-bin">
- SSLOptions +StdEnvVars
-</Directory>
-SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
-CustomLog /var/log/apache/ssl_request_log \
- "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
-
-</VirtualHost>
+++ /dev/null
-/var/log/apache/ssl_engine_log {
- olddir /var/log/archiv/apache
- postrotate
- /bin/killall -HUP apache
- endscript
-}
-
-/var/log/apache/ssl_request_log {
- olddir /var/log/archiv/apache
- postrotate
- /bin/killall -HUP apache
- endscript
-}
+++ /dev/null
-%define SSLVER 2.8.19
-%define APACHEVER 1.3.31
-%define apxs /usr/sbin/apxs1
-%define mod_name ssl
-Summary: An SSL module for the Apache Web server
-Summary(cs): Modul s podporou silného ¹ifrování pro WWW server Apache
-Summary(da): Krypteringsunderstøttelse for webtjeneren Apache
-Summary(de): SSL-Modul für den Apache-Webserver
-Summary(es): Soporte criptofráfico para el servidor de red Apache
-Summary(fr): Un module SSL pour le serveur Web Apache
-Summary(id): Interpreter Perl untuk web server Apache
-Summary(is): Perl túlkur fyrir Apache vefþjóninn
-Summary(it): Supporto di crittografia per il server Web Apache
-Summary(ja): Apache Web ¥µ¡¼¥Ð¡¼ÍѤΰŹ極¥Ý¡¼¥È
-Summary(nb): Krypteringsstøtte for webtjeneren Apache
-Summary(pl): Modu³ SSL dla serwera WWW Apache
-Summary(pt): O suporte de cifra para o servidor Web Apache
-Summary(ru): íÏÄÕÌØ ÐÏÄÄÅÒÖËÉ SSL × Apache
-Summary(sl): Podpora za ¹ifriranje za spletni stre¾nik Apache
-Summary(sv): Kryptografistöd till webbservern Apache
-Summary(uk): íÏÄÕÌØ Ð¦ÄÔÒÉÍËÉ SSL × Apache
-Name: apache1-mod_%{mod_name}
-Version: %{SSLVER}_%{APACHEVER}
-Release: 4
-License: BSD
-Group: Networking/Daemons
-Source0: http://www.modssl.org/source/mod_%{mod_name}-%{SSLVER}-%{APACHEVER}.tar.gz
-# Source0-md5: ae2becebfec3784f9342932581e1cc9d
-Source1: %{name}.conf
-Source2: %{name}-server.crt
-Source3: %{name}-server.key
-Source4: %{name}-sxnet.html
-Source5: %{name}.logrotate
-Patch1: mod_%{mod_name}-cca-openssl-path.patch
-Patch2: mod_%{mod_name}-db3.patch
-Patch3: %{name}-nohttpd.patch
-URL: http://www.modssl.org/
-BuildRequires: %{apxs}
-BuildRequires: apache1-devel = %{APACHEVER}
-BuildRequires: db-devel >= 4.1
-BuildRequires: openssl-devel >= 0.9.7d
-BuildRequires: openssl-tools >= 0.9.7d
-Requires(post,preun): apache1
-Requires(post,preun): grep
-Requires(preun): fileutils
-Requires: apache1 >= %{APACHEVER}
-Obsoletes: mod_ssl
-BuildRoot: %{tmpdir}/%{name}-%{version}-root-%(id -u -n)
-
-%define _pkglibdir %(%{apxs} -q LIBEXECDIR)
-%define _sysconfdir %(%{apxs} -q SYSCONFDIR)
-
-%description
-The mod_ssl project provides strong cryptography for the Apache 1.3
-webserver via the Secure Sockets Layer (SSL v2/v3) and Transport Layer
-Security (TLS v1) protocols by the help of the Open Source SSL/TLS
-toolkit OpenSSL, which is based on SSLeay from Eric A. Young and Tim
-J. Hudson.
-
-The mod_ssl package was created in April 1998 by Ralf S. Engelschall
-and was originally derived from software developed by Ben Laurie for
-use in the Apache-SSL HTTP server project. The mod_ssl package is
-licensed under a BSD-style licence, which basically means that you are
-free to get and use it for commercial and non-commercial purposes.
-
-%description -l cs
-"Modul mod_ssl pro WWW server Apache umo¾òuje pou¾ití silného
-¹ifrování\n" "komunikace klienta (WWW prohlí¾eè) a serveru - SSL
-(Secure Sockets Layer)\n" "a TLS (Transport Layer Security)
-protokoly."
-
-%description -l de
-Das mod_ssl-Projekt stellt kryptographie für den Apache 1.3-Webserver
-über Secure Sockets Layer (SSL v2/v3) und Transport Layer Security
-(TLS v1)-Protokolle zur Verfügung. Dazu wird das Open Source
-SSL/TLS-Toolkit OpenSSL, das auf SSLeay basiert, verwendet.
-
-%description -l es
-"El módulo modd_ssl proporciona la criptografía para el servidor
-Web\n" "Apache, los sockets seguros, los protocolos de la seguridad
-(SSL) y de la\n" "capa tranparente (TLS)."
-
-%description -l fr
-Le projet mod_ssl fournit de la forte cryptographie pour le serveur
-web Apache 1.3 via les protocoles Secure Sockets Layer (SSL v2/v3) et
-Transport Layer Security (TLS v1) avec l'aide du kit d'outils Open
-Source SSL/TLS, OpenSSL, base sur SSLeay d'Eric A. Young et Tim J.
-Hudson.
-
-%description -l it
-"Il modulo mod_ssl fornisce un supporto di crittografia molto potente
-per\n" "il server Web Apache tramite i protocolli SSL (Secure Sockets
-Layer) e i\n" "protocolli TLS (Transport Layer Security)."
-
-%description -l ja
-"mod_ssl ¥â¥¸¥å¡¼¥ë¤Ï¡¢SSL (Secure Sockets Layer) ¤ª¤è¤Ó TLS
-(Transport \n" "Layer Security) ¥×¥í¥È¥³¥ë¤ò²ð¤·¤Æ Apache Web
-¥µ¡¼¥Ð¡¼ÍѤζ¯ÎϤʰŹ沽\n" "µ¡Ç½¤òÄ󶡤·¤Þ¤¹¡£"
-
-%description -l pl
-Projekt mod_ssl ma za zadanie zapewniæ serwerowi www Apache 1.3 wysoki
-poziom szyfrowania dziêki protoko³om Secure Sockets Layer (SSL v2/v3)
-i Transport Layer Security (TLS v1) przy pomocy pakiety narzêdziowego
-Open Source SSL/TSL -- OpenSSL, stworzonego na podstawie SSLeay Erica
-A.Younga i Tima J.Hudsona.
-
-%description -l pt
-"O módulo mod_ssl oferece uma criptografia robusta para o servidor
-Web\n" "Apache através dos protocolos SSL (Secure Sockets Layer) e TLS
-(Transport\n" "Layer Security)."
-
-%description -l ru
-Apache -- ÍÏÝÎÙÊ Ó×ÏÂÏÄÎÏ ÒÁÓÐÒÏÓÔÒÁÎÑÅÍÙÊ ÓÅÒ×ÅÒ Á ÔÁËÖÅ É ÓÁÍÙÍ
-ÐÏÐÕÌÑÒÎÙÊ × Internet'Å (ÏÎ ÉÓÐÏÌØÚÕÅÔÓÑ ÎÁ ÂÏÌÅÅ, ÞÅÍ 50%% ÓÅÒ×ÅÒÏ× ×
-ÍÉÒÅ). üÔÁ ×ÅÒÓÉÑ ×ËÌÀÞÁÅÔ × ÓÅÂÑ ÐÏÄÄÅÒÖËÕ SSL v2, v3 É TLS v1.
-
-%description -l sv
-"Modulen mod_ssl förser webbservern Apache med stark kryptografi
-via\n" "protokollen SSL (Secure Sockets Layer) och TLS (Transport
-Layer\n" "Security)."
-
-%description -l uk
-Apache -- ÐÏÔÕÖÎÉÊ ×¦ÌØÎÏ ÒÏÚÐÏ×ÓÀÄÖÕ×ÁÎÉÊ ÓÅÒ×ÅÒ http. ãÅ
-ÎÁÊÐÏÐÕÌÑÒΦÛÉÊ ÓÅÒ×ÅÒ Õ ÓצԦ (×ÉËÏÒÉÓÔÏ×Õ¤ÔØÓÑ Â¦ÌØÛ ÑË ÎÁ 50%%
-ÓÅÒ×ÅÒ¦×). ãÑ ×ÅÒÓ¦Ñ Í¦ÓÔÉÔØ Ð¦ÄÔÒÉÍËÕ SSL v2, v3 ÔÁ TLS v1.
-
-%package devel
-Summary: Header files for mod_ssl
-Summary(pl): Pliki nag³ówkowe dla mod_ssl
-Group: Development/Building
-Requires: apache1-devel >= %{APACHEVER}
-
-%description devel
-Header files for mod_ssl.
-
-%description devel -l pl
-Pliki nag³ówkowe dla mod_ssl.
-
-%package -n apache1-mod_sxnet
-Summary: Strong Extranet module for mod_ssl and apache
-Summary(fr): Module d'Extranet Fort pour Apache et mod_ssl
-Summary(pl): Modu³ Strong Extranet dla pakietu mod_ssl i serwera WWW Apache
-Group: Networking/Daemons
-Requires(post,preun): %{apxs}
-Requires: apache1(EAPI) >= %{APACHEVER}
-
-%description -n apache1-mod_sxnet
-The Strong Extranet allows you to use digital certificates to
-authenticate users on your web server. Typically, your users enroll in
-your Strong Extranet, under your control, through the Thawte Personal
-Cert System.
-
-%description -n apache1-mod_sxnet -l fr
-L'Extranet Fort vous permet d'utiliser des certificats numeriques pour
-authentifier les usagers sur votre serveur web. Typiquement, vos
-usagers s'enrolent dans votre Extranet Fort, sous votre controle, a
-travers le Thawte Personal Cert System.
-
-%description -n apache1-mod_sxnet -l pl
-Pakiet Strong Extranet umo¿liwia u¿ywanie cyfrowych certyfikatów dla
-uwierzytelniania u¿ytkowników serwera www. Zwykle u¿ytkownicy
-rejestruj± siê pod opiek± administratora poprzez Thawte Personal Cert
-System.
-
-%prep
-%setup -q -n mod_%{mod_name}-%{SSLVER}-%{APACHEVER}
-%patch1 -p1
-%patch2 -p1
-%patch3 -p1
-
-%{__perl} -pi -e 's@ /lib /usr/lib @ /%{_lib} /usr/%{_lib} @' pkg.sslmod/libssl.module
-
-%build
-SSL_BASE=SYSTEM; export SSL_BASE
-%configure \
- --with-apxs=%{apxs} \
- --enable-shared=ssl \
- --with-ssl=%{_prefix}
-
-%{__make}
-
-cd pkg.contrib
-tar xvf sxnet.tar
-cd sxnet
-%{apxs} -DMalloc=malloc -DFree=free -I%{_includedir}/openssl -L%{_libdir} -l ssl -l crypto -c mod_sxnet.c
-
-%install
-rm -rf $RPM_BUILD_ROOT
-install -d $RPM_BUILD_ROOT{%{_libdir}/mod_%{mod_name},%{_pkglibdir}} \
- $RPM_BUILD_ROOT%{_includedir}/apache1 \
- $RPM_BUILD_ROOT%{_sysconfdir} \
- $RPM_BUILD_ROOT/etc/logrotate.d
-
-install pkg.sslmod/libssl.so $RPM_BUILD_ROOT%{_pkglibdir}
-install pkg.contrib/sxnet/mod_sxnet.so $RPM_BUILD_ROOT%{_pkglibdir}
-
-install pkg.contrib/*.sh $RPM_BUILD_ROOT%{_libdir}/mod_%{mod_name}
-install %{SOURCE1} $RPM_BUILD_ROOT%{_sysconfdir}/mod_%{mod_name}.conf
-install %{SOURCE2} $RPM_BUILD_ROOT%{_sysconfdir}/server.crt
-install %{SOURCE3} $RPM_BUILD_ROOT%{_sysconfdir}/server.key
-install %{SOURCE5} $RPM_BUILD_ROOT/etc/logrotate.d/apache-mod_%{mod_name}
-
-mv -f pkg.ssldoc ssl-doc
-
-install %{SOURCE4} sxnet.html
-
-install pkg.sslmod/*.h $RPM_BUILD_ROOT%{_includedir}/apache1
-
-%clean
-rm -rf $RPM_BUILD_ROOT
-
-%post
-if [ -f %{_sysconfdir}/apache.conf ] && \
- ! grep -q "^Include.*/mod_%{mod_name}.conf" %{_sysconfdir}/apache.conf; then
- echo "Include %{_sysconfdir}/mod_%{mod_name}.conf" >> %{_sysconfdir}/apache.conf
-fi
-if [ -f /var/lock/subsys/apache ]; then
- /etc/rc.d/init.d/apache restart 1>&2
-else
- echo "Run \"/etc/rc.d/init.d/apache start\" to start apache http daemon."
-fi
-
-%preun
-if [ "$1" = "0" ]; then
- umask 027
- grep -E -v "^Include.*mod_%{mod_name}.conf" %{_sysconfdir}/apache.conf > \
- %{_sysconfdir}/apache.conf.tmp
- mv -f %{_sysconfdir}/apache.conf.tmp %{_sysconfdir}/apache.conf
- if [ -f /var/lock/subsys/apache ]; then
- /etc/rc.d/init.d/apache restart 1>&2
- fi
-fi
-
-%post -n apache1-mod_sxnet
-%{apxs} -e -a -n sxnet %{_pkglibdir}/mod_sxnet.so 1>&2
-if [ -f /var/lock/subsys/apache ]; then
- /etc/rc.d/init.d/apache restart 1>&2
-fi
-
-%preun -n apache1-mod_sxnet
-if [ "$1" = "0" ]; then
- %{apxs} -e -A -n sxnet %{_pkglibdir}/mod_sxnet.so 1>&2
- if [ -f /var/lock/subsys/apache ]; then
- /etc/rc.d/init.d/apache restart 1>&2
- fi
-fi
-
-%files
-%defattr(644,root,root,755)
-%doc ANNOUNCE CHANGES CREDITS NEWS README* ssl-doc
-%attr(640,root,root) %config(noreplace) %verify(not size mtime md5) %{_sysconfdir}/*.conf
-%attr(640,root,root) %config(noreplace) %verify(not size mtime md5) %{_sysconfdir}/server.crt
-%attr(640,root,root) %config(noreplace) %verify(not size mtime md5) %{_sysconfdir}/server.key
-%attr(640,root,root) %config(noreplace) %verify(not size mtime md5) /etc/logrotate.d/*
-
-%attr(755,root,root) %{_pkglibdir}/libssl.so
-
-%dir %{_libdir}/mod_%{mod_name}
-%attr(755,root,root) %{_libdir}/mod_%{mod_name}/*.sh
-
-%files devel
-%defattr(644,root,root,755)
-%{_includedir}/apache1/*.h
-
-%files -n apache1-mod_sxnet
-%defattr(644,root,root,755)
-%doc sxnet.html
-%attr(755,root,root) %{_pkglibdir}/mod_sxnet.so
+++ /dev/null
-diff -Naur mod_ssl-2.7.1-1.3.14/pkg.contrib/cca.sh mod_ssl-2.7.1-1.3.14-p/pkg.contrib/cca.sh
---- mod_ssl-2.7.1-1.3.14/pkg.contrib/cca.sh Thu Dec 30 22:12:10 1999
-+++ mod_ssl-2.7.1-1.3.14-p/pkg.contrib/cca.sh Fri Jan 5 17:04:23 2001
-@@ -5,7 +5,7 @@
- ##
-
- # external tools
--openssl="/usr/local/ssl/bin/openssl"
-+openssl="openssl"
-
- # some optional terminal sequences
- case $TERM in
+++ /dev/null
---- mod_ssl-2.8.4-1.3.20/pkg.sslmod/mod_ssl.h~ Wed May 3 18:28:56 2000
-+++ mod_ssl-2.8.4-1.3.20/pkg.sslmod/mod_ssl.h Sun Nov 12 00:04:04 2000
-@@ -338,6 +338,15 @@
- #define SSL_DBM_FILE_SUFFIX_PAG ".pag"
- #else /* !SSL_USE_SDBM */
-+#if defined(__GLIBC__) && defined(__GLIBC_MINOR__) \
-+ && __GLIBC__ >= 2 && __GLIBC_MINOR__ == 1
-+#include <db1/ndbm.h>
-+#elif defined(__GLIBC__) && defined(__GLIBC_MINOR__) \
-+ && __GLIBC__ >= 2 && __GLIBC_MINOR__ >= 2
-+#define DB_DBM_HSEARCH 1
-+#include <db.h>
-+#else
- #include <ndbm.h>
-+#endif
- #define ssl_dbm_open dbm_open
- #define ssl_dbm_close dbm_close
- #define ssl_dbm_store dbm_store
---- mod_ssl-2.6.6-1.3.12/pkg.sslmod/Makefile.tmpl~ Thu Feb 24 20:33:23 2000
-+++ mod_ssl-2.6.6-1.3.12/pkg.sslmod/Makefile.tmpl Sun Nov 12 00:02:32 2000
-@@ -133,7 +133,7 @@
-
- libssl.so: $(OBJS_PIC)
- rm -f $@
-- $(LD_SHLIB) $(SSL_LDFLAGS) $(LDFLAGS_SHLIB) -o $@ $(OBJS_PIC) $(SSL_LIBS) $(LIBS_SHLIB)
-+ $(LD_SHLIB) $(SSL_LDFLAGS) $(LDFLAGS_SHLIB) -o $@ $(OBJS_PIC) $(SSL_LIBS) $(LIBS_SHLIB) -lndbm
-
- .SUFFIXES: .o .lo
-