index.xml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195

<?xml version="1.0"?>
<?xml-stylesheet type="text/xsl" href="../../../../xsl/projects.xsl"?>
<ooo title="mod_gnutls" path="/projects/apache/mod_gnutls/" osi="on">
 <section title="Abstract">
    <content type="docbook">
      <para>
        mod_gnutls uses the <ulink url="http://www.gnu.org/software/gnutls/">GnuTLS</ulink> library
        to provide SSL 3.0, TLS 1.0, TLS 1.1 and 1.2 encryption for Apache HTTPD.  It is similar to
        <ulink url="http://httpd.apache.org/docs-2.1/mod/mod_ssl.html">mod_ssl</ulink>
        in purpose, but does not use <ulink url="http://www.openssl.org/">OpenSSL</ulink>.
      </para>
    </content>
 </section>

 <section title="Features">
    <content type="xhtml">
      <div xmlns="http://www.w3.org/1999/xhtml">
        <ul>
           <li>Support for SSL 3.0, TLS 1.x.</li>
           <li>Support for client certificates.</li>
           <li>Support for <a href="http://www.tools.ietf.org/html/rfc5746">Safe renegotiation</a>.</li>
           <li>Support for <a href="http://tools.ietf.org/html/draft-mavrogiannopoulos-rfc5081bis-09">RFC 5081bis</a>
              <a href="http://www.gnu.org/software/gnutls/openpgp.html">OpenPGP certificate authentication</a>.</li>
           <li>Support for
           <a href="http://www.tools.ietf.org/html/rfc5054">RFC 5054</a> <a href="http://www.gnu.org/software/gnutls/manual/html_node/Authentication-using-SRP.html#Authentication-using-SRP">SRP
           authentication</a>.</li>
           <li>Support for <a href="sni/">Server Name Indication</a>.</li>
           <li>Distributed SSL Session Cache via <a href="http://www.danga.com/memcached/">Memcached</a></li>
           <li>Local SSL Session Cache using DBM</li>
           <li>Support for Session Tickets instead of Session Caching</li>
	   <li>Sets enviromental vars for scripts (compatible with mod_ssl vars)</li>
           <li>Small and focused code base:
               <blockquote>
               Lines of code in mod_gnutls: 4,081<br/>
               Lines of code in mod_ssl: 15,324</blockquote></li>
        </ul>
      </div>
    </content>
 </section>

 <section title="Documentation">
    <content type="xhtml">
      <div xmlns="http://www.w3.org/1999/xhtml">
      <a href="docs/">mod_gnutls Documentation</a>
      </div>
    </content>
 </section>

 <changelog>
  <entry version="0.5.10" fdate="2011-07-12T09:00:00-04:00">
    <content type="xhtml">
      <div xmlns="http://www.w3.org/1999/xhtml">
        <ul>
          <li>Patched a bug responsible for excessive memory consumption by mod_gnutls</li>
          <li>Support for proxying from SSL to plain HTTP was added (ie. proxy termination).</li>
        </ul>
      </div>
    </content>
  </entry>
  <entry version="0.5.9" fdate="2010-24-09T00:00:00-07:00">
    <content type="xhtml">
      <div xmlns="http://www.w3.org/1999/xhtml">
        <ul>
          <li>Corrected behavior with Keep-Alive connections.</li>
          <li>Changed default DB backend and added more options for GnuTLSCache directive.</li>
        </ul>
      </div>
    </content>
  </entry>

  <entry version="0.5.8" fdate="2010-18-08T00:00:00-07:00">
    <content type="xhtml">
      <div xmlns="http://www.w3.org/1999/xhtml">
        <ul>
          <li>Session Tickets are enabled by default.</li>
          <li>Fixed segmentation faults in some configurations.</li>
        </ul>
      </div>
    </content>
  </entry>

  <entry version="0.5.7" fdate="2010-07-01T00:00:00-07:00">
    <content type="xhtml">
      <div xmlns="http://www.w3.org/1999/xhtml">
        <ul>
          <li>Optimization in session caching.</li>
          <li>Added support for session tickets, allowing resumption even without
          any cache.</li>
          <li>Depends on GnuTLS with safe renegotiation support included.</li>
        </ul>
      </div>
    </content>
  </entry>

  <entry version="0.5.6" fdate="2010-03-24T00:00:00-07:00">
    <content type="xhtml">
      <div xmlns="http://www.w3.org/1999/xhtml">
        <ul>
          <li>Corrected issues with firefox and long POST data.</li>
          <li>Added support for chained client certificates.</li>
          <li>Several other bug fixes.</li>
        </ul>
      </div>
    </content>
  </entry>

  <entry version="0.5.5" fdate="2009-06-13T00:00:00-07:00">
    <content type="xhtml">
      <div xmlns="http://www.w3.org/1999/xhtml">
        <ul>
          <li>Removed limits on CA certificate loading.</li>
          <li>Do not allow sending empty TLS packets even when instructed
          to.</li>
        </ul>
      </div>
    </content>
  </entry>

 </changelog>

 <requirements>
  <title>Prerequisites</title>
  <software name="GnuTLS" url="http://www.gnu.org/software/gnutls/">
    <requirement version="2.10.0" type="minimum"/>
  </software>
  <software name="Apache HTTPd" url="http://httpd.apache.org/">
    <requirement version="2.0.42" type="minimum"/>
    <requirement version="2.1.5-dev" type="minimum"/>
  </software>
  <software name="APR Memcache Client" url="/projects/libs/apr_memcache/" optional="1">
    <requirement version="0.7.0" type="minimum"/>
  </software>
 </requirements>

<downloads
        name="mod_gnutls" baseref="/downloads/mod_gnutls/"
        extension="tar.bz2">


    <category branch="Stable" latest="0.5.8">
<title>Stable branch</title>
<download version="0.5.10" md5sum="53fd571080b16333d3a4550b8477bf3c"/>
<download version="0.5.9" md5sum="9b7050fb0dfec88225b15c821dfd26c4"/>
<download version="0.5.8" md5sum="1372fd5e8ee9017fea5c125e6acb8415"/>
<download version="0.5.7" md5sum="36bc29310a6c40bd31cdaeb31afc29ef"/>
<download version="0.5.6" md5sum="ad52de9b43a10157b3338f472b30f932"/>
<download version="0.5.5" md5sum="53aef6d0c295fc2b7d5d2ee4576e6884"/>
</category>

 </downloads>

  <section position="bottom" title="Repositories">
    <content type="xhtml">
      <div xmlns="http://www.w3.org/1999/xhtml">
	    <ul>
	     <li><a href="/downloads/mod_gnutls/">Old releases</a></li>
	     <li>Git Repository <a href="git://git.outoforder.cc/httpd/mod_gnutls.git">git://git.outoforder.cc/httpd/mod_gnutls.git</a></li>
	    </ul>
      </div>
    </content>
  </section>

 <mailinglists spam="warning">
  <content type="docbook">
    <para>
      There are two mailing lists for mod_gnutls. The first is the generic
announcement mailing list which provides announcements for all software releases
on OutOfOrder.cc, but can be filtered by choosing topics in the mailing list
options page. The second is the user mailing list.
Release announcements will be cross posted to both lists.
    </para>
  </content>
  <list>
    <mailinglist name="announce" type="mailman" host="lists.outoforder.cc"/>
    <mailinglist name="modules" type="mailman" host="lists.outoforder.cc"/>
  </list>
 </mailinglists>

  <section position="bottom">
    <title>Contact &amp; Help</title>
    <content type="docbook">
    <!--
      <para>
        <ulink url="/email/?Subject=mod_gnutls">E-Mail us</ulink>, about mod_gnutls.
      </para>
	      -->
      <para>
        Send an e-mail to the <link linkend="mailinglist">mod_gnutls mailing list</link>.
      </para>
      <para>
        Bugs should be reported to the <ulink url="http://bugs.outoforder.cc">OutOfOrder.cc Bug Tracker</ulink>.
      </para>
    </content>
  </section>
</ooo>