diff options
author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2023-10-31 10:27:59 +0000 |
---|---|---|
committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2023-10-31 10:27:59 +0000 |
commit | 0aedd048f873ad0c6725bfab8ba9777ae1a5bf23 (patch) | |
tree | 6fcc070edebca1c8348f13d407b6493d34036bab | |
parent | Enabling dehydrated ssl certificates. (diff) | |
download | apache2-progress-linux.tar.xz apache2-progress-linux.zip |
Releasing progress-linux version 2.4.57-2progress7u1.HEADprogress-linux/2.4.57-2progress7u1progress-linux
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
-rw-r--r-- | debian/changelog | 53 |
1 files changed, 53 insertions, 0 deletions
diff --git a/debian/changelog b/debian/changelog index a660286..761335f 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,56 @@ +apache2 (2.4.57-2progress7u1) graograman; urgency=medium + + * Initial upload to graograman. + * Updating maintainer field. + * Updating uploaders field. + * Updating bugs field. + * Updating vcs fields. + * Setting Restart to always in systemd unit. + * Exporting hostname variable in global environment. + * Setting ServerTokens to Prod in security.conf. + * Setting ServerSignature to Off in security.conf. + * Setting Content-Security-Policy to "default-src https: 'self'; style- + src https: 'self' 'unsafe-inline'". + * Setting HSTS options to "max-age=63072000; includeSubDomains; + preload". + * Setting additional Set-Cookie options HttpOnly;SameSite=Strict;Secure. + * Setting SSLCipherSuite to EECDH+AESGCM:EDH+AESGCM. + * Setting SSLCompression to off. + * Setting SSLHonorCipherOrder to on. + * Setting SSLOpenSSLConfCmd Curves to X25519:prime256v1. + * Setting SSLProtocol to -all +TLSv1.3. + * Setting Cache-Control headers to "max-age=0, no-cache, no-store, no- + transform, private". + * Setting X-Frame-Options to deny. + * Adding configuration file to no accidentally serve git files. + * Setting Referrer-Policy to no-referrer. + * Setting X-Content-Type-Options to nosniff. + * Setting SSLUseStapling to on. + * Setting SSLStaplingCache to shmcb:/var/run/ocsp(32768). + * Setting SSLStaplingResponderTimeout to 5. + * Setting SSLStaplingReturnResponderErrors to off. + * Adding configuration file to rewrite http to https. + * Adding configuration file for dehydrated ssl certificates. + * Adding configuration file for DH parameter. + * Adding configuration file for snakeoil ssl certificates. + * Setting X-XSS-Protection to "1; mode=block". + * Enabling headers module. + * Enabling http2 module. + * Enabling rewrite module. + * Enabling ssl module. + * Renaming 000-default.conf site to default.conf. + * Setting ServerAdmin to root@localhost in default sites. + * Setting example ServerName localhost in default sites. + * Trimming default sites. + * Enabling default-ssl site by default. + * Depending on ssl-cert or dehydrated. + * Enabling rewrite http to https. + * Enabling snakeoil ssl certificates. + * Enabling DH parameter. + * Enabling dehydrated ssl certificates. + + -- Daniel Baumann <daniel.baumann@progress-linux.org> Tue, 31 Oct 2023 11:27:52 +0100 + apache2 (2.4.57-2) unstable; urgency=medium * Revert debian/* changes (Bookworm freeze) |