mod_ldap-2.4.6-97.sl7_9.1> H HtxHFamS ?*}}jPFK î%S3v?vd   S *CIP\ b h t 7 <HWf4(z89|:(_GuDHuPIu\Xu`Yuh\u]u^ubudvevfvlvvCmod_ldap2.4.697.sl7_9.1LDAP authentication modules for the Apache HTTP ServerThe mod_ldap and mod_authnz_ldap modules add support for LDAP authentication to the Apache HTTP Server.ah sl7.fnal.govScientific LinuxScientific LinuxASL 2.0Scientific LinuxSystem Environment/Daemonshttp://httpd.apache.org/linuxx86_64(-agahahcbbbdd396fe056e8ab167abd7b2cb5145b42210bfea38452968ff02a03493fc891fc40183310c422326805264fde9a002a05a2bce3343857919514d5a828aac74eb28d94f9ba8c701f7aa9ee2c592167ac8bea14f4d0879b95d0041a9b329870rootrootrootrootrootroothttpd-2.4.6-97.sl7_9.1.src.rpmmod_ldapmod_ldap(x86-64)   @@@@@@@@ httpdhttpd-mmnapr-util-ldaprpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(CompressedFileNames)libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)libpthread.so.0()(64bit)rtld(GNU_HASH)rpmlib(PayloadIsXz)0:2.4.6-97.sl7_9.120120211x86644.6.0-14.0-13.0.4-15.2-14.11.3aha^@_}^@^|@]z@]^]A\@\[+@[+@[+@[*A['[d@[d@ZZS]@Y@YeY@YY@YY@YdYp@Y{Y{Y*@YYw2Y@Y@Y@XXg@X,X,X@XƉX•@XCX@X@XXXXO@XO@XO@XO@XXWWW{@Wc@V͛@U@Uݪ@UoUȒ@UU@Un@UY@U.RT}Tto@TXTG@T2@T @TTS@SS@S@SuSǺS*@SSRUR@RRΏ@R@RkR1@RsRrF@Ri RM\@RC@Q@QQޞ@QQo@Q@QQ@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Scientific Linux Auto Patch Process Luboš Uhliarik - 2.4.6-97.1Lubos Uhliarik - 2.4.6-97Lubos Uhliarik - 2.4.6-95Lubos Uhliarik - 2.4.6-94Lubos Uhliarik - 2.4.6-93Joe Orton - 2.4.6-92Lubos Uhliarik - 2.4.6-91Lubos Uhliarik - 2.4.6-90Joe Orton - 2.4.6-89Luboš Uhliarik - 2.4.6-88Luboš Uhliarik - 2.4.6-87Luboš Uhliarik - 2.4.6-86Luboš Uhliarik - 2.4.6-85Luboš Uhliarik - 2.4.6-84Luboš Uhliarik - 2.4.6-83Luboš Uhliarik - 2.4.6-82Joe Orton - 2.4.6-81Luboš Uhliarik - 2.4.6-80Luboš Uhliarik - 2.4.6-79Luboš Uhliarik - 2.4.6-78Luboš Uhliarik - 2.4.6-77Luboš Uhliarik - 2.4.6-76Luboš Uhliarik - 2.4.6-75Luboš Uhliarik - 2.4.6-74Luboš Uhliarik - 2.4.6-73Luboš Uhliarik - 2.4.6-72Luboš Uhliarik - 2.4.6-71Luboš Uhliarik - 2.4.6-70Luboš Uhliarik - 2.4.6-69Luboš Uhliarik - 2.4.6-68Luboš Uhliarik - 2.4.6-67Luboš Uhliarik - 2.4.6-66Luboš Uhliarik - 2.4.6-65Luboš Uhliarik - 2.4.6-64Luboš Uhliarik - 2.4.6-63Luboš Uhliarik - 2.4.6-62Luboš Uhliarik - 2.4.6-61Luboš Uhliarik - 2.4.6-60Luboš Uhliarik - 2.4.6-59Luboš Uhliarik - 2.4.6-58Luboš Uhliarik - 2.4.6-57Luboš Uhliarik - 2.4.6-56Luboš Uhliarik - 2.4.6-55Luboš Uhliarik - 2.4.6-54Luboš Uhliarik - 2.4.6-53Luboš Uhliarik - 2.4.6-52Luboš Uhliarik - 2.4.6-51Luboš Uhliarik - 2.4.6-50Luboš Uhliarik - 2.4.6-49Luboš Uhliarik - 2.4.6-48Joe Orton - 2.4.6-47Luboš Uhliarik - 2.4.6-46Luboš Uhliarik - 2.4.6-45Joe Orton - 2.4.6-44Joe Orton - 2.4.6-43Joe Orton - 2.4.6-42Jan Kaluza - 2.4.6-41Jan Kaluza - 2.4.6-40Jan Kaluza - 2.4.6-39Jan Kaluza - 2.4.6-38Jan Kaluza - 2.4.6-37Jan Kaluza - 2.4.6-36Jan Kaluza - 2.4.6-35Jan Kaluza - 2.4.6-34Jan Kaluza - 2.4.6-33Jan Kaluza - 2.4.6-32Jan Kaluza - 2.4.6-31Jan Kaluza - 2.4.6-30Jan Kaluza - 2.4.6-29Jan Kaluza - 2.4.6-28Jan Kaluza - 2.4.6-27Jan Kaluza - 2.4.6-26Jan Kaluza - 2.4.6-25Jan Kaluza - 2.4.6-24Jan Kaluza - 2.4.6-23Jan Kaluza - 2.4.6-22Jan Kaluza - 2.4.6-21Jan Kaluza - 2.4.6-20Jan Kaluza - 2.4.6-19Jan Kaluza - 2.4.6-18Jan Kaluza - 2.4.6-17Joe Orton - 2.4.6-16Joe Orton - 2.4.6-15Daniel Mach - 2.4.6-14Joe Orton - 2.4.6-13Joe Orton - 2.4.6-12Joe Orton - 2.4.6-11Joe Orton - 2.4.6-10Daniel Mach - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Jan Kaluza - 2.4.6-6Jan Kaluza - 2.4.6-5Jan Kaluza - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9.1Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3.2Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Added Source: httpd-sl_index.html.sl.patch --> This patch removes TUV branding from the default index.html - Added Source: httpd-spec_sl_index.html.sl7.patch --> The index.html file is outside of the source tarball, so we need to patch it in the install step - Added Source: httpd.ini --> Config file for automated patch script- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted request uri-path containing "unix:"- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool concurrency issues- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Resolves: #1565491 - CVE-2017-15715 httpd: bypass with a trailing newline in the file name - Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect - Resolves: #1724879 - httpd terminates all SSL connections using an abortive shutdown - Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive - Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in mod_cache_socache can allow a remote attacker to cause a denial of service - Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in mod_session can allow a remote user to modify session data for CGI applications- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect expiry time- htpasswd: add SHA-2 crypt() support (#1486889)- Resolves: #1630886 - scriptlet can fail if hostname is not installed - Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in mod_authnz_ldap when using too small Accept-Language values - Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after failure in reading the HTTP request - Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch directive - Resolves: #1633152 - mod_session missing apr-util-openssl - Resolves: #1649470 - httpd response contains garbage in Content-Type header - Resolves: #1724034 - Unexpected OCSP in proxy SSL connection- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in mod_auth_digest - Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency- fix per-request leak of bucket brigade structure (#1583218)- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple SIGUSR1- Resolves: #1458364 - RMM list corruption in ldap module results in server hang- Resolves: #1493181 - RFE: mod_ssl: allow sending multiple CA names which differ only in case- Resolves: #1556761 - mod_proxy_wstunned config needs the default port number- Resolves: #1548501 - Make OCSP more configurable (like CRL)- Resolves: #1523536 - Backport Apache BZ#59230 mod_proxy_express uses db after close- Resolves: #1533793 - Use Variable with mod_authnz_ldap- don't terminate connections during graceful stop/restart (#1557785)- Related: #1288395 - httpd segfault when logrotate invoked- Resolves: #1274890 - mod_ssl config: tighten defaults- Resolves: #1506392 - Backport: SSLSessionTickets directive support- Resolves: #1440590 - Need an option to disable UTF8-conversion of certificate DN- Resolves: #1464406 - Apache consumes too much memory for CGI output- Resolves: #1448892 - Cannot override LD_LIBARY_PATH in Apache HTTPD using SetEnv or PassEnv. Needs documentation.- Resolves: #1430640 - "ProxyAddHeaders Off" does not become effective when it's defined outside setting- Resolves: #1499253 - ProxyRemote with HTTPS backend sends requests with absoluteURI instead of abs_path- Resolves: #1288395 - httpd segfault when logrotate invoked- Resolves: #1368491 - mod_authz_dbd segfaults when AuthzDBDQuery missing- Resolves: #1467402 - rotatelogs: creation of zombie processes when -p is used- Resolves: #1493065 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw() authentication bypass - Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference - Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread - Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread - Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection in mod_auth_digest- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1445885 - define _RH_HAS_HTTPPROTOCOLOPTIONS- Resolves: #1442872 - apache user is not created during httpd installation when apache group already exist with GID other than 48- Related: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- Resolves: #1397241 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Related: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1378946 - Backport of apache bug 55910: Continuation lines are broken during buffer resize- Resolves: #1364604 - Upstream Bug 56925 - ErrorDocument directive misbehaves with mod_proxy_http and mod_proxy_ajp- Resolves: #1324416 - Error 404 when switching language in HTML manual more than once- Resolves: #1353740 - Backport Apache PR58118 to fix mod_proxy_fcgi spamming non-errors: AH01075: Error dispatching request to : (passing brigade to output filters)- Resolves: #1371876 - Apache httpd returns "200 OK" for a request exceeding LimitRequestBody when enabling mod_ext_filter- Resolves: #1372692 - Apache httpd does not log status code "413" in access_log when exceeding LimitRequestBody- Resolves: #1376835 - httpd with worker/event mpm segfaults after multiple successive graceful reloads- Resolves: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1396197 - Backport: mod_proxy_wstunnel - AH02447: err/hup on backconn- Resolves: #1348019 - mod_proxy: Fix a race condition that caused a failed worker to be retried before the retry period is over- Resolves: #1389535 - Segmentation fault in SSL_renegotiate- Resolves: #1406184 - stapling_renew_response: abort early (before apr_uri_parse) if ocspuri is empty- prefork: fix delay completing graceful restart (#1327624) - mod_ldap: fix authz regression, failing to rebind (#1415257)- Resolves: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- RFE: run mod_rewrite external mapping program as non-root (#1316900)- add security fix for CVE-2016-5387- add 451 (Unavailable For Legal Reasons) response status-code (#1343582)- mod_cache: treat cache as valid with changed Expires in 304 (#1331341)- mod_cache: merge r->err_headers_out into r->headers when the response is cached for the first time (#1264989) - mod_ssl: Do not send SSL warning when SNI hostname is not found as per RFC 6066 (#1298148) - mod_proxy_fcgi: Ignore body data from backend for 304 responses (#1263038) - fix apache user creation when apache group already exists (#1299889) - fix apache user creation when USERGROUPS_ENAB is set to 'no' (#1288757) - mod_proxy: fix slow response time for reponses with error status code when using ProxyErrorOverride (#1283653) - mod_ldap: Respect LDAPConnectionPoolTTL for authn connections (#1300149) - mod_ssl: use "localhost" in the dummy SSL cert for long FQDNs (#1240495) - rotatelogs: improve support for localtime (#1244545) - ab: fix read failure when targeting SSL server (#1255331) - mod_log_debug: fix LogMessage example in documentation (#1279465) - mod_authz_dbd, mod_authn_dbd, mod_session_dbd, mod_rewrite: Fix lifetime of DB lookup entries independently of the selected DB engine (#1287844) - mod_ssl: fix hardware crypto support with custom DH parms (#1291865) - mod_proxy_fcgi: fix SCRIPT_FILENAME when a balancer is used (#1302797)- mod_dav: follow up fix for previous commit (#1263975)- mod_dav: treat dav_resource uri as escaped (#1255480)- mod_ssl: add support for User Principal Name in SSLUserName (#1242503)- core: fix chunk header parsing defect (CVE-2015-3183) - core: replace of ap_some_auth_required with ap_some_authn_required and ap_force_authn hook (CVE-2015-3185)- Revert fix for #1162152, it is not needed in RHEL7 - mod_proxy_ajp: fix settings ProxyPass parameters for AJP backends (#1242416)- mod_remoteip: correct the trusted proxy match test (#1179306) - mod_dav: send complete response when resource is created (#1235383) - apachectl: correct the apachectl status man page (#1231924)- mod_proxy_fcgi: honor Timeout / ProxyTimeout (#1222328) - do not show all vhosts twice in httpd -D DUMP_VHOSTS output (#1225820) - fix -D[efined] or [d] variables lifetime accross restarts (#1227219) - mod_ssl: do not send NPN extension with not configured (#1226015)- mod_authz_dbm: fix crash when using "Require dbm-file-group" (#1221575)- mod_authn_dbd: fix use-after-free bug with postgresql (#1188779) - mod_remoteip: correct the trusted proxy match test (#1179306) - mod_status: honor remote_ip as documented (#1169081) - mod_deflate: fix decompression of files larger than 4GB (#1170214) - core: improve error message for inaccessible DocumentRoot (#1170220) - ab: try all addresses instead of failing on first one when not available (#1125276) - mod_proxy_wstunnel: add support for SSL (#1180745) - mod_proxy_wstunnel: load this module by default (#1180745) - mod_rewrite: add support for WebSockets (#1180745) - mod_rewrite: do not search for directory if a URL will be rewritten (#1210091) - mod_ssl: Fix SSL_CLIENT_VERIFY value when optional_no_ca and SSLSessionCache are used and SSL session is resumed (#1170206) - mod_ssl: fix memory leak on httpd reloads (#1181690) - mod_ssl: use SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA (#1118476) - mod_cgi: return error code 408 on timeout (#1162152) - mod_dav_fs: set default value of DAVLockDB (#1176449) - add Documentation= to the httpd.service and htcacheclean.service (#1184118) - do not display "bomb" icon for files ending with "core" (#1170215) - add missing Reason-Phrase in HTTP response headers (#1162159) - fix BuildRequires to require openssl-devel >= 1:1.0.1e-37 (#1160625) - apachectl: ignore HTTPD variable from sysconfig (#1214401) - apachectl: fix "graceful" documentation (#1214398) - apachectl: fix "graceful" behaviour when httpd is not running (#1214430)- mod_proxy_fcgi: determine if FCGI_CONN_CLOSE should be enabled instead of hardcoding it (#1168050) - mod_proxy: support Unix Domain Sockets (#1168081)- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581)- rebuild against proper version of OpenSSL (#1080125)- set vstring based on /etc/os-release (#1114123)- fix the dependency on openssl-libs to match the fix for #1080125- allow 'es to be seen under virtual hosts (#1131847)- do not use hardcoded curve for ECDHE suites (#1080125)- allow reverse-proxy to be set via SetHandler (#1136290)- fix possible crash in SIGINT handling (#1131006)- ab: fix integer overflow when printing stats with lot of requests (#1092420)- add pre_htaccess so mpm-itk can be build as separate module (#1059143)- mod_ssl: prefer larger keys and support up to 8192-bit keys (#1073078)- fix build on ppc64le by using configure macro (#1125545) - compile httpd with -O3 on ppc64le (#1123490) - mod_rewrite: expose CONN_REMOTE_ADDR (#1060536)- mod_cgid: add security fix for CVE-2014-0231 (#1120608) - mod_proxy: add security fix for CVE-2014-0117 (#1120608) - mod_deflate: add security fix for CVE-2014-0118 (#1120608) - mod_status: add security fix for CVE-2014-0226 (#1120608) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120608)- mod_dav: add security fix for CVE-2013-6438 (#1077907) - mod_log_config: add security fix for CVE-2014-0098 (#1077907)- mod_ssl: improve DH temp key handling (#1057687)- mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1071276)- Mass rebuild 2014-01-24- mod_ssl: sanity-check use of "SSLCompression" (#1036666) - mod_proxy_http: fix brigade memory usage (#1040447)- rebuild- build with -O3 on ppc64 (#1051066)- mod_dav: fix locktoken handling (#1004046)- Mass rebuild 2013-12-27- use unambiguous httpd-mmn (#1029360)- mod_ssl: allow SSLEngine to override Listen-based default (#1023168)- systemd: Use {MAINPID} notation in service file (#969972)- systemd: send SIGWINCH signal without httpd -k in ExecStop (#969972)- expand macros in macros.httpd (#1011393)- fix "LDAPReferrals off" to really disable LDAP Referrals- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- restore "ServerTokens Full-Release" support (#811714)- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- rebuild- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.6-97.sl7_9.12.4.6-97.sl7_9.101-ldap.confmod_authnz_ldap.somod_ldap.so/etc/httpd/conf.modules.d//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericcpioxz9x86_64-redhat-linux-gnu?7zXZ !XۢZ] crv(vX0RR7KzodvWzUp U} 1c>KQ5|%e 7T=­C&e .""?s^kBƣ`='_ ]i" Z[osNH6ro8HЪ~t7I]r} H{lߺ6{k#MX2@|@;FXW(%,EyW3~.(XCWU k2>Eh#X|d׽L>|"zP'ҍ+4yj\䢥M'.I-Q9_`ЪL;AWfؓ٬֪f0pb%& 3õO @w1??|ohX-A)0߭O5 1IȋrRNIQqРi*'tZVJJʌ<#o 6aes0;q foCXx4 K{Њ+r]A oTc@b;5oU,]wUl tBlAE{d+Y O4|/T|lXv8 2=C=0nQe꿣;x]uɱ 0 u4*. -bp!"wQgb4B=0a`knLJ`< fplcSLᅠ /W"G93Nw Մ)/Fh:Φv1x 0LQ4WhK( cXA&—Io FјF>h|~&7h ED2Q ^hE'}Kelc|*vr Q/Jh6$^ t^*[^>|Hb/8M.!YIp{`'_Vd `1wfܾSPF&Z2͓ /MRoM3!e0z2,K -4uR=ћa%9GPF_ 9 SxCLyS:N\N Q5fӨa07r%laO[`s"gCJK)+߰D]Ebӡ94ޱiѰm?j~szD.<Z*E$Fm:q3뉩w4Qޗj+SNM:C_um,Ğ=]Dy:8kmŪdS]bN~Xq=!W\z%aU/ĵA^ߖǥ `p@K[ iȅ{gо>WG:y= JWʴBݕ9ŞGd躲U&+3>ϕl]]OSAuGI;mͳ1xHG&ÜaSvר<|>?Uceڠ@.cQ\ p o5yM }&x]L{%qz7V+4qoFRd薼@ _"^1(:S?ë:^)f'}!:Ӡ>ho,;BA8+WB-t=FrUr3/c&>x+K. #.XI [:1K8Ṭ6e/m6u)j y@^15;Q WqUFoM|O&TՕ4O [rҞRMhd "; %NBEĮ&"lC Oba u#u\|@w75ާ/)(L&09 ,u8< iWJ BIGXM !HIv}<`ciB?̦p462hQ Fxy:k9hنxĖ?=8`#]Mfwnǿݛ9!dqnnCb(TV܂$*4,%jU*6Is3sŞ[<,(d;[?>*ih.sa43Bg,@S͡9yK֐YXM!&&C@Spǜq3V͐ 9 Cuh]̴ ɷ:u]+Btdj73yM:ۨ)_T˂&+Omb;e{s =jRCI0W`!:^@;?V5y)7!9U:,gB?c~1@B[!KbK@nY,ċMcܩ0!϶R{& CxdP1@VV0;`v^bM9Nl/ #y?n NwuVm5Z/1?|Ӂ(>6 ,_0d^g5C=Dvں Az ^߰mÍ@B9  !Yw%N^sN"ȋxO' 0D{n+x+:᭲mevXH>G>S+E0MltXx['Y>UA<##+U}nmΕxJm\l \F(3YQ8'k7a_iT*B" .h:h#/m&t;acKNu[I;,׬lJUtQ4oa9gG!:¢hw7_u }$<Şu$vW=W -0Қ\/pgE)a?9{`I\Gf鷅xn,/%1aƠI7EYĚg_vtroO$LZI6aҲv~ϑcst'I\^g;oT%@_5yH 8Kઙj)$O2zAve8ڔ1+7tx{!)`{ݑ,a|UXE ɒP-8a\e JϦ͈k~+' ~uBWs>X^bsƒ/9CdtT?bz .:MZFO'ݝXOJBp<;ivyb .l凖!RAee;2V KSspcȤ.݄Z,s'%QLɝY&\U2pղA|f$",T fO#TƏQJp&ħ m>g]uV== /Y\z?h|l4Ϟx'LJz%~X$4ZD4ʵ 'le"C"6Ѻ›lIXu3;zgdd\r96:0Ul,ڹ8IT meDŞX6OGb(.w'l يj t|OFBy/[ec҃zl.}IGHr^AX֒1CPOZ@S! QA"NɅmx*MщʴCEJcjhRW_L0;9y|~oy|Rq8,>1zd4vʱSAmϴI3M _xw(Nj}aNvdgB/Yd;+ ; _ <9ʣywvI!O؍)>8?|kx;~ǃ`-B7f|cX"uut'ɛ;"u[av4#.DX R nzH"%Io]L!;9 `й%ʳ7Xs/5uxpP0^HgPG;7rǀ709Q F _{u5,K#%/*7LzMLtn>^]ym9dv}=ftx\L*]qq>mO$6ips"4uw/*G*i*BP|o|0(Z:6$)IzGc}a)nT&1(YL>Sۅl͝ A1T!lh%k1n4-ҷ)Vg:MP2rkIx!pw XDm\2 ׁ}ȯu\vqN0]3 (M0)tw`Ū8h]vӈSj@h{Jd D|9O]t*ns>USٱakgٵLa<(YķctbC;є3Cru8p,$x]I/a=+p ,2?*G{Ȇuq+ iaf`\k`cXV0d.~TE+_ѳ_ONu_?iFZݙ*氫/bB{n,=A,@NCZt+\ (&vxpZN~2}Z }:u_}HIeJa HYy&.vm.x_>4E@LhB}Ѝ/rkaPEal“η5M6qń)_{}kakV lq3o`K0G,\ 4e*/l01sO *:y8)_2k2%s7@.=d3앾ɢ4A$п $-&iR1 &V1mGCs'j W@Qw2׆!(Tȝ #xb̀_= ̩d%jKW |mcpiT7a8؏5j;5:jHmL\Ҳtʘ%{J~r&g/KӁDXUja)?)x*=}=O%G0)ܧ[fPg>Шofe ="o8v495a;~iXyxvko 3tY|K~&XA'_`^ħ18FM&"Xp|5ɝ_.)a6Xy߲6m @_f骸&zش+qxh )*7'Erz(ꄘr14k{ kE$y?bcāhH*?LL;e{9ʛNsZkvdMRLiB& a;XBsv؈>;w!fr4/iЩn$9cG PLΕcq3~KF@*ei :P$ב{AfU Y'54OwdЧUiAH$!Cj Db|,{?Q $Peҁdvd"(fkh(.5Րݿ3OOv`H\q<+NU+NDa:N ӧ`{U.~kmXЉx*$o2 8dži ]KN\y:t)g6@Hd qObn4ng2n\&yE "Ȳۖ!ؙ6󑻢S6ts.4Ɓwܛt:`gl"+h]XcN _#'PliK:J##__n^O`#ݼ8:0Kڲ(2ZkoIcEJ$O'C(z,L]}Ngw 5~ jAFGۨ 5s]`sr.⣃&&vϩ&4;pRj" ]13YۊAj3//G]0*Fhi2ht_.ܚ,k,7CaZʕhjXoJ>|_KIy#{YH\[43]؎Asx,6iIדoG-QѶ%/?ymUgT-n<p KMި(:ch$W+,Fg?r@1,6`oҞYmB7Y޼G Q[ȎY3Cþm8y2`AriNu8VMՋ:%a;%ԲwZ:kݭ*p*Ks}ym=it9l̫\h8AMo&,#1OOSB!c=$-YSzdAI%+-iPBNzƷ*9%-%k&LPm|&̏P|Y{uu,t%S<Dn<шIXyn0}%Cȏ5nCkWeqS8 rX<(Vzό qQrb&ʶML+qhk#f!9APسrp0e¼c-xFtKOx(¦s/~Eg;̣@^wvbE ܑh }b1Ȁ$HJE-@`׃KہJ:;$>YFh@:rlñ5!US(o^euxI:F0<ujUw [MoT{C8_FRxo2mLO+/j&M52e TR;VCQPcY5)ǪrY@4ׅ׊BFL>dRig7dAvHs;3j.Wߵ(o޲iJRejlߩD 8 Ƈ&p34LxaZg&k Lco#[6j/p{*]& Bh#nU%HV2jDOj ޷<x3\96u'Oa=av kɻ7kfoGlc*˭|6vuM]g?)d0cYFY(K|j_Ϗ Xm:/Mf4jBؠ:TN0d0Qв;)^\DO6ižE͡cw>F2yk Eb#^zNr]RR[wla*mt.v;h{4=CG| s%? 3t;ulxZfp3 VO4Rإ Ϡ=?8MQ-Wh"y,yQޮDv'֦cD(-- 5v9+ "Qn (+#ߑ[X&4Jz6$̿Ng(PCh>_onT4-R?E8wf>IwUe qO3n+Y'A9>+g7\O;֕{=SiX7QSе]]CFq~dމ„]/b4ɢʆ[R' ce]fx,߯:wT_l@qwêrV"ѩban䐻Ly,c:7Z 1Ur`TT =qgoTjfLLi:#O2eF9 1pQx"mR?DWyWyh,Hq ο#ZrS'lQG\ .;3@Nb% ̯ 9؏ŵArČʀ?2y J뫂RC:&͠Ō^R@=@ȅ2z&* wO(1 wi247uU?uAϚ"d%e[ğTE|\2ЂYʣ ;㑋,,U)%Z6%΁쒦Jm|NlRHt yNލ6z~|HBY^4؈½޵P;PwoN ÈqPtYQċSHtm.lJ3{Ec X8+h͔#n)>ŢpaQqjdB_.dV/&LQ- gZ77Dή\RJ iR$=-a:cuBk.$9GVφ1T!*}/çhāv=O3g a"Z ~ἈZj!t3uc㮧{˵ZI<! ؔ(v<fOcmSeġ|䆂tyfw ;UIRᇢyc_Ng3l$œmzMHnZsI c"Z#D_BDVԿNľ QdE#:H[| JL;UJ\u7-+spsWdb{!͋UFo9X#dAeXIb|7n @x_r'f`N>#50/ XiPDHJsɪ.E}t ŋW׷yb!xz;?@hH LKit5?E;j R|]Sp^E=[4f (ʾvXEsui,̟O|>[U,\%IqܬeɅm}7ofM@Ot<,/ol݀Q2&9CxȎ"l[6*!9 V %*0_޷ڐ ib:G>HeN2jaE;ax(e{zߵ[S鶗;Čyf[L2 4|BϹ#5zAAD͇6I_XR@:UFm3p:2t芭/n s$3~NjX%̶iŶ?*[U2)bRƶ& s٘#Vj?+FbV/;Rbx Qꕂne1 HD惣O>A X!oUզ8z O: Iy/ ~XD6|I|Bm7փ`(ھ[PW/T _S9mK[(XL3\ANt%^SӢFMyseOቌFXCj͍ ]-}_vt I&x~hO@1$2<xr=\mG6x}$_z";Pb7:2NWDj~ǚFh~bO_0џu'xfPڡH'l?% bEi]`~m#E9o$>顳ljEF +NL +en/>{ӏxe9zQ3>:c'q/.<1X12[A@o?0~McVY,$]]B4wǏo+s0uĜZI\K_VkLb2%257'1s~()@`ƞa,W!.)Ta}n9k !Sټ`%A.'؍w()D^F/}p*I0AkM#`aN w,ܮrv%7 t2كWX|)2Iݳ2b]4I3QK+6HR+oJΈ돸6b`Taxkr u F;'|YZ/*yIȷfa fDZ0,m?9CgϜ~Z&!#:.< Jʙ)Ĝ鶣GJ;$} H[5IOhl$^b5*wVPyy%ހ{po=>fä{1Q#]3o{c\Q3tmݡ?aTVURg0ᢰ=Av=ܸ=I.D-P󩱌O;1|pi*dS26y\H|eomG]>W7C5 f$8^UDqr*;F61زq|]QVf #<&s]r,}E*tH=65c `8`01%r $%nma~`GN0^s36j WM \5~9r+D*ͣ,sGLG@Ǫ_kcI"fQ`eeZ{i[]dgڜhLXpP]/4FW-RVu!dzxN\-L0'ABy-$f2||hęvjNV9Weq箻ɉ~Лb@?>/BjW:$2 kLSADO%یM0~HMoXPI@ʟ^,&,.?i*ͷ^0=GgCmey?TSݛ3|˒}RҔClnO"Nhif˝_0&+ü07spcu_>J2v9",&a&oh3RTCws=Vn!{iJ!Z﷤de]w-񎮺ϧgͽmGOܕ%Oŕt،rKM O4##Z_А/Ul{ c=EǑE TznV+fFr:gYN7sfV5 wj:zyia3Sr<"nZ-b;EKt+@5}P򻀙,aK< \^yZΏY)#qe` n a.T=DDg ;R<43ǣ7*41D[yJ!dm'Bb?K̅B"HԜm> yx|dN6 9肄*2|:ڗynB0i|Yt^Qg k=oVyIp}UZZuwa28;3S#t\Sh(Ez#eVKD $66\ժ<?4+Uy\װwX0W\m lʙU7R Ǻ- U A#kxCu0'_R.OgOB=<𙫱1CU"Rל L0DHv; آV*D]xx7(g $fOFv&_tְd7Ӑg7VqN|ͼ~%{Ⱦ̈U>O:Ȕ zdega!]?~@.4XB9tYDwMT;xe2{~q[XP8/ĝv9˚}U8om@KL1XUX1<R &/ 5 K'%kA@H%C5 R%g;=|X)ps2n&2V9 l:}Pȩ ܙjz=8…;W\'wu߂<Ӏ9|3GnVV]|DE+e3#L{GbV( f_ lO0fm2EyU\.=͞fwjX&sxUY=H(B?s]'::`LOIewssxޑluYg6] :x) &߬}M]ݧ44NgY] 3"S6pCfg&ЎKle7lY4G8,5: /o@0t^§rXr,xMed%~ e!奎R"`UAk{k3/g}cH[TȵL2v/H Hڠx]OޯS."aMuCSxnt)mɓfѢj?߉P r'ϳej֭.Wz'oCwYJIzE-"|=o8da'A2ih#Ƣ>? FpƳوyey, d!sM!\Pv"YF تJ"V!WK1}h7 GϽ70⫤R֔֒<H8Ќ QDcmLEoN0Ք)fA=MnCcs? ?Dݟ%e{W(ngI0UU凙 FT/Z#%[wcj>τ4Y&W1MȪs L-܋5놿y0tPֵӹ~ RqJ 3ٍ!$5:JWAROA + [5@,˨&ۼJܓ_LJq6'^deNY&yǺ!cX/6.^_M'ۧ/ЁK=o8ȿNA_}UGVȗu y}wtġt,M܋zUZyi_QK5t,ͩ *f3jv&2@'®=)g+QçUw< 74wJ6? FӍ$\c̳ɋ'*ꖄ& O5{UwUNA6jQ"-"?&F6t;*oeU -lg9yeE 'So`p:Ru`k,g嵔V6 u:v@unmmnjV'j+{ei] kƥXtTR ٺE@R؝0Is)\jqWu^~@AKU)n2R|B%M,"\ !L>+mۢH5L(a4͔;Pp]~ b [/kjm_IXlfI䫦m?ZV*)M~/fOtt̩ ra^el,K_d&gxCX:>Ph:?S(NliH՞fNz,?LB=8{+ Nm;b*XlFӛ0'Mxx@lnӟm c|^l/>Wa )YTͪd_蔿Cc^NI ڤ]ss7`P@8JfFd&@:[3m^oll;d O`&@y[X #ʙX(2{9Ƕd5Yw[(q~ m[fw~<\9:Rۡ67șɃKZ ^S'u= u^뒗;_>V@*,urݒtV B)\ʺn; b1c;u{T[l=q,7nx+m{RgWOK7_X W l9[H2@w\\4iP4Q6>ȷ:l:zStf˳@[/&Q .,)ݪ+|4KFK{)?m–- A?D)ʸԚ@a͢-Ap=fbF4&3\IF  @~RGK X^'7@;fbLDQBkVkq $4_$Dԑ("3k BI@װ(Fb:.eWz*LٛkzWPçwYlR/_KsMM@8IHɜsB)⢀+@~q%0ؾ -+[KM~Vm0}mgtɮ|h ՝Tc}"w`ӪL~leA b򁣞,8i3DU._%-YXoW6#d;GUx_(Bb7uyDk ]ԮR FrHo \mkpܒdO}]lmv^c~~d?!#yWߦg%U`G e߾ez`5{U4-͟.E$淡ª:Ў@:! _jͣ- 1pۂ@" gpf@ϴ=E %5޼iC :;M ; 3muO*\O@AU;*mW;Uqch.7'Bb95lSܲ-|(uRwjڭ88]WƐҢ(Bgs1 &p`6՘)tn^Y&k s ۭ ,S}GsBv>#oܬ ?qe7U/XrIZYwZ4 Wybk͜QJ+v(BM@l|j\ޭ&WU zjc7|侜  sjhs.۷e)iz&?v–.& x荸N$%I^ @d?@l׀fm!JN.ȋ9 taeN_{K;nU5.S#{% =qwPjJqdz2 z:bU& 5"wKԑ%)ϿN*2TPC֥*{9a"R,%'eۗp+>~5#+r5x4zC,AB5{.# K)!C.Zww21/P&v[^%wqkk~̢8zY" <ۼ3 }BZ8ob^8:'H)ʥc_ YE5ycO5= J0=.+B0D~j[7\u-׷.YLV>ovM0 –AKV^>9VM3fMO=EĨUx0Rx}BD>Cfr}c6߀Bt3o|g燐_<'1ؑT(/FbB+I̖ۡ Jx eOMs'i; {zw( M Kb>2< %@PBrqΧ$>4~Wg" G\ R *}I} 7nGf%Gv*5Te~BKs"U]g -/k8>wdA:8mIqfB. =ӗӜ|rF9*NT#U:3r֨`jcx<]nyy"/(N:%ZEq(1а|ȍ3"UecR(h]{AYz3"C5pduAm$ HZ YxOܹ.{)!ZtJ83o#g,\Pc43BE$J7Vqq.ˑ5 `7X i_kBA4Nߖys}2LߌW}$]SN_&O4ơ\R)}㡯Jَx!KtS2h,<2v:C<&Di N%V7ronZz@zk\46f%42;VENR; ZOu3$#R9:;K  /Xap\FMeB #Ê*%V^0SI];>1Hu+b2F$׭<)C&_z8s]~2xÂ\|63l"A5A(G?Yx4n?em;6sJ/?$S#o*JEND%ɲzB"u^Z |jz`BRW,b!YLræ1gBW:N٪ք؎26k2{ζ͸ڕiIWCt&(g snsw dCkj [%7ޣ|]lײE@3kç o$kS;ZCMl'ȗfy|T):lb܊0:RŞ t7~<6n貋uw_yl3=| iY%]b)3 {(K4(Eˍ&-+ȂJ (B{XUk?Kڨb+Q/ji>Up!-gn>Qq}rQ&V Ci8nv-o|.BO7~=GډҳO$c xuA?ߪo 'JVuI1+RgEv, 1d%\(oJwfЏgſe;y(.ɋ>΅yVvݝ$x;Tl /ofzS%UuaK ~KtwYD\ dSǸ6W@(ϮBuBL 7kze&odRq-8N,3" (4IwpD ĭx=(V_BL_:s#7+*bIѴmKBaNI5ّzx@KHtŶ;;Het_uCõv -̵*h `|mwŸIc ޳$=8Õ&?lh!=yTxƨ/z'˂ѷ20yŀ1EGHn a>7;;aKt!sov @,%8)/}p=52X@B ,J:R2tJnDrjs7OO!dșA42w39_B֌B٥kk^<ӝEo(cxRS6F%iM~n /7Wc4̤~6X+7 ;zVRk F}:=pqBDfD&?w8mu,_]+عT4U.4No7# D65%rϕ $*UW5(OMcdu’S32$~4!'(cb%^PX3CLC yS;3kۦɚ´|G?Ф0"v1_5ڟ:/1 "eN;N`A-Z.m*!##W>I5,NMF^|жğvp"&ۜ5L;yJ6M H}̳+fi~OopgL&d54V )t>QCy^ibTW{c꧘kt$+z`#??l}{lzh^o8ןaƱ< ug;NZ"$A')^鿮^hWF ^4^Hlqn}V =>ȚRAh J_i_rv@F&P\:rV`Vd)DԚ/kbH+Ù5U٧=Njm/m WWwꟵu~/NkRԎgQ=iƠCa [ ~\q8f,?k-$)8 $Sؾo LJj}!.,l|d;u7/mQrva[*T&}\Q$nEz}{eHryٳ89P"|IäaT/zmii{X^}ҰhyM1H|ibԆ+3!m:;& sE7o@uI9O<1"`OBӕTᗫb~IQ=tzCPЦ0̑|jhxrK(/VN6#$ $3G SDVa߭ȒvΓvZJ2#<)t)9ⱶk%6$XgtK*ij/ lBIE;f09euEs|[,9߲.~aMʰ ưȮ9_0bkʣaGvE;+~z-AZ۵#YڱeZ'Q7 =j:iGD5ua,}}LJ1V/: sݬT< I% %UUma֞z`[O#[ZJm)"nk?H1h1f:&ITedMNʠǬSONs;= idR#J,u)COn:RjO c}@iիgJ>gAlE$~bJK'nX+ =2k{n2%@1fYn:ĝ#0.%Wtjl"]aAl _',*\@ƵR93J*g&6 a/&mmab=Fn/E?eV: {HqހXi3VΦ\Od%z6oLw Fj_hA eRD&~*M sPX)%<CG3 :(ީ2߫Gc]=+txb|I~E@DԿF?SDYoSX`FNέ^=q74Κ; z{T^.*+$tu|$d ʖ5;T-ZLUQ`jkh !;n'[^=bw)&m|ܹ6+-z& /2R]:5>a5z)0~Uj^M8|e۔5[/D鱅azXt89eO1ʨlxan ^"c]]5N#(>;%T1@?p"loR Ul|p h =l>~g4CʻBwsCO6qC2tϧGPn뭋iCCz8ҫޅ# ʫHtZXt#УTVpXRU댣ZbQnTdoi!`JP h#pŲj&8}'c`ۺ .E#zrA`KU#*ٜ[_Dp=D^'e nҚ1?Y0[MA!Yxk]!:\I]y1 Q*7u>䧴Iq&>+P^(x&D䑖w p2O>\MF )Df`KQ;D%IM O؋|$+@ A:w+ht (v7&G5sM|+7<i%t+k(9j DX#8YēCz ƶ8,/ (<^?aw寕1l-7U\BR56t!^$O>V4b_AdJ|Chw0`KzKP% Bgm6;)^Iև.t2>l[F\y^Dp'9 (C7?Vٸ=(ԧ b4BB`KHZ|C/.oLw?KS) f$H_CPa9Fs~mn5B\F ry[n-i>oXa1hGwߢ8EZD|jC$KxLq}fjy_ č?3spq)IAﮍF2dz:c4ɉE=2hXQPqT hӍ6^N}CԨ Y{Ml/u7xgAIėFSSޜs ˰ci>&2岘4O3үzG. Es,Y$̤8ҬVB RZ8bs0t\0`#wL#v]\=D8ȋiDZ(7MYC4O~uV+E߸q+!>b?dOoJTaygrW=Vޚ^*ˀ32ËC0c6- W5B0[y9&y~D >`lAߏ@{PS@.~V)[  Ǐ1ZuH&,5Ϛnћ8X]"p"H39hV6.  or8, XIT#n(O%H%Է3mi O)Jݓ)P]3rp+yAxSdhATo.܃+Ê="Y~F:_Z$P~$fO=ΕY.?mY dNf:88BC27Jz׮O.tK쮍z]pktkq3"@ 4Ca˳%Dh<A#do.@汈%2&]4S.)!oPA?2-sgf6 :BzTlMAp^u?Lx+ѩ3;uz3 p8Pit Cmt [}3X 6ؤsX0&0;\N*^BI#o3H`OL߻"ļfs}W[~%; G`|[c6Wsw1Y4{o X37JN ;*GZhsXe LrD)Gģ tdF+q$2?;Z%5G Y_Y,f/e4 ~^4Ct^DabenEr,珁/gŃ0egg]]GF2 tAS̫88vdAgT1ܐQ@KډHڿRxI^7  9nXtQc^_/\SJ'__Y1%RTap<V*K{ByuMtYG?-< f*)Fi荘x€S **Y\9݈q Αٹ~e`0kx{7 e^r YeB 2Wkmh['ZJBSh5U#5.w01eĄt~kޑ=/,6}|Aě{3OW MMRwVy.PBL@ Cـ4G&9MYm3ۥmF?V:ȡ";I] "OҌ~WaLa6'WjKxN c:搵@h4:n:[B?PEJ?I&(`Iut&:ˈ~CϬŢ4xa ˦ FHTC0|rY,ʁš\2 D_aqށMA&[vgB>|ToD[LޯI'eQ61!]U' {{'^,9`\\4IDSwVBX{8[4>"'~pbju % ]niYqLappPJyyn\nMBq4R]FpOE\|7nhC> 5\pKhذPE+X~׾)qKF{ 7bU Z11z~}U@klj(p_l@@%/) ;$/\djj;+,Hzʨy0_BaS5O!*a$o3ߥrnrYG}cte~B`jAP+$"+E0hdv]TdbWίo,1v}_Q9^EDc}P޺'̱w[#ɏѮM8ͳKeXil$'S,v!p"t>æQR冀}z$XC3yyo^,)Y&l%N  j`(ʥhǥ h @:1yG-T%YO7,F.g=kM4#rY[~?U1 e`:'(&wI'g5p!6G$)FG)r҆67ڛCΨb2ŀFN.;[8$ͥ~V:ƨ_#jO6 luq9M2o};_Ų䞎qMɬ9*󧫥Ls~rmG5gZh 7$s*P%$Ia,*d! T6;+grtN@VKi`Gd.l2Wb¿,eaq<{0FG߹N6YNZ;75>4IF *`iYDc>X%Q% d>!SR$Q3;cq7Tl5}kV5tp $|Q-@+|qbe)#DV1-n*Wtw"#'  J@  mNɰ'[Ͳc  eNKޣϑ .;9Mu$) <\-,0jڇL=l<ȸZ 謜E %TX+jfQ^JTp*DhL;zG0D}z'ry7LBC>a!Y b3˶v72` ٠.ך1|>JWP3|8!KO?3<>@nmSP[9R;а,P}T7Uo 2o: xέ戮:2a uw=>z=IDG"/)V/%HkӈZh6qMY>ٻ.DCtg ;z$?!hH,,')B0<|  NcƦSaq▉'/1TR@q \ng`a[ǯ Iߦ{=\3m#HؕM=#gR#'I S`+˃=y^;3s.1[xU )sඅ^YO^hV>|qĽfPeCu.lU1r^Km={ *‘tFljH^,f!z-oB͝t!*:W{ݡIU6׍>?c]/&ҡ`ŅNJ&*(usȼd fQT>)!}lBw -rKWNŒݢ[}V8* š]M (Aysq@Q?tB[u./ZB̙iP+r v!h`YXpˀ]šam| NwrgFD\\>t ݦZȔۓ.xngѻ=Є%h /z-61t@$ !$q,GWȭzU ^?l{R6;aύt%QM{qXZ.)Wgx$ڼK( v,\qx厹=p~uA*i@F9HMMab?UYL\c7Dp!WflT 1ՍAi,۱MX{| PUT;=/sG'I2S ,`2OTdWHF$f ?A 3W*P ŸeZSlM{ &pǚ&[Z A!ϧ Qc*!vΣXri`}"]T !^z.M(UT$τ oܲ}946N,p]4lPyx9bP?AQ44KzĜ(8Jm+h#)ZLf,h_^/]% .Xk-*_3.l@=J؃T]S8#7"d j!-.__{^kO D)$iaսlj77uh´rmx YH`H$OǫBaN^ yȹc>q?%8*;qBN(J6e@  *KU'-}d[tt~3,kWʗ-$e5-#_1/č/x6gFv/Nb>>O%azFԈa,cݹ'Ng0Y~8Gz}E_ C$z"v%B d1*88[՛*B{;-|P me5r3!Qbا<˅Z0֝$}QGc;-c_^P|u 㫣]${]_"hxEO 1N} .Ӎ?y3}V44A5a-{yxnZmovɶ[e.?A5h22##\;혓if s1(sǞ䚃wz"3OD!_pЯu,YND>wY]\k6۵+j1cw*SlINj {Wc=KQ#0/Ih ]1$0SbpI\B^]+:mcasm8 5E"OI "2L7R+fDxzHmrO:_l}g9k&Ƀ4xMW!í:$)`MQ<+r.;dBx5R vU| {Kq.HsͮʽjO ̭f:ӭ51j?-m+MPj"} .OVce\ $HEG@]?rՊ"{Ɲdefy)I6:@NM҅V#~Ҽ4€1F@mXSk/b\HӡCx5'ˆbN.kkIQTFye8:O!}),n43Hu`.P@l{spy/I7Xi&ƅ?US+۽mD-V4ދx̳) `7=}c4Fʡ!R`Чvk0{\T@??DPjx(JWؔb%`hSˎB2&lC^1A=؄R]g[m$Vgz̃-Ծ%Di5Edzo 1!`=|O_8v:ʾ (#i} CF:fQJKюQUpqOk0e kY|{t8:XJnUqXr@ئ™g\G;M %Uhv%έFt}x_PXOP ->p!Ҁo5ٿX(;u 7) s]>3h "+?(BzizIpLza_0oOZY҆Jqm fU| 7@['\@/O'9T@ڑnȋ= asf&EE"|T,As}f@5T\5 orRymv dGHbي:Ǒ3 IoQ#߹3tZ$asJzQQt*Gt 9 ZDD`+* z{+ p5?zl9tVIFhм]O$K6t#pSPwPϲ 1jȠ <Ӵ.0 k2*>wqM:M?^̂x.q,>PZvW}2BnO9W P <5f?kV7FI> >\teV۵df*[JU9FUOG)[;6Տ"1Ot"t'LēL9o gk$քtt:42Jɺ6Jf5JXVHa!FzT:0ͪ'@QűX&M.tPn'+.Y|Gq ;Sw Z74 2dCݰ!+IZ%MF;M~d<1QD-+Dt2Yg6θ"; >Y> 6Ao} #t{D"X ~^؏ [,$H^r,6i >ptH?38}q5+S`'ܫMP֕w':([tva2`*-8Sq>_4?,V \ʵaڥCBh[LqaD/T&YdQp _mm靽ZAU!ils\*H|׷cc⥛rfq_z.6O* rdLT HQ{|h֒R6jqש .)4%Ϫ']~T1&5ƆmU(-Wg~ϜicS4͂R LC2ㅇ/T?xsX =9u}j"I*DlGh)4'~c7z!X)E)Xcy@\`6fZ ]Bi6F^AYahUah֟*VY(w̷Y*˭B /NՔw{'o YZ