OpenBSD Journal
Home : : Add Story : : Archives : : About : : Create Account : : Login :
Heads Up: Apache Removed from Base
Contributed by jj on Fri Mar 14 09:01:27 2014 (GMT)
from the puffy-vs-geronimo dept.

In a series of commits, Florian Obser (florian@) has unhooked Apache from the OpenBSD base build. This means you need to pay special attention when upgrading your systems:

/usr/sbin/httpd and the associated tools and files have been removed. Consider using nginx(8) for your http serving needs, but note that nginx is not a drop-in replacement. For people who need the old httpd(8) and cannot switch at this time, see the port www/apache-httpd-openbsd.

Packages are not yet available due to release engineering, but will follow. The following files and directories need to be removed:

    rm -r /usr/lib/apache
    rm -r /usr/share/doc/html/httpd
    rm /usr/bin/{dbmmanage,htdigest,htpasswd}
    rm /usr/sbin/{apachectl,apxs,httpd,logresolve,rotatelogs,suexec}
    rm /usr/share/man/man1/{dbmmanage.1,htdigest.1,htpasswd.1}
    rm /usr/share/man/man8/{apachectl.8,apxs.8,httpd.8,logresolve.8}
    rm /usr/share/man/man8/{rotatelogs.8,suexec.8}
    rm /etc/rc.d/httpd

The following files are associated with httpd(8) and can be deleted in some cases, but may have been replaced with user content or configuration. Warning: On systems which currently or have previously used any http daemon, care must be taken and files analyzed case by case to avoid accidental deletion of user content or important configuration files. In particular, users moving to apache-httpd-openbsd will want to keep many of these files.

    # rm -r /var/www/icons
    # rmdir /var/www/conf/{modules,modules.sample}
    # rmdir /var/www/users
    # rm /var/www/cgi-bin/{printenv,test-cgi}
    # rm /var/www/conf/{httpd.conf,magic,mime.types}
    # rm /var/www/htdocs/{apache_pb.gif,blowfish.jpg,bsd_small.gif,index.html}
    # rm /var/www/htdocs/{lock.gif,logo23.jpg,logo24.jpg,mod_ssl_sb.gif}
    # rm /var/www/htdocs/{openbsd_pb.gif,openbsdpower.gif,openssl_ics.gif}
    # rm /var/www/htdocs/smalltitle.gif

Emphasis in the original, so make sure you've run through what you need to do, take backups, sweat it out for a minute before hitting the enter key, make one final tarball of your data just in case, and then carefully go through the upgrade.

What, that's not your checklist?

[topicnetworking]

<< OpenSMTPd Now the Default MTA in OpenBSD | Reply | Flattened | Expanded | hp300, mvme68k, and mvme88k Arches Move to the Attic >>

Threshold: Help

Related Links
more by jj


  Re: Heads Up: Apache Removed from Base (mod -4/18)
by jeanot (80.78.9.35) (jeanot@gmail.com) on Fri Mar 14 09:34:28 2014 (GMT)
  Dear HTTPd,
I'll miss you...
Adieu
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

  Re: Heads Up: Apache Removed from Base (mod -5/21)
by Laurence Rochfort (193.9.13.136) on Fri Mar 14 09:52:28 2014 (GMT)
  What's the OpenBSD rationale for replacing Apache with nginx?

I'm pretty familiar with Apache, but haven't touched nginx at all.
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

  Re: Heads Up: Apache Removed from Base (mod -1/13)
by Aleksei K (80.235.105.78) (niemi@solo.ee) on Fri Mar 14 10:08:39 2014 (GMT)
  Why not to upgrade apache to version 2.2.x or 2.4.x(with event) or try lighttpd server?
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

  Re: Heads Up: Apache Removed from Base (mod 6/12)
by Sebastian Rother (srother) (srother@) on Fri Mar 14 10:43:54 2014 (GMT)
https://www.mercenary-security.com
  You might could consider to keep "logresolve" + "htpasswd"...
Since none of these tools comes with nginx.

Except this you can replace Apache with nginx flawlessly. :-)
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

  Re: Heads Up: Apache Removed from Base (mod -2/14)
by TuxLyn (184.166.186.66) on Sat Mar 15 09:47:37 2014 (GMT)
http://gotux.net/
  This is actually very good. Apache is way too bloated, Nginx is so much superior. As for htpasswd you can easily generate password using perl <b>perl -le 'print crypt("password", "salt")' > /etc/nginx/htpasswd</b> or ruby by running irb command then typing <b>"password".crypt("salt")</b>
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

  Re: Heads Up: Apache Removed from Base (mod -1/13)
by Anonymous Coward (80.53.251.245) on Sat Mar 15 22:19:02 2014 (GMT)
  I've just checked default sources from 5.4/i386 and it seems that included nginx is vulnerable to CVE-2014-0088. The errata for 5.4 fixes only CVE-2013-4547.
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

  Re: Heads Up: Apache Removed from Base (mod -5/9)
by Blake (93.158.32.94) (blake at two one one two dot net) on Tue Apr 15 20:22:49 2014 (GMT)
2112.net
  Found a nice tool the other day:

https://github.com/nhnc-nginx/apache2nginx

little Python tool to convert Apache config files to Nginx configs...

HtH
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

  Re: Heads Up: Apache Removed from Base (mod 0/4)
by robertss (98.126.3.26) on Sat Aug 13 06:15:45 2016 (GMT)
  The success rate of cheap Ralph Lauren Outlet has been 100%. After earning huge success and popularity in the markets of US, this brand is now concentrating to capture the markets of Europe and Asia.Ralph Lauren shirts are manufactured with best quality fabric. There are different styles and designs in which the shirts are being sold in the outlets of Ralph Lauren. The basic aim of this brand is to provide quality products to the customers and so far, it has been successful in doing so.Men wear Ralph Lauren polo shirts on daily basis. The reason behind it is the comfort and relaxed feeling, which men get to avail by wearing them on. It means cheap Ralph Lauren has not been designing the polo shirts only for polo players, but these are suitable to the men belonging from various walks of life.When you will visit Ralph Lauren outlet, then you will get to select from a wide range of polo shirts, which will Ralph Lauren Outlet be available in different colors, designs and styles. In this way, you can easily pick up your most loved one. All the polo shirts for men at http://www.cheapralph.co.uk are being sold under the most famous category of, Blue Label.
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

  Re: Heads Up: Apache Removed from Base (mod 0/4)
by mxffiles (218.11.246.179) on Tue Feb 7 06:45:49 2017 (GMT)
  This is a very good post which I really enjoy reading. It is not every day that I have the possibility to see something like this. Software mxf Software mxf converter free download to convert HD camcorder files. ts converter convert ts video files to avi, mp4, wmv, mov mts to avi mp4 mov mkv iMovie, FCP/FCE with mts converter, so to convert mts files for your PC and mobiles. mod converter and convert tod files just free download mod video converter. m2ts
  [ Show thread ] [ Reply to this comment ] [ Mod Up ] [ Mod Down ]

[ Home | Add Story | Archives | Polls | About ]

Copyright © 2004-2008 Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to April 2nd 2004 as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. Some icons from slashdot.org used with permission from Kathleen. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. Search engine is ht://Dig. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]