Re: Securing apache

To: debian-user@lists.debian.org
Subject: Re: Securing apache
From: Sven Hartge <sven@svenhartge.de>
Date: Tue, 22 Apr 2014 22:54:49 +0200
Message-id: <[🔎] 6ak99n4efrv8@mids.svenhartge.de>
References: <[🔎] 53554D4A.1050303@libertytrek.org> <[🔎] 20140421172501.GB28667@well-adjusted.de> <[🔎] 535663C1.7020508@libertytrek.org> <[🔎] 20140422203750.GG28667@well-adjusted.de>

Jochen Spieker <ml@well-adjusted.de> wrote:
> Tanstaafl:

>> I'm curious how many here enable the testing repo so they can run
>> apache 2.4, which apparently is a bit more secure? If so, any gotchas
>> or things to be aware of?

> I didn't check, but I would be surprised if it was possible to only
> install Apache 2.4 from testing without upgrading half of your system.
> What you need is a backport -- Apache 2.4 compiled against the library
> versions available in wheezy. Currently, there is no official
> backport.

Since to backport apache2.4 you need to backport (or at lease recompile)
_everything_ touching apache, including _any_ package providing
config-snippets (since some of the syntax of the apache-configuration
changed), I doubt there will ever be a backport of apache2.4 to Wheezy.

This already has been asked on the backports-users list and was denied
because of the points mentioned above.

Grüße,
Sven.

-- 
Sigmentation fault. Core dumped.

Reply to:

Follow-Ups:
- Re: Securing apache
  - From: Tanstaafl <tanstaafl@libertytrek.org>
- Re: Securing apache
  - From: Jochen Spieker <ml@well-adjusted.de>

References:
- Securing apache
  - From: Tanstaafl <tanstaafl@libertytrek.org>
- Re: Securing apache
  - From: Jochen Spieker <ml@well-adjusted.de>
- Re: Securing apache
  - From: Tanstaafl <tanstaafl@libertytrek.org>
- Re: Securing apache
  - From: Jochen Spieker <ml@well-adjusted.de>

Prev by Date: Re: Securing apache
Next by Date: Re: Personal Recommendations for Free List Compatible Email Service
Previous by thread: Re: Securing apache
Next by thread: Re: Securing apache
Index(es):
- Date
- Thread