mod_ldap-2.4.6-97.sl7_9> H HtxHF_„ ?*}}J~/M'[0X;Sua:8ﵒ8Q373c567dd2c4e3d718d292802505cb480ec4c406EW/CF_„ ?*}}ZFaw97?1o#Gd] Ŭ7C>3v?vd   Q *CIP\ b h t 7 <HWf0(t8|9p:( GtHtItXtYt\t]t^ubuEdueufuluvCmod_ldap2.4.697.sl7_9LDAP authentication modules for the Apache HTTP ServerThe mod_ldap and mod_authnz_ldap modules add support for LDAP authentication to the Apache HTTP Server._sl7.fnal.govScientific LinuxScientific LinuxASL 2.0Scientific LinuxSystem Environment/Daemonshttp://httpd.apache.org/linuxx86_64(-_u_}_}cbbbdd396fe056e8ab167abd7b2cb5145b42210bfea38452968ff02a03493fc85d9c49daeb2d654500edf4d3862c8606263f832b9b066468ba91d021b44b665c32b101daebb15326ff1b50e1a058ff985441e60605006276b7ddbb6e52a4202crootrootrootrootrootroothttpd-2.4.6-97.sl7_9.src.rpmmod_ldapmod_ldap(x86-64)   @@@@@@@@ httpdhttpd-mmnapr-util-ldaprpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(CompressedFileNames)libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)libpthread.so.0()(64bit)rtld(GNU_HASH)rpmlib(PayloadIsXz)0:2.4.6-97.sl7_920120211x86644.6.0-14.0-13.0.4-15.2-14.11.3__}^@^|@]z@]^]A\@\[+@[+@[+@[*A['[d@[d@ZZS]@Y@YeY@YY@YY@YdYp@Y{Y{Y*@YYw2Y@Y@Y@XXg@X,X,X@XƉX•@XCX@X@XXXXO@XO@XO@XO@XXWWW{@Wc@V͛@U@Uݪ@UoUȒ@UU@Un@UY@U.RT}Tto@TXTG@T2@T @TTS@SS@S@SuSǺS*@SSRUR@RRΏ@R@RkR1@RsRrF@Ri RM\@RC@Q@QQޞ@QQo@Q@QQ@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Scientific Linux Auto Patch Process Lubos Uhliarik - 2.4.6-97Lubos Uhliarik - 2.4.6-95Lubos Uhliarik - 2.4.6-94Lubos Uhliarik - 2.4.6-93Joe Orton - 2.4.6-92Lubos Uhliarik - 2.4.6-91Lubos Uhliarik - 2.4.6-90Joe Orton - 2.4.6-89Luboš Uhliarik - 2.4.6-88Luboš Uhliarik - 2.4.6-87Luboš Uhliarik - 2.4.6-86Luboš Uhliarik - 2.4.6-85Luboš Uhliarik - 2.4.6-84Luboš Uhliarik - 2.4.6-83Luboš Uhliarik - 2.4.6-82Joe Orton - 2.4.6-81Luboš Uhliarik - 2.4.6-80Luboš Uhliarik - 2.4.6-79Luboš Uhliarik - 2.4.6-78Luboš Uhliarik - 2.4.6-77Luboš Uhliarik - 2.4.6-76Luboš Uhliarik - 2.4.6-75Luboš Uhliarik - 2.4.6-74Luboš Uhliarik - 2.4.6-73Luboš Uhliarik - 2.4.6-72Luboš Uhliarik - 2.4.6-71Luboš Uhliarik - 2.4.6-70Luboš Uhliarik - 2.4.6-69Luboš Uhliarik - 2.4.6-68Luboš Uhliarik - 2.4.6-67Luboš Uhliarik - 2.4.6-66Luboš Uhliarik - 2.4.6-65Luboš Uhliarik - 2.4.6-64Luboš Uhliarik - 2.4.6-63Luboš Uhliarik - 2.4.6-62Luboš Uhliarik - 2.4.6-61Luboš Uhliarik - 2.4.6-60Luboš Uhliarik - 2.4.6-59Luboš Uhliarik - 2.4.6-58Luboš Uhliarik - 2.4.6-57Luboš Uhliarik - 2.4.6-56Luboš Uhliarik - 2.4.6-55Luboš Uhliarik - 2.4.6-54Luboš Uhliarik - 2.4.6-53Luboš Uhliarik - 2.4.6-52Luboš Uhliarik - 2.4.6-51Luboš Uhliarik - 2.4.6-50Luboš Uhliarik - 2.4.6-49Luboš Uhliarik - 2.4.6-48Joe Orton - 2.4.6-47Luboš Uhliarik - 2.4.6-46Luboš Uhliarik - 2.4.6-45Joe Orton - 2.4.6-44Joe Orton - 2.4.6-43Joe Orton - 2.4.6-42Jan Kaluza - 2.4.6-41Jan Kaluza - 2.4.6-40Jan Kaluza - 2.4.6-39Jan Kaluza - 2.4.6-38Jan Kaluza - 2.4.6-37Jan Kaluza - 2.4.6-36Jan Kaluza - 2.4.6-35Jan Kaluza - 2.4.6-34Jan Kaluza - 2.4.6-33Jan Kaluza - 2.4.6-32Jan Kaluza - 2.4.6-31Jan Kaluza - 2.4.6-30Jan Kaluza - 2.4.6-29Jan Kaluza - 2.4.6-28Jan Kaluza - 2.4.6-27Jan Kaluza - 2.4.6-26Jan Kaluza - 2.4.6-25Jan Kaluza - 2.4.6-24Jan Kaluza - 2.4.6-23Jan Kaluza - 2.4.6-22Jan Kaluza - 2.4.6-21Jan Kaluza - 2.4.6-20Jan Kaluza - 2.4.6-19Jan Kaluza - 2.4.6-18Jan Kaluza - 2.4.6-17Joe Orton - 2.4.6-16Joe Orton - 2.4.6-15Daniel Mach - 2.4.6-14Joe Orton - 2.4.6-13Joe Orton - 2.4.6-12Joe Orton - 2.4.6-11Joe Orton - 2.4.6-10Daniel Mach - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Jan Kaluza - 2.4.6-6Jan Kaluza - 2.4.6-5Jan Kaluza - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9.1Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3.2Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Added Source: httpd-sl_index.html.sl.patch --> This patch removes TUV branding from the default index.html - Added Source: httpd-spec_sl_index.html.sl7.patch --> The index.html file is outside of the source tarball, so we need to patch it in the install step - Added Source: httpd.ini --> Config file for automated patch script- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool concurrency issues- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Resolves: #1565491 - CVE-2017-15715 httpd: bypass with a trailing newline in the file name - Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect - Resolves: #1724879 - httpd terminates all SSL connections using an abortive shutdown - Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive - Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in mod_cache_socache can allow a remote attacker to cause a denial of service - Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in mod_session can allow a remote user to modify session data for CGI applications- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect expiry time- htpasswd: add SHA-2 crypt() support (#1486889)- Resolves: #1630886 - scriptlet can fail if hostname is not installed - Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in mod_authnz_ldap when using too small Accept-Language values - Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after failure in reading the HTTP request - Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch directive - Resolves: #1633152 - mod_session missing apr-util-openssl - Resolves: #1649470 - httpd response contains garbage in Content-Type header - Resolves: #1724034 - Unexpected OCSP in proxy SSL connection- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in mod_auth_digest - Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency- fix per-request leak of bucket brigade structure (#1583218)- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple SIGUSR1- Resolves: #1458364 - RMM list corruption in ldap module results in server hang- Resolves: #1493181 - RFE: mod_ssl: allow sending multiple CA names which differ only in case- Resolves: #1556761 - mod_proxy_wstunned config needs the default port number- Resolves: #1548501 - Make OCSP more configurable (like CRL)- Resolves: #1523536 - Backport Apache BZ#59230 mod_proxy_express uses db after close- Resolves: #1533793 - Use Variable with mod_authnz_ldap- don't terminate connections during graceful stop/restart (#1557785)- Related: #1288395 - httpd segfault when logrotate invoked- Resolves: #1274890 - mod_ssl config: tighten defaults- Resolves: #1506392 - Backport: SSLSessionTickets directive support- Resolves: #1440590 - Need an option to disable UTF8-conversion of certificate DN- Resolves: #1464406 - Apache consumes too much memory for CGI output- Resolves: #1448892 - Cannot override LD_LIBARY_PATH in Apache HTTPD using SetEnv or PassEnv. Needs documentation.- Resolves: #1430640 - "ProxyAddHeaders Off" does not become effective when it's defined outside setting- Resolves: #1499253 - ProxyRemote with HTTPS backend sends requests with absoluteURI instead of abs_path- Resolves: #1288395 - httpd segfault when logrotate invoked- Resolves: #1368491 - mod_authz_dbd segfaults when AuthzDBDQuery missing- Resolves: #1467402 - rotatelogs: creation of zombie processes when -p is used- Resolves: #1493065 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw() authentication bypass - Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference - Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread - Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread - Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection in mod_auth_digest- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1445885 - define _RH_HAS_HTTPPROTOCOLOPTIONS- Resolves: #1442872 - apache user is not created during httpd installation when apache group already exist with GID other than 48- Related: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- Resolves: #1397241 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Related: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1378946 - Backport of apache bug 55910: Continuation lines are broken during buffer resize- Resolves: #1364604 - Upstream Bug 56925 - ErrorDocument directive misbehaves with mod_proxy_http and mod_proxy_ajp- Resolves: #1324416 - Error 404 when switching language in HTML manual more than once- Resolves: #1353740 - Backport Apache PR58118 to fix mod_proxy_fcgi spamming non-errors: AH01075: Error dispatching request to : (passing brigade to output filters)- Resolves: #1371876 - Apache httpd returns "200 OK" for a request exceeding LimitRequestBody when enabling mod_ext_filter- Resolves: #1372692 - Apache httpd does not log status code "413" in access_log when exceeding LimitRequestBody- Resolves: #1376835 - httpd with worker/event mpm segfaults after multiple successive graceful reloads- Resolves: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1396197 - Backport: mod_proxy_wstunnel - AH02447: err/hup on backconn- Resolves: #1348019 - mod_proxy: Fix a race condition that caused a failed worker to be retried before the retry period is over- Resolves: #1389535 - Segmentation fault in SSL_renegotiate- Resolves: #1406184 - stapling_renew_response: abort early (before apr_uri_parse) if ocspuri is empty- prefork: fix delay completing graceful restart (#1327624) - mod_ldap: fix authz regression, failing to rebind (#1415257)- Resolves: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- RFE: run mod_rewrite external mapping program as non-root (#1316900)- add security fix for CVE-2016-5387- add 451 (Unavailable For Legal Reasons) response status-code (#1343582)- mod_cache: treat cache as valid with changed Expires in 304 (#1331341)- mod_cache: merge r->err_headers_out into r->headers when the response is cached for the first time (#1264989) - mod_ssl: Do not send SSL warning when SNI hostname is not found as per RFC 6066 (#1298148) - mod_proxy_fcgi: Ignore body data from backend for 304 responses (#1263038) - fix apache user creation when apache group already exists (#1299889) - fix apache user creation when USERGROUPS_ENAB is set to 'no' (#1288757) - mod_proxy: fix slow response time for reponses with error status code when using ProxyErrorOverride (#1283653) - mod_ldap: Respect LDAPConnectionPoolTTL for authn connections (#1300149) - mod_ssl: use "localhost" in the dummy SSL cert for long FQDNs (#1240495) - rotatelogs: improve support for localtime (#1244545) - ab: fix read failure when targeting SSL server (#1255331) - mod_log_debug: fix LogMessage example in documentation (#1279465) - mod_authz_dbd, mod_authn_dbd, mod_session_dbd, mod_rewrite: Fix lifetime of DB lookup entries independently of the selected DB engine (#1287844) - mod_ssl: fix hardware crypto support with custom DH parms (#1291865) - mod_proxy_fcgi: fix SCRIPT_FILENAME when a balancer is used (#1302797)- mod_dav: follow up fix for previous commit (#1263975)- mod_dav: treat dav_resource uri as escaped (#1255480)- mod_ssl: add support for User Principal Name in SSLUserName (#1242503)- core: fix chunk header parsing defect (CVE-2015-3183) - core: replace of ap_some_auth_required with ap_some_authn_required and ap_force_authn hook (CVE-2015-3185)- Revert fix for #1162152, it is not needed in RHEL7 - mod_proxy_ajp: fix settings ProxyPass parameters for AJP backends (#1242416)- mod_remoteip: correct the trusted proxy match test (#1179306) - mod_dav: send complete response when resource is created (#1235383) - apachectl: correct the apachectl status man page (#1231924)- mod_proxy_fcgi: honor Timeout / ProxyTimeout (#1222328) - do not show all vhosts twice in httpd -D DUMP_VHOSTS output (#1225820) - fix -D[efined] or [d] variables lifetime accross restarts (#1227219) - mod_ssl: do not send NPN extension with not configured (#1226015)- mod_authz_dbm: fix crash when using "Require dbm-file-group" (#1221575)- mod_authn_dbd: fix use-after-free bug with postgresql (#1188779) - mod_remoteip: correct the trusted proxy match test (#1179306) - mod_status: honor remote_ip as documented (#1169081) - mod_deflate: fix decompression of files larger than 4GB (#1170214) - core: improve error message for inaccessible DocumentRoot (#1170220) - ab: try all addresses instead of failing on first one when not available (#1125276) - mod_proxy_wstunnel: add support for SSL (#1180745) - mod_proxy_wstunnel: load this module by default (#1180745) - mod_rewrite: add support for WebSockets (#1180745) - mod_rewrite: do not search for directory if a URL will be rewritten (#1210091) - mod_ssl: Fix SSL_CLIENT_VERIFY value when optional_no_ca and SSLSessionCache are used and SSL session is resumed (#1170206) - mod_ssl: fix memory leak on httpd reloads (#1181690) - mod_ssl: use SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA (#1118476) - mod_cgi: return error code 408 on timeout (#1162152) - mod_dav_fs: set default value of DAVLockDB (#1176449) - add Documentation= to the httpd.service and htcacheclean.service (#1184118) - do not display "bomb" icon for files ending with "core" (#1170215) - add missing Reason-Phrase in HTTP response headers (#1162159) - fix BuildRequires to require openssl-devel >= 1:1.0.1e-37 (#1160625) - apachectl: ignore HTTPD variable from sysconfig (#1214401) - apachectl: fix "graceful" documentation (#1214398) - apachectl: fix "graceful" behaviour when httpd is not running (#1214430)- mod_proxy_fcgi: determine if FCGI_CONN_CLOSE should be enabled instead of hardcoding it (#1168050) - mod_proxy: support Unix Domain Sockets (#1168081)- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581)- rebuild against proper version of OpenSSL (#1080125)- set vstring based on /etc/os-release (#1114123)- fix the dependency on openssl-libs to match the fix for #1080125- allow 'es to be seen under virtual hosts (#1131847)- do not use hardcoded curve for ECDHE suites (#1080125)- allow reverse-proxy to be set via SetHandler (#1136290)- fix possible crash in SIGINT handling (#1131006)- ab: fix integer overflow when printing stats with lot of requests (#1092420)- add pre_htaccess so mpm-itk can be build as separate module (#1059143)- mod_ssl: prefer larger keys and support up to 8192-bit keys (#1073078)- fix build on ppc64le by using configure macro (#1125545) - compile httpd with -O3 on ppc64le (#1123490) - mod_rewrite: expose CONN_REMOTE_ADDR (#1060536)- mod_cgid: add security fix for CVE-2014-0231 (#1120608) - mod_proxy: add security fix for CVE-2014-0117 (#1120608) - mod_deflate: add security fix for CVE-2014-0118 (#1120608) - mod_status: add security fix for CVE-2014-0226 (#1120608) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120608)- mod_dav: add security fix for CVE-2013-6438 (#1077907) - mod_log_config: add security fix for CVE-2014-0098 (#1077907)- mod_ssl: improve DH temp key handling (#1057687)- mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1071276)- Mass rebuild 2014-01-24- mod_ssl: sanity-check use of "SSLCompression" (#1036666) - mod_proxy_http: fix brigade memory usage (#1040447)- rebuild- build with -O3 on ppc64 (#1051066)- mod_dav: fix locktoken handling (#1004046)- Mass rebuild 2013-12-27- use unambiguous httpd-mmn (#1029360)- mod_ssl: allow SSLEngine to override Listen-based default (#1023168)- systemd: Use {MAINPID} notation in service file (#969972)- systemd: send SIGWINCH signal without httpd -k in ExecStop (#969972)- expand macros in macros.httpd (#1011393)- fix "LDAPReferrals off" to really disable LDAP Referrals- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- restore "ServerTokens Full-Release" support (#811714)- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- rebuild- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.6-97.sl7_92.4.6-97.sl7_901-ldap.confmod_authnz_ldap.somod_ldap.so/etc/httpd/conf.modules.d//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericcpioxz9x86_64-redhat-linux-gnu?7zXZ !Xۢe] crv(vX0̲b(3/I foJ"{*zP߫z=Ҷ(/~i+uftz(7Wx=,Ջ~?P^bO̝sOd KC.9EPԐl,vCSe/qKDՊ|(/WHlc zbYw7сwu[:j?08j Jr'~Άʁa.%v䧮 ҾK;딓3r QވSa ->+Y[*͐T/N3+أ;PMED;а9crf0m sz_O+幏^ .meg(tV_Z}yp8R)~<_^'$&hC?cز=RgcN0N t\ 5 Ռ[T?6`5,Tiϥ߳l/W(:2?J/s>ײX1Ǝh,|4iPx2~T/]/'h8W) x )M:YÀCI fsZ5`Hpڋ"=]_'\{1e9m*WHaˆTœ$|UR/*[f)8nǴSRdkD_ݜz^,<Ϙc;|ޛ7VKLGmyTEyLC5_bz!p -P"_ߘ-qmc0N8 Wzr{=9c?c' (JJΫaDAg V)A=0TvI҄1=Jwpz"uӸě~VDa\+Kv4[z_}Cĭ}=3F$|qcϫVNB 1.g҂|r % 쌤@ ֥N5If3Td- ~ <3GpL)M*.# DV]@ItS$&<ۯ\w?NBZ)0^Ň5W)NR*K$99%,q`vw|z"*RSGnXyW%򏍡?|<'zib9MjM0u[[Wi W츴U$b_0Rwu%gӛgzk<3.E<ތvF ԱPS*L! G^'Ck02SEuiH2uQ٪3g,7oMB~(M*R좺oJp!Ʉٍ3]S[%4vM5HTಌ}sMR0Vd3g7Y~Ìv3(Kի.`fOڣFzrT1 %C*ݥSz%DC9b0K!O!DvvTbF]c-G&bFQ}/t'`@̱snYVȷ;uEqq̆5>$'iNNX8>A3:u!MKX ͽ4ʎeqCzjDጟ7je3'~b/8Xm0r2yڣ #q=I\ _KkNl?;.k|k(}+Zu䯹[-% z2H ߉Gϳ_lmAhH ?4=0Iy3g*kJ:-vaBUjNtDMEd] a繛o!BdYŃ \WRC`>7'rz4b,NxYCN)Fu86/U[a?#I`%XV}b/#ݞT*P%)zgrC06#Kuܹj^^''=ھmPh@]!J-`%ǎ1PiYM\.* *}`=7JcHAE7 F֝-tG!0;'G>ȅ.R t`s)ii8wFg9~uػ`P<~yoR= Ձh-Zj~i_{A}"!uQnflmY21 z[+\Zd#ʀ[Ƃ̝3u<"bP(C뽱!zb BR`!^_ /:BpKȋo3nJȬr@zN.c+dޖ'[q8^O]ҙoI 3{0Rh\R= u ug {'1ϚdAUUUJfB'ANy>3T7J~6 hBn4+iwEXT4?6Lf'|l09K{m81 oughE>P<߄ Fi7 GŠ\}$t7ǔen9&_%1~ 9$5EfߧV 8X@97ԃn{DL~\@E1tbTES+#u6.e]'^|^F69W_ ŕRI@XUS6F 8)G4&tphPqp-8%hCy6wre;!L X)Z0qc΁EtfJ+ގ370([ѱz " XhgaRu8UJ -4<tLjl}_%.!P~|p8@]V3 "_rҊB8b0VY2 6"NeqWw]ƒ3v>1yޅ-פR1|T~3qT+ؽRjyfyd,LGlBN@3 jZPgc m8Z.jWR UX_p*>iS0NxH2y13*2E顉_?0#ļ_gQ RnD ]eÀ^ 8ee췛DZ;gGXSQ%<]QΪڍTzSuq=H$6lzm< itC[:^pݻ w鞎 2BYQ+Y??hW~hPSo?@?p8/xܧւt':o+2]F76Tm]YJ sRQ!*~* 1KT]$5˥nNV"\E82݃GU`; .p '=&_|O;W BX6w DxkȨDSO{E{"mGR[Ji~%;Ԭ1L@VIYk9=i/u6M׿’Ćj`3-[+ςMO|yR_V ka\MˬKI$k(o6jMI&ǰI,,(M /{n,78B Uyu&ڵF{u쎵&D]u/4=~]dvƐیoU&E#$ ȵk֣:Irx9ݒKuTaczĆ 9䨳I!puE35fڮ z Eۮ>T(L yp dC# JhvnI9+=L#p?hDy__9@ģeiV7lDboKEFa*G$kxr- nWRo e0;c.bC,6G;ߟrhuRA8@nFl.P>S$ Ew8 Fr 5 Z4 zh'ա9eҠ;EYD(.2]B}\}[aт3_A*!^lRw7@v/Ʉx(Vdo/ia١Dɥۛba{{SC59ܤ?+PJ0l󴐯$тCCd#)ySg\j;dWBRGjYGQ p_65C9[ Zr'D`Ԅ_|ԫn i7&x\,5.ezj#6=*XB9qhy;T-p9knfB3;oS32Ikk H2|&JUƐl*Mf_p磻<^P+Eof ~xg[bcoq8ώG<8Cqi؍ch8~FqMꛫl&{ObfyT^@:ЀɷJm(Qq6 7(9$Q6ކOZ㱨/P?W+#e~z%%yf_u6R98*eE("&q&-Z3,i\> YZ f"Ak0ưcwىy}݌R:_q!8%b.(j7NL+˒2LMx WD&")~.9 ƙSWdt-t ?Ҕ񇕜 ZW,LVjkѹmS/5(y 3y=`]jkNIƗa0p7\زdV8v{8jeJq;[Ƙ=ZO52R+ }9:t>)}: UKv݊;9]rzRVs"ŋ-NqU4 " V5LY58<ڡFDZ@@/K:} D4Tޢ&日F둜)w.+‡flyصR9Wzኬ9l8X#P{TL0(UXm!*5E#ڻ6٭ Ղת/hpPmr~e Nr\idkkin-a5,RPh;- a,,_I P|#7KH)dYП)P+INU.L#h)փ 4ְ3nP k`0 q V"_뜰=k){O%V'=}W—{IWr:\BOƔcVM %o+5(n6|vUz˜MT.5._ZRcXb/ RYam$]o:RN vsźY ["I9YUؑhM-M*^4 wL^BN^2Xέy4W-\_ CG~hC:8{_餠ߧ h .m@^mY8jz[p~c2κ?0-i@:唲]@tԖ=wL[NeT7"[k?WW8r&HX`Ipo;m?L NIHTno1 x4~(H{̬vE x|= hҖ6l|敇32>)HR%[qX_GTM ;端)D@h/HH,{Lr\TJr Pu Nzt*/=:= %VG^ A/iu݇8V |FDz'T8V[vrs 6|3`XuT} 4e瘹V}őGƬر7yBџz;4amsRaa1#v$~2I } Wȯ`SζKTb7X CRuvwFErG r8OҴzu9l$)kβ+>&jơ!$dF]qcjeqi [*s_ Sy)cXHٷOUB/]D)`zc>7 ΃U?bi*|Nc \?Ҫ ZLlptLi!QFS$;ƃ75ը}sG?,ܶOj. Qr;jͶn%V[9p-v% K1k;&[f/s>ƼX/LK9P?}s&o~^/{{Pg0nr1l-+(sHѢ(>,3=-u##YƤ&FQTe^3ih*Tt#Jq=;«Wص7åB.p?1 = ,\%Qn@R|.g8l?`SA~ž_g"+C2lEgXK+{792E kփe(ڕ7W {8,TKW@ yEeE7pY9A&tFqLo,U4'oHz락xLyQA z%unW-)7 ׫RvZ.H r -Uou\OH '4ҎO'M&r֝V9 tDad"3`@STF(rzFKNq?l؊LPHgS(-20$Ud?MS|Üg]9X]yXE|bG7̕{F܎b߰L:?,ݽHn}^5-J~a/hYM9qՏriPHݙKQfv*=gZa)8X63lsTEIV&pKOVMt* >yv OچQ1)l,c7sh_ $M[8haZWkv*ڙrwS5}QK`g֔q!N X2;xURAT 8BwI# z6!dj]CA#3ܮ./u$-C)WINQE,bML!?"X mI~b0F#Z:}хQZJ5B;{bx9ZjA F5*d둃&Irc89\FxĂijܒ?!Rnl;|@v4f1c_+;=q=m FYėT;JHRLB)}gy^L+п{ԁ\vN) yb-%<#rIlEe` VCP gԎOou%O-Zb7t_} +rit* Ȕc v$Դ7v-DWu >ZXɻ)> V8%܅ӗL092VHb]j<=IQqy+~~N|z stN!:/œkO,cn4qKLsρSRFlVZ8:Bӈ>#QQC|0v-E͙qG1塠f8 /o,^8JJROުͽX/(x>HL\p,ΙPLnrvLpSI^vI&>-?X/vz=Fs]!!r|OBJ|)Fu9s9n V ўdNK&cïUo8#0rӨ24}0Ilj[WIg3V&ۖ+qHeʗFM %̙~sA~QսMl$˒AˌE-$YTŧ18*Cؖ+d9WhTZh΋qm]<*2$DkW o-O2O͍ -HI@&\VFW@Җi,CC46 2 ۽ٍ8 Y; ^n1^* ]PϽ—ށ/AGW ķzwcMH/a:䔡].A$hݟ۵B]{GiyIX3;cR?sPܜ[4ĉucEIϓ}8>Klo6`](Jӄ/.FU6iXG}8] b?׊ЃOogg A )/ruv73{+!˯KԌ"WDB9Tm Sʀ)O9?[՞'KVjQZ^P[VQcX+kq%jYIJllKfͅIwrxnH>:I9$yl!(mfLv :+/>._JذM ]3#vS43`ׁ(~ۄ?$T'SKTyƎxFq·"6\(v!|4`WRr+S $ m؋jM:i9BI<.g|wM'M0l$d 8TҦŠ?4Ф1 )#ViU!{}+KpjLwdLAm,o4NżLr?zXJEDohD?mNd2q8=q@KFLx}j/㐂8gF sMs WoF20 Kd7QԱQTȮ8.fwtR:E3rtYnjDP+% 6\i5[9+N~ŘimPnswE^ nO؜kpƫN"4@? j|e Pƞ-I[{2H,X#OÇr eƸ*,lʖ/`_nBq$M$ۉn`mph0`ec.U0]$d|U?s]nwGmzo_S?CBz9v9] kn=Q9ė4mfܷ^f ;N%CFΰQc&,w>pE&A?A`e骝}7P,j&:OzL| _s`ƨf@r47vJ[:\xb-aî WC.BG/p?Gd/h6ΑlsJƗ_VH"$ #rk7/!ޔs0fKPeb}{eu4j C|.3T[5σP&u50V*h/g2s[sȎ=SmO$aQ.@9VAxN8h%܍|T'\*́i:\:Zq{6bd(c֪jtE,dV,ͳ٪DoL&OWLlfsuf&BP&@Z{-)f%᪛/u'jKi-GNvx +>̆A3h 3(1|'uFwqbL3Rn@zt|2K}q^AfteH4U?F4}6D=^8ujuzo#C6v:ՠYM@V!? &J_g*oR?KZd&R`ġ7eH{4#K$D%7m{6emE`} qJhm76&+꼛J<(4>2phx;4g%${';rc`O2=<\Zk=X>9 ~٥?|W5m׿P% e]xOgjÀ?e:c۠{u3ܣB᎐|G,g] = ũC (Ⱥ;ِpQϑ2#i,0yFRT>_ [fWꠒ gVjhô^"HhFHI+9ocjwoX hG.Odo4ȍa{ h`U(s]ݨS(YϷF/1äF|?,DÜHO)n ^\}X׏z$'Ed%Tn0%mN΋Y蝁" yG fm_8%" Ct$xOX' 9owvVEzx MKNS+Q%_a#h1դ Q]F@7CI.]OȀT); ҢAtGp3_@q#-iFh02#bG@tɤld*o @<]1+i{&w|{ƭj'٪s镽2EH=Xu㘓ziR b9W:xhE '@Ϫߓ}Յ=iO O^/[]֖h򆮃p2V29EK[~ }ѧlB7ԿG\3aŝdcT%{ʒ9w3@f>ڨ.-ZAj;H7iekwAȋ`0ÿ cLAt g|lq| 75"\ !v~sA ?n e"Ǿ^8Va4Ö驞KqN}AreF e+QS=Pf&lLlEKҩJc^<ڸ>ϵR]jW7ef?'T{|Fc-n[?:uR, /%!N XSɲk؁"`hs|9Aë4a$OѺӾ3aٖwbh׬$S/J] D}Kh.M~dRO K%I绕T!"\QFz,[Qxlurc̹c^ye^ZJ\Z*5 B\cSpҕ;˓cցgdUC5ܽ¬V?ʤ瑫,_n ls sem~E8)z3HH7*/ RujbK_gXv lAL6}[0<#OfXFShlS ~•DJL_`g "2AE dﱥ>h|Ie*sZE*)s68hRb9e :cOyvn3pxÖPoo-''<%b.yLy;&([j09CqlMQ} h'W|Ρ8?9iM=A9$]>]3m)q)1jF汳?L[,ţ^Uf>yԶKӾc?JG1ZTF k:cFdnqS`DZ ;12d2w])d)w5U2 ^ c;c^{vCp.~@f %|…UFdĥ~E0^l ML; q)N{r΋J;\z٣ޑZ1[XUH)ВU{_Nג>_aGe<ۿi(.ABϨzԸ sثAvjȗ#[}pMJD-3!i ~v1rWy WDZ"&O)T&ތl">}]0%F~:kKXKz۞@aT"5*.מ&6pC$<W ʅ8\cy0~zx-(ğ\GYߴ1ԮKj.3&,;b5qAVuJK:AS~; w"V%Z~ylO&zX#\qP. g\b'Ѝ<q;!2ȭCUagҔ%Ǯ*Yܒ]_:NF\HyDp}>Lt+ aG+jM&jĚb{Z }TK.e-VŘ}ZUk+r1A0ѕSC;)m*G? %:Au: AvmElHk^S%Tn DZUHcL bEEt|ҟ`œ5`," Im k:w:mF@A7Fps sIT4$t3KNG<&g+&/l,jSDڰḪ*#WUDh~![c~BfvkYKnx:riFF+;4,%2nVt I8ܰ$ؔ׳&௳c_%HHvI=_w蘽#^{ @Ȃ=ӂAR7ցkQ{\X7X7HfEy2{QM9y9/jÁ~R(z$=Xmr8 `mLhIΝvnځ#곣c]J'4/II؏2\D Bɔ j 6R#Օ_;0[ 8ZlVPAްڑ,7_?(<2, &G)*t eOzFn`w=F(aMR3,&w0j2h Gz gvE@jWϔͼ:HJqgX'Dx<%0`\ED~g碷vpBD\b貪a(2_J>/1 aVs]@C}qmdG.nZ!ƨ$//nW,VATnᇗ`1S 9d9{`pVO2AZ;{]Wi]3vXbd@&U}8̅]TfL }eИPrՆ-y R&}z{Yp/zE*1rg+dTAb>:;R]p_g#)T_8@i3#7YS4ŕs.\b' C9:T"SP ʙ^{!h61ĢӖjP('ړ^z v{ᕴ[7bRRT7o%A \S$N= dKroniW{њMU3$"$|_Ŏd/0@G!]]8$`PN}TeذLUia(aХ-Go>%QOQ*S,}ZhȲقYDE\ӽ~g^ W64Cr,:2,|8zb3lGlG{ٶwu[&i[6g$;Zz (Cpiweü\RVo@SͽD1߃;i3 XC.2=BǦ+Ӿң;&ה軒J{#2tmU@kAz6e4 :ws~fǗHZHׁB/VTdoY=u_2Lo]duJ$T\?Tnֆnb/uQbUڗ]B_edX#wk(V ?DV1mDYΫϤ|7{nM?i.1lrPiﴝX5 sO>£A n kLQW~<Jf%KsTԧ{jްtJF_I0br=g.ɈV/h]e5Yӌ+hTE( tE '%,M~͋T  \U(=a|WZEᓈ~a3ppT$]iT+mj`Yv^)wz_?šG(h}w0~ك e­k0գ| (M9&[}H3J98ܡQ/&K8y|GQjinf~4B9/TKF;)DiG7EIӯiUAa.1:n|"Ot /iuZ61`V{Ns:khʱyxʎDm&<_%8~k 3*A|$V ޚ\@9Ea2>~| oE'  G r(7I Ȅf>m3}LyUydg'|xmdY|CC5u813"hW7cO450nu&,s[El"~ШS.Yg#ڒ5Iv=_b%D";ѡ´&dzDx\abO7Bo\o) ~c'}@8l_8ja*_|RΐZOY yN[ k|2>|׳[FՂRH Vl\9Gq%[tӘOE}iwR4RZU /`vr9ƻ@Zj36"[ZODalPz;(BwZ'\ JwZ^.֗t2g/b KCqGhoJZ͞3*dbt- t09ƒG Va _9(\rPN2EF z. 3شqh#OjJf7:fi()/gTMqq]*v(}/Fa=sAnz3{΢%Zoʋ &v ksHS}RR&-cih?? .?[O>VœZ}8[Tʚo+5GGAT.*/a`ޞ5w,6;m[̏R"rT[k< LA"a!vbܦ z</ښ1YXhCGfuz<6kWBqs5fYl~2 Rs[\_ :ZFo_w68 7 m6yз9;I &q|!DGW>w[P32&Phd.+ٖL^0/ao[|'u*%E"(P\!4>mǮ0Sy6Doj~jW"gK}[!7)\OPe<cKM}ŐV?4"s Tf5j}w)%$?{LxYqkZ)\{CI(ފ;poeW>pH$e=6k3X0Z/!Ou DPӃ< uWj`E4^d]NF|@#4TKbW"b Rb̧Bm (F(^ J\"-Х))hnb緙gty) @zF-J!9BZVCs1k+ЗD2@IiPa9Rv btkEEcA ^4<8Y[s 4^U|LƢ˺%wbʼnj|T p#"yוjw+ük-NS0Y8)AýLU'%gWv0}E>ޕ<Q937ow/O mq$^LMo4BX"]{d(I`X,Yh-0\UQ":'BQF%rv!啄>E.WXɡBD4c;^W q_bO _杚tNlLEX`ey]Ǡ3x%꠭@y`鱬kۆHB hZ#F{'/95vk ]QOC*:'>r{<~#NܸrI>Eg#LvZ_p ŽQ/Hv*QkA cQ 搝iO5EB :n&nV5/ːoO w M\*\FOsQ@h/c<`C;MS#alTQ*l! Iɣd*kh&r0 ]7CFi6LM6r>pK$B 17Fmt%TDP"QzyH];q5T~^I ˤHK5h"!87a*Ձ9P|L ƌ/#uytLoW*m wv<^^Se"YS9㳜q\4ypc%bhO-dAtaOx\lGzLFV01P|Y~sYN7/G}‘N<룹"WH(Q"-V`%I{\'(?gIj0bϖM1[/0k8W'WKg~wߒ 5IyePͼح|Yr *%_3vUd6~e/u#҂\ht(~E5W*s$*S*}.ZV!"9ihU "F>x9b,㻃d(x4'ZԮ)Ksl &9,3hS{Vv(L9ȚIXEo]8IdMGK6p$UJ'#gE{ zD5 1SviCA%xHq;jɸ|߅hAJTV6x (AH-2p8Q!oU]DY-%r ڟ _ѰMFu@J 3EѠ$,+>; y&0SqYl+%lNcmx@<: m ܺ5J3KъD+L1,YÝ \z7f/ DW2vA2"v +MClTl~n@N@˲,ДHt r!=l` pv2b<^7-rtRZeJ'W_dٜ%`~ɣZ̟8Ҡn3tTқϣ{]sP_o4|&Ap$=+ls]; mmΞ՞WU-)L{nzy)1A̧Oͯ3!>͂p,SHH? 5)NW]MhL_7BTqMڳ ^i84WXS!i_o \lQv#B^!+{i`v}NyOb.cH{;wW}1MHnuk(ra? ֳ|?&9{%`fz6D<"y1Tr|1.#JENtZa$x?` p/͝'>=|F39sO\0?vM?7VQ}ҤwO,WIzI?"BaA߸J/*MA(U>"Ss NV*i#V{oJ?۬ģ l8?d9l;RRQC$UNk1p`gNu{4yl1;Y=EUь-` Bﵺtld:$)@bEN4э:DO݌ǼԖ)4!0"  Hm|fO̾?]HѮ ;"\TgS;iJָY wlu`apEv,X{̉4fywJ3-,@)t.2ôCwq{ 6O#i7% &yp`$e >LJl0i)X۔CNȾ׎5}!vJ٘72JyKa$ ksn1G GYqPp3'{C- dO(eK)FYܤYB>> ɑ=\$yc-ml!}j14>G"X\1/ɚ/$߷P@0i|ib-X8ҌYՕ ~LGv LY8t*ӑ:}b={Y7[|vp'E=fj;F&̒Cxj̓^YvbB#Yg.7Xs&h~Ut,r7ܤ H`ٮ d>]b$*6pqM6fGMwhWcurPkF+ۥ܆ԛ7wջ”ğ5jnw[DmԳ";y+d3 Zbd yz;&rU?~6]ԥۿCױyi~ 3Tf\R#L;9 R\i(C+ 5shF'Kٿ9Q[isRSAj|䢫 MòGNZSTӷڴV0ѓt\3RD jQhޭQJ3.Kj?\! 2-mpeb\"Z:g`Dnd`T _m߭}[tn3`]k8P=˓qJ݀zF}.-Cl|~$*j1"KIpk/ł冧eİaxTʪC$Xm啿[)%Z~N5ullR.Ǯ* Ȅ 1qX2q0"_K %(eY4<!*]+dOT>֣6/caK xƲܴ&NO:x(4Luatq{I6k@T.3 (gT̜)Uߪ%G_J#;Rzb@N V,۫<θRx *g(pLb%tyh\'%pb nN@qr/CTZX@a'[-Q\nUn]7.=(xx-ѭ6V Q~~In04_ep,hܰ#r2S C륗^}ѤKW!lXcrOevV0ӰT.֞u!1SZP|TW?0Cإ 7aPKKЎ /45yQQuI1h1k5C&mEO[vh_ކB<(> ?)]pT($rL3/ѝsZG%An2ۃ$7U+ZˤMSgcv(Z}t!8ԝn-:$;>D r<wAtœts<մ .g!IMMni.!ъ0r4lRͱFI?%r sOdq~!T NK8lP0ۺYKf{fT)|3d$e4xs+f;J2MC" ]~p?FQQs铟1ҐI<@qup&[Ug=܃z$lؓd#^BYֹӞ@G;NL#e%d^}Of~U]~ M:~FY $o"}@/R`0ك=tfA,+gSoHpp QoTEHc+.:]`fY6 ^s{Nos*KOs͌y .FQ* *x,B{-7%q|v|fylA s NԊ@F8#၅)ǥ½p>d:[pdd5'a>fXT*Ap;5[C 9Q_:'uQϒw3\jvC0G5R"#Z\9)4Qdm.R~O t w)U9iaKP 0幻x=:-TM{KIԠI` F接M>$`?AVȎי36@su8a+Sj/AFTJNAe<-߄&w8e2;h2 qp2YL1 RŢs7u yGhg9YٙtK#y5ӽ`а)jDzEY7$^`%;)| քQG[iʱ[J݈ (hlTX'̱/8lsQ4v`%da޵ f,ȓug&-͘CB bd$~E< 5E{L<$(s8ǫA. #Q0@̔vV5RQ_2^6X6K xҜZSh=$bbWZP螚v^ce&I.+ׯQڈckSȕIv~UjKJi?1DNƻ?! 77 YҗaV=%PwZ.$-C_p6[ 0<:X"Lzr騚/WmU~>?=y@AڤH&CLdk>`S="/=s J}~ZCz h)ag]^~ÿQW[wmrS,1.KӱdL+A:rg$c]'YCr{Z=c0 n%TQ:\;΄̉Kq4ewfU'T3(xmo0]@iR7`ݛ3<26/ٶpdUi~T.{Hm}ߌd<< -N;_B+k/p :aOx9{!y)?dS6of#A#u8ӌ091)IECAvkIy#h]^6Ք@٤/92mգD}es'ᾓ)Nu!}-!5dQ:hGm1&#oG[6-, n#`gU 6,<;0~p>bjXVeܭjwF:gE[Sl_Dn 2Ih7 f a `v MǏE逄@]0pz6:;_ݢ)2&6Zܪ+pZpch.!R 7.~%F&saI:\X`LANv9xE'0 4&Sgo0\0̌h^kc-]U^*=VfM%PrMEU\szhy/ ]-".Cx]וaDM 7/: I˽< cLمQ ɣ٢u!996ognλ7(tRLaԱ nb^ Njɝo}+ f *d_NJM+tA=jt09|iHv6У*&8Q'+2 vZVǙJnqk { SzZ+RUJu4yr\B`D}tmb,ow4-7,yTQ$hRmU 1 )8y>"IgÉYo$ _ :gܫX~p)gQfpMj ~ vK\ˇN:.6/\,Y],>[f{#vQԀ؋y $5.vo0AHo R%taԘHp\ogR1F[ qqJAc'T@{T G_ dAKP2<>ŭ9.Xxb% ;QSYD/}uE~&DMo%Ź*)~0qqQ+8YaTA0G׃aWj4h!_i )>e|>9,HowAw$P o'a {YQYw+}P0bpMI+`W;9%hH+KrY o̟+Bj#LqG~_ jy٩ Hs<^E[h.zRkcUf@AJYu73@(WWX!xxIWTΐ2 aCBmx‹#P<2kGH MSO!%< L]*Qٚ"=wZ"3GIh#>7 b}AfMJGxBK!K:-\98D&K%ϒBRU[z@.<.JrΘ(`8+:E Q~g9~@ <'|v+"_u]8jI"ؿMQK>#.i%A? ¢Q:[5#x$7ri\o-b4`I$S>O"=3XYWuc W. 6vC(9&C#'i֓6,ޡ$D)MfðZO >wZsi=PǢ(ֽibt^T\b! !=gWgIPY!g9}jb+%$"=&@xJ'ԃ,DI EHg%Bk!>UDN¨ENWݾpTC(p]\czX \D8/||? ,iSb2/S06$B@Ca:ŊoyB y섷NX՜E-x]ZFuM33ZJ*0݉52k>a9?8!W6FW=`)G#h9 6ϙƩq;{Ųe ?8QOXc?~&JzNhuC&w fJb Q~>eޑ?V/]r Pv k[4d`g>~YabV0 +Up1') DwE6?xd#JFl|W|ɰN|ː;]?Q*Yy3f|Wz&%/ےV* Gia 4;{֭jlVeYVтT]w4WI0ԧ>eg#7hptd+b>, 畒`_JQrI"VӮU^v=P[nM~/U>l '?v' hmڹo|\O=.a3}KD-m9A%M340\?p,69X12g@ȓx }V L 鏹2Rr,:W瀃 Y:Vw$͹LH$쒗P&$|a;ka{^/DNP*VJ.xiDsp ;dH\*Nm.8/=BVw#ۚx&$5!<9hζKw0EK+cSY5.|Nx^l|^\D7-]U/,978Yuud3TW \#ᆋ~[\r)#Zcɐ{*Exh/챊sz/CbpsY. \ɔؽ58,5CbнlTę o}`l6Ϸ*\-5%bxm&YF=H8"#.7* O؏I&n T _G3D—m.ׯ<)sW XkԬ#Etf j:ˎ5ݚ߆b^5$MK(TW%IrĐSU]kr8 %ep|FC4c{1=_h_Þ)22jq)Xʺma`ǠLF7,-BYŌYIUZJ _6ebJ섵$]kA{ N~ڷEH֖l;0{jXVCj2Fc_"h}nddLx.CD+?32jq3-X5eoBYTw_B+Z3┊~{zixmT]M`%M- j/~[];?GsI>q k %9n.0U9ClqЌU};^m6b i(ٖA\gY GjOtpRw.z )G+8fwd?l.7dcExDpпe&kKDnTmI7u_!XHXK3+B).`)v.N]cpmݠͳz#,=?&MXhrO |ͅ8G8"g(&w4PV,,lY5l6xNufqb-\NR6LnrMK,Zjn,ǽI 8|$"Q3XM0YiEcPއb: 7L7bnxQJdP9\9U zm:thl6 >|C՜%yϟӠXDx.}^0rj5zhC\+ F/0ekcDzY= jeMvm7kz]}r ݃omTXRǏ?= ˉva徖-Y{?A`K?,8\5rs ֠0Ѡrz/Kj sTv47 rgiE82jvN:ptSzFU6;\yV@ άfc&Kb8tyTt bO|bf^#./nlC[pR(6603Kʹ#̉Yֶr!צ+=IBQ?q:dȃ|I7&GX81;pPj|q@&Om,]=p5sEΖl{J~&&b-ÏM#WpӽY$Q(63%s{vP< F鮵Oc ˞4tOZߋ_:|p򗧑ZI wwB+t.2$aJʤl\+Ig-Hr[ HKsXsdx.Ϋ(M%|I{@\6LSWJq.S/~uʉe9*EPp?29ݼI6 tzQ 3?s%hlc5Fq@ r.Xs> -|kHbzwaщ1KfE鎙/8 al-Z`3liw[z"61b)rDPd^SZT-/PU'4aF.mp`isj:tXZ\Ć,&؜`]QΖ)g*O?rp& V> £Na\V:2B?ta\wA8dYBVg&XiH_!6%v@lh˄#U03hˢuDYSpNA/# ~T*OB#a2=Ųx&~< V - $^ ^_*&3![F+)0FbDs^/x iu|Wjo'ZK*. ձJ. 0{3a|UռnC ܜӻyI9?V|JjœwD> PڔQL\љ7 !q{0h`TEl."I"a竕m6t_gT`. Y"*U*T`"mTHrObER3I`GTv e 1k0 'Jq$3󑕜!]z^!>ء«5I(m›cml\b8h2 $M2!v~ ףuu,9YSA&p_"Z_~ ]>!OFvLC :n0y5sɤ:i>PݣeY{)G~pab/l^ BW-+Mb3i+!iAOۀ|b%k<. C\>uƴ&| `;TE[ :u4*ߒK<ٽaϫ%yrvF֞l-x Q XNa pdeT7a;}ߦ戦Z/58c_bMg09?i;d0Bz8r9Zؙ%ɿ77@9MxY^2IDKN- lh.b颮$fZ.7Ocw/KH=J1}6. wbL(k&Sy YAN3I~})hiYJ{Β^ly4V"{֔kw%KxRDW$>KYTQ}]ML v*T?ֆ߂痛ßc 3TD*2"tUE;+d GUgcؐ*}zKmϟyB,`HuzFۢj Ly}ĨmdU{%|A' ňzF#1~`:Ͷ}ҷ/2{+Zr\:MVr98s&*ꓛmݽxʣWek,sW81kPi'DdIAE?ehR@0WgeuMrSo4{q_vڤɃ\,,= [쇪 RUud.=P9kLhZ~ s|w˗ն;)MZSMhBG}+תkˈX%'N䋨?D@/ |ICg1A'Ku1sqdpȃo8G"`1*kT@DS){U \jtk9iS9m>7ʴ\d.]bBQrӗ+*1Y@ʙA=$T^M@H>$T=CfbgɭWNR'Q-3ؠhMFȷ $-FV ĐČB2RǗYv:J`o]b QiO52͏F [?b/"ܻ_ 2gfQCi;A4U<,akѳ5/ ʊW Iٛ]0t&e5.4~/؆Ęޘ-|Av!)s9mCzx ,EK'x8v6F@%[^l$>R!TKƅF E!~, aZWT̠" 6̣EӅ r}Iޗ",‹S5uO}% c U3E큏pK 3buWŎpϺXOݰe%0+* "R4&T> |*jP8[,@q;;}cw/qݠCoQ\}qlaictTe<$&+(g1 ZnJ!_ -N:Y+8a 1| OGH?o)RhZkGuRT]JYUȈF}1 €0QT\hp@~mSF=2W!?0;{l%#[!/$Zޜ,i$]/'7x_8 9ꉫFТ,X-ە~Pwr&`9%Q`ZZ+ԃ ]ܒ?[-X߳ZVҖ$|*y_hBS?wU$4 ;l8oQMy0 j.Sa'`m&K?H {&[yVȆsqW)<>AA g4qPNv7[/*C(P^09TʼaOLOkAX fEnj -701>y1;7_x85&G(_X~عSiZLS}F0 Jc.lM7p5sTqg3S* ]ᯟ 3Lz` [x|ҴP`tmip{2*{!Lʐ1PݶA`OuL:ⱉ.̤^kznNEH@D~D{7M.M c6s"awgͷAqQ(>[{ ^"7;q t2xy:we YUT(kOor;kKQ{ `jn ʹUC1mE !^,/l! UUbyu8%Mn2<{?P߽7f+!# ]G VX؁/oV:;E; @;]08c>\rO3%} WG[HKD1eZkfE!x?sT91j]c N=2"[-t}uʃ `>}U ˰+,+.Tpn I57[noƩ>S㔡L%=[W%n@治<5n,AA˰ 6m6ie&E4p!uOe'qTJ͊"758%qJ_55|Pfv..E0^w`lȒoe^9R'f{tS̝UZFmvio PmZ5ezjD_HX=kM GH{畏G-99xAbNZfÎ!~3gz=EyfHPedܯ `c N ~vPʁA˕4fH_p #h 5XAqmś/1F%z) 3{BhRi O %F\a(#ğH/,+/[z%Q9WΌSm2k %; Be Ab^gx%F ^ 9uB'3n'XoH[ʫnn{2gN'4lЗBP"iЅ$O}JqL|5 \IC60 }S0z3_xcSMmm^+?dyZg{W~0lÿn:54>Vl=W :X*o[(W n\5旈rݣ'L:PE>AxJ WC(+W4'um-l/z$f'GMl;t]p"ƍ2n}E rE\ psmJEvV j'[E͛{WO4u~nc#H_|׀چ^|iPiU8jN (ʀfDe{eh8( %ț=Tfޕ!Lgʟ;t6MYlEZ/-C0 mJia[ՈǍ. ؤ7_'^5+(d59ƬyV}qd˾ ? ->,:!*>Aޜz@z4 5 lW$5zN?o!s@eZG){eg]a_}uMM&}h:Dy4B ١NዡfwSq}3k:V2wʢ` t*ś+ƿ O4n턧VM!9IW;{YM?YwQdݒ%/,upPXw\ʴ3v!FG|=(c*.5fKvw jlSzm)'>ZVڗkv!YOܩ2/o/qO}I[".O+T #||KeHD.IlbHUy.5;Vc=J2@kCn?w (mhJ:%95n57|bԧeH}]K1{3"J i;V)wϹ/2[4;X`!yzYaۄ{-|ӓ_G/KND/8Yڑ/[e޽Ĝ4{5"0`$K] YZ