apache Ploughed through the cvs commits and created a
plausible Announcement file for Apache 1.3.22. Held off
releasing Apache Week until the mirrors caught up, but /.
found the tarballs so released it a little early. Took some
time to write some scripts to tidy up the past 265 issues
for bad tags, all modules and directives are marked as such
CVE Worked with the Mitre guys so that the Apache
vulnerabilities in 1.3.20 get described correctly, all went
rather smoothly.
Security Found a couple of security information leaks
on a site and a cross-site scripting (css) issue in a
product mostly by accident. It probably wouldn't be too
hard to write a robot that scans for css vulnerabilities
across a site
telewest So according to my builder Telewest ran
cable right past my new house last year. But they still
refuse to connect me, saying that they've run out of
construction budget for this year. I wrote to them in the
hope that I can convince them to connect me, it's my last
chance at getting anything other than a modem or dodgy ISDN
connection. My whole new house is networked, all going
through a 56k modem, sad. Unfortunately Telewest and
Blueyonder are 30% owned by Microsoft and they use Zeus not
Apache, so no chance of getting any favours.