Correction to the below notice. The link is broken. It should be
http://directory.fedora.redhat.com/sources/adminserver10to101.patch
And the md5sum is not correct. It should be
1a18195b3bf057139e04852f6f3c0be9 adminserver10to101.patch
I apologize for any inconvenience or confusion.
---------------------------------------------------------------------
Fedora Directory Server Update Notification
2005-12-07
---------------------------------------------------------------------
Product : Fedora Directory Server
Name : Admin Server
Version : 1.0
Release : 1
Summary : The Admin Server httpd administrative engine.
Description :
The Admin Server component of Fedora Directory Server is an httpd
server which uses Apache 2 to serve up web pages and execute
CGIs used to administer the Fedora Directory Server. This package
is included with Fedora Directory Server.
---------------------------------------------------------------------
Update Information:
Fixed bug #174837 (CVE-2005-3630)
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174837
Frank Reppin discovered a flaw in the default Apache configuration for
Fedora DS. By default clients are allowed to read everything under the
document root, which can reveal sensitive information to a remote user.
This update modifies this behavior, only allowing read access to
specific files and directories under the document root.
---------------------------------------------------------------------
This update is a patch file available for download from:
http://directory.fedora.redhat.com/download/adminserver10to101.patch
2d7553a300551ef2a19b1b89a017e5ff adminserver20051205.patch
To install the patch:
cd /opt/fedora-ds
patch -p0 < adminserver10to101.patch
./restart-admin
---------------------------------------------------------------------
Fedora Directory Server Update Notification
2005-12-07
---------------------------------------------------------------------
Product : Fedora Directory Server
Name : Admin Server
Version : 1.0
Release : 1
Summary : The Admin Server httpd administrative engine.
Description :
The Admin Server component of Fedora Directory Server is an httpd
server which uses Apache 2 to serve up web pages and execute
CGIs used to administer the Fedora Directory Server. This package
is included with Fedora Directory Server.
---------------------------------------------------------------------
Update Information:
Fixed bug #174837 (CVE-2005-3630)
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=174837
Frank Reppin discovered a flaw in the default Apache configuration for
Fedora DS. By default clients are allowed to read everything under the
document root, which can reveal sensitive information to a remote user.
This update modifies this behavior, only allowing read access to
specific files and directories under the document root.
---------------------------------------------------------------------
This update is a patch file available for download from:
http://directory.fedora.redhat.com/download/adminserver10to101.patch
2d7553a300551ef2a19b1b89a017e5ff adminserver20051205.patch
To install the patch:
cd /opt/fedora-ds
patch -p0 < adminserver10to101.patch
./restart-admin
We are proud to announce the release of Fedora Directory Server 1.0.
This release marks a significant milestone for the open source
community, who now have access to the code for the console and
administration engine as well as the previously open sourced LDAP
engine. This release uses the Apache httpd engine as its administration
server, and includes mod_nss - a rewrite of mod_ssl which uses the
Mozilla NSS crypto engine. The 1.0 release, in addition to its many
other features such as LDAPv3, Multi-Master Replication, and Windows
Synchronization, includes support for MD5, SHA-256, SHA-384, and SHA-512
password hashing, as well as many bug fixes. Fedora Directory Server 1.0
furthers the evolution and democratization of open source software in
making this powerful, enterprise proven technology available to all. It
is a boon for developers who are now able to port the full package -
LDAP engine, console, and admin engine - to many different platforms.
If you have used the previous version of Fedora Directory Server, we
invite you to try our new version. If you are using another LDAP server,
we invite you to try ours and let us know how it compares - we're always
looking for ways to improve. Our community is already active and
growing, and you are welcome and encouraged to join. There are many
ways: joining the mailing lists, reporting bugs, editing documentation,
writing scripts/patches/plug-ins, and many more.
Try it out! - http://directory.fedora.redhat.com/wiki/Download
Our home page - http://directory.fedora.redhat.com/
Join our community! -
http://directory.fedora.redhat.com/wiki/Ways_to_contribute
mod_nss - http://directory.fedora.redhat.com/wiki/Mod_nss
Drop us a line! - fedora-directory-users(a)redhat.com and
http://directory.fedora.redhat.com/wiki/Mailing_Lists