mini-httpd (1.30-10)
[PTS] [DDPO]
OK: VCS matches the version in the archive
- Git: https://salsa.debian.org/debian/mini-httpd.git
-
- Branch: master
- Path: debian/changelog
- Repo size: 368640
- Browser: https://salsa.debian.org/debian/mini-httpd
- Last scan: 2024-04-22 21:28:21+00
- Next scan: 2024-04-30 04:59:00+00
- CI pipeline status: success
- Debian changelog in Git:
mini-httpd (1.30-10) unstable; urgency=medium
* Added patch improving handling of "charset=%s" in error pages
and directory listing. Before, a literal "%s" was output as opposed to
the actual charset. Now, the correct charset (UTF-8 for dirs and
ISO-8859-1 for err) is output. Thanks again, Alexander Foken !
(Closes: #714549)
* Added a Systemd DocumentationKey entry fixing lintian warning. This
points to the manpage for now.
* Added SystemD hardening features to service. The directives
I have provided should have no impact. I've confirmed no impact to
basic functionality, vhosting, error pages and CGI. I managed to
get the service to a "4.7 - OK" rating by using
systemd-analyze security mini-httpd (all the way from 9.6).
I have NOT enabled hardening features which have a high change of
impacting functionality such as removing CAP_CHROOT which would
mean mini_httpd's chroot mode of operation is forbidden.
Help is welcome in improving these options (maybe someone with a
security background could chip in).
* Added a NEWS entry informing users of potential breakage due to
new systemd hardening features.
-- Alexandru Mihail <alexandru.mihail2897@gmail.com> Tue, 16 Apr 2024 00:11:43 +0300
- This branch is even with tag debian/1.30-10