mod_ldap-2.4.6-98.sl7_9.7> H HtxHFd,!m ?*}} q(vr.kWtv0j^9%9C]93c0cb2b42af5890b1d54728cf3b945531c753d5!0ȍvfpoވFd,!m ?*}}V422赖7zrT>."Pxڛi1R>3{8?{(d   S *CIP\ b h t 7 <HWf4(z89:)GyHyIyXyYy\y]z^z4bzid{e{f{l{ {$Cmod_ldap2.4.698.sl7_9.7LDAP authentication modules for the Apache HTTP ServerThe mod_ldap and mod_authnz_ldap modules add support for LDAP authentication to the Apache HTTP Server.d+sl7.fnal.govScientific LinuxScientific LinuxASL 2.0Scientific LinuxSystem Environment/Daemonshttp://httpd.apache.org/linuxx86_64(-d+d+d+cbbbdd396fe056e8ab167abd7b2cb5145b42210bfea38452968ff02a03493fc87669a7b77133d9496ad7f9fa4daef1c7ebad7fc661ac7934f260720af3ba59a3fca91385d3388241c45033dedb1c57adf084d24065c4b3163a6b1f14aae3fa57rootrootrootrootrootroothttpd-2.4.6-98.sl7_9.7.src.rpmmod_ldapmod_ldap(x86-64)   @@@@@@@@ httpdhttpd-mmnapr-util-ldaprpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(CompressedFileNames)libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)libpthread.so.0()(64bit)rtld(GNU_HASH)rpmlib(PayloadIsXz)0:2.4.6-98.sl7_9.720120211x86644.6.0-14.0-13.0.4-15.2-14.11.3d,@d@c@b9@aaav@a^@_}^@^|@]z@]^]A\@\[+@[+@[+@[*A['[d@[d@ZZS]@Y@YeY@YY@YY@YdYp@Y{Y{Y*@YYw2Y@Y@Y@XXg@X,X,X@XƉX•@XCX@X@XXXXO@XO@XO@XO@XXWWW{@Wc@V͛@U@Uݪ@UoUȒ@UU@Un@UY@U.RT}Tto@TXTG@T2@T @TTS@SS@S@SuSǺS*@SSRUR@RRΏ@R@RkR1@RsRrF@Ri RM\@RC@Q@QQޞ@QQo@Q@QQ@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Scientific Linux Auto Patch Process Luboš Uhliarik - 2.4.6-97.7Luboš Uhliarik - 2.4.6-97.6Luboš Uhliarik - 2.4.6-97.5Luboš Uhliarik - 2.4.6-97.4Luboš Uhliarik - 2.4.6-97.3Luboš Uhliarik - 2.4.6-97.2Luboš Uhliarik - 2.4.6-97.1Lubos Uhliarik - 2.4.6-97Lubos Uhliarik - 2.4.6-95Lubos Uhliarik - 2.4.6-94Lubos Uhliarik - 2.4.6-93Joe Orton - 2.4.6-92Lubos Uhliarik - 2.4.6-91Lubos Uhliarik - 2.4.6-90Joe Orton - 2.4.6-89Luboš Uhliarik - 2.4.6-88Luboš Uhliarik - 2.4.6-87Luboš Uhliarik - 2.4.6-86Luboš Uhliarik - 2.4.6-85Luboš Uhliarik - 2.4.6-84Luboš Uhliarik - 2.4.6-83Luboš Uhliarik - 2.4.6-82Joe Orton - 2.4.6-81Luboš Uhliarik - 2.4.6-80Luboš Uhliarik - 2.4.6-79Luboš Uhliarik - 2.4.6-78Luboš Uhliarik - 2.4.6-77Luboš Uhliarik - 2.4.6-76Luboš Uhliarik - 2.4.6-75Luboš Uhliarik - 2.4.6-74Luboš Uhliarik - 2.4.6-73Luboš Uhliarik - 2.4.6-72Luboš Uhliarik - 2.4.6-71Luboš Uhliarik - 2.4.6-70Luboš Uhliarik - 2.4.6-69Luboš Uhliarik - 2.4.6-68Luboš Uhliarik - 2.4.6-67Luboš Uhliarik - 2.4.6-66Luboš Uhliarik - 2.4.6-65Luboš Uhliarik - 2.4.6-64Luboš Uhliarik - 2.4.6-63Luboš Uhliarik - 2.4.6-62Luboš Uhliarik - 2.4.6-61Luboš Uhliarik - 2.4.6-60Luboš Uhliarik - 2.4.6-59Luboš Uhliarik - 2.4.6-58Luboš Uhliarik - 2.4.6-57Luboš Uhliarik - 2.4.6-56Luboš Uhliarik - 2.4.6-55Luboš Uhliarik - 2.4.6-54Luboš Uhliarik - 2.4.6-53Luboš Uhliarik - 2.4.6-52Luboš Uhliarik - 2.4.6-51Luboš Uhliarik - 2.4.6-50Luboš Uhliarik - 2.4.6-49Luboš Uhliarik - 2.4.6-48Joe Orton - 2.4.6-47Luboš Uhliarik - 2.4.6-46Luboš Uhliarik - 2.4.6-45Joe Orton - 2.4.6-44Joe Orton - 2.4.6-43Joe Orton - 2.4.6-42Jan Kaluza - 2.4.6-41Jan Kaluza - 2.4.6-40Jan Kaluza - 2.4.6-39Jan Kaluza - 2.4.6-38Jan Kaluza - 2.4.6-37Jan Kaluza - 2.4.6-36Jan Kaluza - 2.4.6-35Jan Kaluza - 2.4.6-34Jan Kaluza - 2.4.6-33Jan Kaluza - 2.4.6-32Jan Kaluza - 2.4.6-31Jan Kaluza - 2.4.6-30Jan Kaluza - 2.4.6-29Jan Kaluza - 2.4.6-28Jan Kaluza - 2.4.6-27Jan Kaluza - 2.4.6-26Jan Kaluza - 2.4.6-25Jan Kaluza - 2.4.6-24Jan Kaluza - 2.4.6-23Jan Kaluza - 2.4.6-22Jan Kaluza - 2.4.6-21Jan Kaluza - 2.4.6-20Jan Kaluza - 2.4.6-19Jan Kaluza - 2.4.6-18Jan Kaluza - 2.4.6-17Joe Orton - 2.4.6-16Joe Orton - 2.4.6-15Daniel Mach - 2.4.6-14Joe Orton - 2.4.6-13Joe Orton - 2.4.6-12Joe Orton - 2.4.6-11Joe Orton - 2.4.6-10Daniel Mach - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Jan Kaluza - 2.4.6-6Jan Kaluza - 2.4.6-5Jan Kaluza - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9.1Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3.2Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Added Source: httpd-sl_index.html.sl.patch --> This patch removes TUV branding from the default index.html - Added Source: httpd-spec_sl_index.html.sl7.patch --> The index.html file is outside of the source tarball, so we need to patch it in the install step - Added Source: httpd.ini --> Config file for automated patch script- Resolves: #2177742 - CVE-2023-25690 httpd: HTTP request splitting with mod_rewrite and mod_proxy- Resolves: #2101997 - HEAD request with a 404 and custom ErrorPage causes corrupt and mixed-up responses- Resolves: #2065243 - CVE-2022-22720 httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier- Resolves: #2031072 - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: #2031074 - CVE-2021-39275 httpd: out-of-bounds write in ap_escape_quotes() via malicious input - Resolves: #1969226 - CVE-2021-26691 httpd: Heap overflow in mod_session- Resolves: #2035058 - CVE-2021-44790 httpd: mod_lua: possible buffer overflow when parsing multipart content- Resolves: #2015694 - proxy rewrite to unix socket fails with CVE-2021-40438 fix- Resolves: #2011729 - CVE-2021-40438 httpd: mod_proxy: SSRF via a crafted request uri-path containing "unix:"- Resolves: #1852350 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1785100 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1862499 - Intermittent Segfault in Apache httpd due to pool concurrency issues- Resolves: #1823262 - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Resolves: #1565491 - CVE-2017-15715 httpd: bypass with a trailing newline in the file name - Resolves: #1747283 - CVE-2019-10098 httpd: mod_rewrite potential open redirect - Resolves: #1724879 - httpd terminates all SSL connections using an abortive shutdown - Resolves: #1715981 - Backport of SessionExpiryUpdateInterval directive - Resolves: #1565457 - CVE-2018-1303 httpd: Out of bounds read in mod_cache_socache can allow a remote attacker to cause a denial of service - Resolves: #1566531 - CVE-2018-1283 httpd: Improper handling of headers in mod_session can allow a remote user to modify session data for CGI applications- Resolves: #1677496 - CVE-2018-17199 httpd: mod_session_cookie does not respect expiry time- htpasswd: add SHA-2 crypt() support (#1486889)- Resolves: #1630886 - scriptlet can fail if hostname is not installed - Resolves: #1565465 - CVE-2017-15710 httpd: Out of bound write in mod_authnz_ldap when using too small Accept-Language values - Resolves: #1568298 - CVE-2018-1301 httpd: Out of bounds access after failure in reading the HTTP request - Resolves: #1673457 - Apache child process crashes because ScriptAliasMatch directive - Resolves: #1633152 - mod_session missing apr-util-openssl - Resolves: #1649470 - httpd response contains garbage in Content-Type header - Resolves: #1724034 - Unexpected OCSP in proxy SSL connection- Resolves: #1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in mod_auth_digest - Resolves: #1696141 - CVE-2019-0217 httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696096 - CVE-2019-0220 httpd: URL normalization inconsistency- fix per-request leak of bucket brigade structure (#1583218)- Resolves: #1527295 - httpd with worker/event mpm segfaults after multiple SIGUSR1- Resolves: #1458364 - RMM list corruption in ldap module results in server hang- Resolves: #1493181 - RFE: mod_ssl: allow sending multiple CA names which differ only in case- Resolves: #1556761 - mod_proxy_wstunned config needs the default port number- Resolves: #1548501 - Make OCSP more configurable (like CRL)- Resolves: #1523536 - Backport Apache BZ#59230 mod_proxy_express uses db after close- Resolves: #1533793 - Use Variable with mod_authnz_ldap- don't terminate connections during graceful stop/restart (#1557785)- Related: #1288395 - httpd segfault when logrotate invoked- Resolves: #1274890 - mod_ssl config: tighten defaults- Resolves: #1506392 - Backport: SSLSessionTickets directive support- Resolves: #1440590 - Need an option to disable UTF8-conversion of certificate DN- Resolves: #1464406 - Apache consumes too much memory for CGI output- Resolves: #1448892 - Cannot override LD_LIBARY_PATH in Apache HTTPD using SetEnv or PassEnv. Needs documentation.- Resolves: #1430640 - "ProxyAddHeaders Off" does not become effective when it's defined outside setting- Resolves: #1499253 - ProxyRemote with HTTPS backend sends requests with absoluteURI instead of abs_path- Resolves: #1288395 - httpd segfault when logrotate invoked- Resolves: #1368491 - mod_authz_dbd segfaults when AuthzDBDQuery missing- Resolves: #1467402 - rotatelogs: creation of zombie processes when -p is used- Resolves: #1493065 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method- Resolves: #1463194 - CVE-2017-3167 httpd: ap_get_basic_auth_pw() authentication bypass - Resolves: #1463197 - CVE-2017-3169 httpd: mod_ssl NULL pointer dereference - Resolves: #1463207 - CVE-2017-7679 httpd: mod_mime buffer overread - Resolves: #1463205 - CVE-2017-7668 httpd: ap_find_token() buffer overread - Resolves: #1470748 - CVE-2017-9788 httpd: Uninitialized memory reflection in mod_auth_digest- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Related: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1445885 - define _RH_HAS_HTTPPROTOCOLOPTIONS- Resolves: #1442872 - apache user is not created during httpd installation when apache group already exist with GID other than 48- Related: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- Resolves: #1397241 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Related: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1414258 - Crash during restart or at startup in mod_ssl, in certinfo_free() function registered by ssl_stapling_ex_init()- Resolves: #1378946 - Backport of apache bug 55910: Continuation lines are broken during buffer resize- Resolves: #1364604 - Upstream Bug 56925 - ErrorDocument directive misbehaves with mod_proxy_http and mod_proxy_ajp- Resolves: #1324416 - Error 404 when switching language in HTML manual more than once- Resolves: #1353740 - Backport Apache PR58118 to fix mod_proxy_fcgi spamming non-errors: AH01075: Error dispatching request to : (passing brigade to output filters)- Resolves: #1371876 - Apache httpd returns "200 OK" for a request exceeding LimitRequestBody when enabling mod_ext_filter- Resolves: #1372692 - Apache httpd does not log status code "413" in access_log when exceeding LimitRequestBody- Resolves: #1376835 - httpd with worker/event mpm segfaults after multiple successive graceful reloads- Resolves: #1332242 - Explicitly disallow the '#' character in allow,deny directives- Resolves: #1396197 - Backport: mod_proxy_wstunnel - AH02447: err/hup on backconn- Resolves: #1348019 - mod_proxy: Fix a race condition that caused a failed worker to be retried before the retry period is over- Resolves: #1389535 - Segmentation fault in SSL_renegotiate- Resolves: #1406184 - stapling_renew_response: abort early (before apr_uri_parse) if ocspuri is empty- prefork: fix delay completing graceful restart (#1327624) - mod_ldap: fix authz regression, failing to rebind (#1415257)- Resolves: #1412976 - CVE-2016-0736 CVE-2016-2161 CVE-2016-8743 httpd: various flaws- RFE: run mod_rewrite external mapping program as non-root (#1316900)- add security fix for CVE-2016-5387- add 451 (Unavailable For Legal Reasons) response status-code (#1343582)- mod_cache: treat cache as valid with changed Expires in 304 (#1331341)- mod_cache: merge r->err_headers_out into r->headers when the response is cached for the first time (#1264989) - mod_ssl: Do not send SSL warning when SNI hostname is not found as per RFC 6066 (#1298148) - mod_proxy_fcgi: Ignore body data from backend for 304 responses (#1263038) - fix apache user creation when apache group already exists (#1299889) - fix apache user creation when USERGROUPS_ENAB is set to 'no' (#1288757) - mod_proxy: fix slow response time for reponses with error status code when using ProxyErrorOverride (#1283653) - mod_ldap: Respect LDAPConnectionPoolTTL for authn connections (#1300149) - mod_ssl: use "localhost" in the dummy SSL cert for long FQDNs (#1240495) - rotatelogs: improve support for localtime (#1244545) - ab: fix read failure when targeting SSL server (#1255331) - mod_log_debug: fix LogMessage example in documentation (#1279465) - mod_authz_dbd, mod_authn_dbd, mod_session_dbd, mod_rewrite: Fix lifetime of DB lookup entries independently of the selected DB engine (#1287844) - mod_ssl: fix hardware crypto support with custom DH parms (#1291865) - mod_proxy_fcgi: fix SCRIPT_FILENAME when a balancer is used (#1302797)- mod_dav: follow up fix for previous commit (#1263975)- mod_dav: treat dav_resource uri as escaped (#1255480)- mod_ssl: add support for User Principal Name in SSLUserName (#1242503)- core: fix chunk header parsing defect (CVE-2015-3183) - core: replace of ap_some_auth_required with ap_some_authn_required and ap_force_authn hook (CVE-2015-3185)- Revert fix for #1162152, it is not needed in RHEL7 - mod_proxy_ajp: fix settings ProxyPass parameters for AJP backends (#1242416)- mod_remoteip: correct the trusted proxy match test (#1179306) - mod_dav: send complete response when resource is created (#1235383) - apachectl: correct the apachectl status man page (#1231924)- mod_proxy_fcgi: honor Timeout / ProxyTimeout (#1222328) - do not show all vhosts twice in httpd -D DUMP_VHOSTS output (#1225820) - fix -D[efined] or [d] variables lifetime accross restarts (#1227219) - mod_ssl: do not send NPN extension with not configured (#1226015)- mod_authz_dbm: fix crash when using "Require dbm-file-group" (#1221575)- mod_authn_dbd: fix use-after-free bug with postgresql (#1188779) - mod_remoteip: correct the trusted proxy match test (#1179306) - mod_status: honor remote_ip as documented (#1169081) - mod_deflate: fix decompression of files larger than 4GB (#1170214) - core: improve error message for inaccessible DocumentRoot (#1170220) - ab: try all addresses instead of failing on first one when not available (#1125276) - mod_proxy_wstunnel: add support for SSL (#1180745) - mod_proxy_wstunnel: load this module by default (#1180745) - mod_rewrite: add support for WebSockets (#1180745) - mod_rewrite: do not search for directory if a URL will be rewritten (#1210091) - mod_ssl: Fix SSL_CLIENT_VERIFY value when optional_no_ca and SSLSessionCache are used and SSL session is resumed (#1170206) - mod_ssl: fix memory leak on httpd reloads (#1181690) - mod_ssl: use SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5:!SEED:!IDEA (#1118476) - mod_cgi: return error code 408 on timeout (#1162152) - mod_dav_fs: set default value of DAVLockDB (#1176449) - add Documentation= to the httpd.service and htcacheclean.service (#1184118) - do not display "bomb" icon for files ending with "core" (#1170215) - add missing Reason-Phrase in HTTP response headers (#1162159) - fix BuildRequires to require openssl-devel >= 1:1.0.1e-37 (#1160625) - apachectl: ignore HTTPD variable from sysconfig (#1214401) - apachectl: fix "graceful" documentation (#1214398) - apachectl: fix "graceful" behaviour when httpd is not running (#1214430)- mod_proxy_fcgi: determine if FCGI_CONN_CLOSE should be enabled instead of hardcoding it (#1168050) - mod_proxy: support Unix Domain Sockets (#1168081)- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581)- rebuild against proper version of OpenSSL (#1080125)- set vstring based on /etc/os-release (#1114123)- fix the dependency on openssl-libs to match the fix for #1080125- allow 'es to be seen under virtual hosts (#1131847)- do not use hardcoded curve for ECDHE suites (#1080125)- allow reverse-proxy to be set via SetHandler (#1136290)- fix possible crash in SIGINT handling (#1131006)- ab: fix integer overflow when printing stats with lot of requests (#1092420)- add pre_htaccess so mpm-itk can be build as separate module (#1059143)- mod_ssl: prefer larger keys and support up to 8192-bit keys (#1073078)- fix build on ppc64le by using configure macro (#1125545) - compile httpd with -O3 on ppc64le (#1123490) - mod_rewrite: expose CONN_REMOTE_ADDR (#1060536)- mod_cgid: add security fix for CVE-2014-0231 (#1120608) - mod_proxy: add security fix for CVE-2014-0117 (#1120608) - mod_deflate: add security fix for CVE-2014-0118 (#1120608) - mod_status: add security fix for CVE-2014-0226 (#1120608) - mod_cache: add secutiry fix for CVE-2013-4352 (#1120608)- mod_dav: add security fix for CVE-2013-6438 (#1077907) - mod_log_config: add security fix for CVE-2014-0098 (#1077907)- mod_ssl: improve DH temp key handling (#1057687)- mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1071276)- Mass rebuild 2014-01-24- mod_ssl: sanity-check use of "SSLCompression" (#1036666) - mod_proxy_http: fix brigade memory usage (#1040447)- rebuild- build with -O3 on ppc64 (#1051066)- mod_dav: fix locktoken handling (#1004046)- Mass rebuild 2013-12-27- use unambiguous httpd-mmn (#1029360)- mod_ssl: allow SSLEngine to override Listen-based default (#1023168)- systemd: Use {MAINPID} notation in service file (#969972)- systemd: send SIGWINCH signal without httpd -k in ExecStop (#969972)- expand macros in macros.httpd (#1011393)- fix "LDAPReferrals off" to really disable LDAP Referrals- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- restore "ServerTokens Full-Release" support (#811714)- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- rebuild- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.6-98.sl7_9.72.4.6-98.sl7_9.701-ldap.confmod_authnz_ldap.somod_ldap.so/etc/httpd/conf.modules.d//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -m64 -mtune=genericcpioxz9x86_64-redhat-linux-gnu?7zXZ !Xۢ^] crv(vX0 ~WoWJ-_Xh)\7֯Tf\5ՙ* Ή:7a`/𥲂4p2mYvh-С 3{B>)`0_1 dBHWo }%ŷł@JibH<صm^Frkݔf,98w/릃eM?x(ggBӤ;侷ih@VDXtCq.B6fAf%hAs[jNJim`j7;Žҩg#5" FE1=j Zu"^TSRW^'UĮ覬95 G+f_^c_ݒQF>B`;m\65~ġUQ&tp֝)SERCq<XG-K}M#Zh]b.V&yz:<=[*sͫ5i72|%N56hz bO.Bڧ|zRo4Ph2P_+O<H6`p:e!ظ94n\|\?;n=BKW=` y/{ M H9߸eK0kӠ)N+:unO~+C|0tddػ ^Fļ| Sr|ػA=]yG(v&+A7v jL͆ᢖ%օ,|N):vqݖekJ1L-IAb}emY7M_͍ܳ lVz"HozPE9*ۏrߎ+'9 ĽJBu)U9 - ?8.Y?Y{YJwg,yteF^Ì,(|᠜lьLUBF&4V#' гɀE/ ˋP%s./ @Z(ʎ ZͿ)U_[40݁ٱ7(6?(h7oLc=soM%ޝmWكalVgYK6fXBBvALJVX@/d|$c9nF/icäPS$1Z9ĩ=j,@r,M|Хhto<͔ie~0 , FJ6^n mzſ%5ufo2׍/dhn4^!Isj>mwlu~Wc4e焕&W`o_(8G{ʒFXJ"VT4ȕN)@`m>tJDZno$ p[&:s#|T3v9%Rrk '4Г^2J7+MG8>!p"R`IrZzR~A˒_Q3 `WpcJH7d|57zȹrhgyoCI9_U/#?9[?˭t9Zm@Pe~L5 06玲,Ŧӏ.)~0=\ʿ`.^y<o{'Pso^MB~3"u.rVNi;Ȭb"I[_iFܺ%PWXv 9d=Hs$ Ԋr)yp]"6 kiz:ȐVZ]ʿgP88kzքx[D!>ufACiZٲ d e}|iPQm<'~IwU}NO?aU l\S57(nT&-鮽9ɆO T6B*Mf3foN MK^ 仺,Bʧ7gW9{w~ɱT/nLW·1 ^T&]A\9a0CX'NA],7`'LLmߢM!Kd$87፸81ܶ}{άb FvА s~y_N `2QY)DK%(Ygh 䫀tK~箙v:X΄$>r UqB XbXWrY 3xnlZɨ{`Ey BDIbJg&T\U');$G|3vawĢ -&sՋdDU8"hͅ:oSnziy&u_cT:6/Z{ie$ik62c'(w6$T;]!T0o߶ *M{pZO.̗Rg2+ AO!GތϐJDjwumDO/⋇f*WHs`d,^sEDUDIFZ7H?BRN˪a!iZѴ.U]BGN09 j@Ƌg4I8[$>uw>s ՍT7ْn+ƋdUoM'܂JUD"間P?P& -}';{Xc^'G*q* |fq\䲦)87ZtrF2ּ8B%=a *D/wXX!,! .6l>.V !8 E q2Ch4{1'E-&l7Azu}VDDN?ДOP妜n NXմen|RXv^c&RY-'UnrsRUjv ߳d3 6@>l>5:= #&)!2uGd^k];/=b-2 ,{_>Ob>zʳ*7^%V/ $|e{齥i?{9Ua ]`tb:yQy~+ܩ.gpC5`i@\0ԞeS/D|3q1tU①9{/| Jc1'"F9iqwPOFx@ǷX$on9](VU!= _אMtU(k{UةՌ dܶNf^yFߨɬR6f2Vc¾{zj];7?%rIh6R1t} З5]1ysﱸQD}$b,B<Lk .N6qxӯL0zh_d=C9f 7-˴m.X4+!t5h჎s?9N\ʭ+Grqk@j??[e,foۓKc ~>ܹ&ɏւԋEVtztg~mi _4!XUN:F/D|; YPZ c~LS]2x{5J ;#3>R ТP҈ XoNA\݁9'#{+$P8160O WVU*s-$#DĴ@ߎpKHdQd^D$a" hj=5.H+A[ة^)X5^i((Z[E@ &yl T'yu¥ɤ)^@Np}o4քHtbXx" pҞ\p@aImص Ӹh`̚A"Åf_ߒ7QpڱkC$Gg(HKgP3>3q@ KXA {Ef@։ )X|AB,&&͔0|bDߩQl[/d ȕYcn6>\w.K iڣ (8槑.]"AzV ej L?å>TBx<ri6pS[)[foIl;-0R]w|#vX8Y{&^W'hP,s 0@Yiq-E?qo7?ɧ6^XN[e79?U4H/$.Kȣ6b 0mX[%핋蹦rA(9޵ЍO}-fsK ~mQ/gwM "^ѵ_{AKC' Yw8@qӽ"^22 \6Ȑƺ a)`Վv$Di~DVŝ9 F\K 1Nh1!Te 'AdgBՔ}̥2k3?m1HxMA)\-r|Z%8m>6}}r^ºRK"wijٷwP4=ro9_3HƌԹA.$.g7qZcwE'i nb~x ϋvZ2CAb̍4eK5UH>e`M&k Փk7B*}aP`QgD4La9_hv2A.DEԞq!"`5򗰔RyZ S6pa&M<U>B˼[ ㅆJC { Нn|lX}#< _sF ]u*zTP7/D<<@4$:\R ajQ_DLύ~r]B{tҿ"@X),:r>0Sf;<=~bEzҴ{l Xn3$cOZ d!_8鎥Xj2ތDs.z۝.EPAe >O} ۉ8l$iCMz=/K@ 팷rJv͠/j;e-2ÏiׂcRV2n ηv5#}͔>= bf=}@ mmDW k/j,J'eMT}rPܗ _W|("GJJj:=}%[ ?m}F`qf-n  .8q9q)4-ukN]M7!EK'w5Y>~u , wV*zorh~<^5ݗDt}*›bY"ȣ ,'%wrrj (N.x2MR C0!ɯ؀t& ;YQ(f]D]` @Oh4IG$/r o>3B6W MEXjuid geêG>g/xO5tG,G. Ok`2A)2?OQ\mbyF=VSE9] JUR3=Fr<2zx1!ϨJ,x x_a!s g@~Bc{i[}3W6eހzJX}L<&#q1O%׫ZPBx#)4!k@BJ`VBۗpJm &Cp7\e"^ϥamMR.<tsEnjuЃU-S 3ۏ ۬g.OQ)A@၀v66U"}ֶQPS)v^D ̘rQD_8S?|#>ϏN*mbJu'}[lگB'dJ`N{Kg3t+ 20loОbC=hCux&Tgbze]mPKbgzNs`%8PlD1n. ]E^_oÍ[24!-s^*4_R^*" zW+ڼ Y˦UnEsivQ-V^3쁚rFc.bb^[ +aS/l]fj!AQ{R0f/La]Ǜrkh=QI꽁Mj x4fB:_wǛ>[J 5;n;>(Gr%HbnLJE%QfMf_zTX)kYF!Ž!Ǵv`7Gyy`=M81+|7PsaLf᪡GA *@z ػ?E$”% w8Qt+<SZq֠wg͙Z{FVp.?=@7ӓT%WV %{q>hkZVmXMO?'ԉtXmH۔IʰRBJѠrIPk4J5y˄EQ>y ң=];CEJ!RҍS _;7s╊J.P3SBq@nj}.(F >B oHw7z4!k_&8(sOw"iC1]V[PU;b\= ]%G/qKQÆPW_րx@QamezieϤmJcoKeHgg@Wט,:Sc8*Q3&΂É/~3?/ ̇*kmRg6A*J~Es4q < %hr_X# S7EdC4ȹ W3 |:跳u oG5 AG=oכVkaBnJH>[Exq(V=lAFªSF;|K{Z,Hqd(y30/* n`,-BY6/}$-f~ ?Hާ4A"S8j`(_zR8"CT!;Q|LRq3 9Sg @̤k\¥?n}]PT&!aFsgDc&X,_`JU" jV|leJY9s/aNQg'ZT%Fw% xH\'ã˘Jtї+ +0~\KjDdǢV{n`R&Xա6[@8,\ZX8~(1fe- +5r'fE<41k|k?$Aڟ'' ^]62KcivCu9Czo8U:Χى.WhoH'[\擶H=XI)h=*0ޟ'<_&Y' d(b 22\[OLa(4\deGǴT ģHǑRHBΠX1[c,c;LR5 ֑'<_rx)W3[6^[H|{ ,ipܚw2cb L?M za/ǂ@(cAvɍ5N9n^CtZP 7<&8󖽨Kbm^ČAsNtmdf93Ѡh6²N=6$`V6H'iKM?hmdҍ΃A3v >n WRcaTo$"<`}[> !#R8A:͹1׶^蛑VMpXsBbw ymUGZC]0gW:9{PF G! ~${"8]%K oL)?GMu5\+ KTs=>  l519 8gS>oGͩ5xj-T`0b{*zf6A )UYќQX+(%4`i '.EeH Y񀪚4Yj*jéjAȹ>_S7[[S4>nLe,JV]ɪY L3.^X|FGoeR<[S/k-uB.HZk:JgS@\ 6czz ]e*)6 ۛf`1BH!f{ 鐌s@>@P>&E+CM:& 4j|0tʹԏ%j&?°f$*Q M[Hah"uobDcVOɢRfzvm!Vp3 z9/]VSjA@>MAlct2"GosGtzY̐.z kM?M'%&0}m uT~c%a@8oc\2+|(2tA?xk,GxINv~4}rcWt5SIƟ<8[^Qǜ5 V-&#t⌿Nnňr}s\#_aǑݜ/#^jL(*HY|ry1+z E7cyqxhtSqf<3:7 ѰٹsbUWOXm3꾄Q /gCH'_shG+ ;̡ 5gXJJr#Q>Cpk\*W7Bsx#/֩CFxV A$*+A1\2)ly<|T~VP$v}ϓ`#Ib2JM1\8_ֲ>Jm`J?;s뼼'Er^(E{v +SFq"}cX}>H=eB}@ygV6|D|M*NTFzPx>E ʼF(ɧ/@g]Th{WmI= +O9tqƌ4茲0X<Md7e6>  x>Yޝ[ YRAqi| ph?(m^d;Yr\#=블I>\dǶ^ǓG =dk7ߞBsT%Z& IHr:5zUp&eI SʇLlۘbndI}t;jT4=~::l=I#_woBVڨm%lվW&}d?8 "f~RIqO9eޛy@{ #9kvxͳS(ӓujx RCOeqͥq](rmy)XA/!,<SO`n @ԻԷͣrKo='3JfS`. h XaU3|\6 VOk7$;a!h#/u#W:4-eEghmF jnr(s5Pw8O\QSw17ђvH"4XB(^Ǐu!c.xc'-߂j s\Ng`zlj&cޑv=yJ%שBT<- rَAv/#CW:.Nu_<2B[c[1u k!XVhXK -,ZUkgg AWNxS@.OqXD "ΕvAOS.D,WccuM7r9j_MƪUP:z8$'RroRF zra A) (wm{<6WX)#`T7ڥ 1N9H>QP!;zJ:Ra9mؾe =NlQ^Y!yF/J_&mo5/\T,BM /I #3%pYQB!LSФE"&:jD:b3C|`ZӤO9|\냨blMU'i}QH$"gO9 Khpy Lg*@pzU+z})9Y[G/ VL e􏀬sLOzQLO:꿌6*t?u^WuTXwV0yeEoAC|fhݱώ{K~i!,gxGI56@ߘoqžt"b=0k;QkS)0Bd+TZOkiFaneDd4?K66 ?<<\:[8\86jυ_7hezWh ^ru1ݹи$! @n"$ʱXʿaATy豻e2!QX.ʌ;Br.u&@ d_W+>A7FȢm7 lt"4*3UNlLDȗbvU3mt.X }UQz{$".8NKHs m龺mG2\9ZpfMUy`Rf[b8I$S+-/]5y~0}苐!Yv,ݡw;Z=n31]}"+:2nDq5.V rdz77@#B6&nNYYV^ʏK+(h\BpvNM/:pG1f!!L-UʵBJm5؞>HI<1'<<(ޛd^E*l-NDX)XM,;8j]%rIh7\R<`21Ȅq͓/gB9;zr3xOU峹`aDR;dfN5XS#_oy"͏.W$fdHf7T]iKjvr( 'tUsS̠vڭC(tL8yb ݥشÙ(m/0@WB%kt8vy{"V:DRFkB/Ls}og_yBU+xjed 0?זjw`H z#s/d֥RU̪~/(ezk:ZztTn-&يYFtR+D"1յ\BpǫiՋ3Fxz&z[7GӪr%,Khusn s~KBt%>lDN ^u؉$mFUI/so0#JD =R:1[@74YϾ3 _ @]XPrj }Ucu4g+>`װrL~#Y+ެE5ehcB(Riy_l_,h=rr=k7GAO?0 .LD2V&A^!nΰ I%Vuzr-0u(!\K^?4 Θ$e(Kd]]|)BNzE2β.B%A4-z8,} D &rCdRK I?ŦXudx=.ӭgquRpD*\{jA \/c5@3Pżmkq`\a-SMB QƙCGGTZF7Ulˡ%'HeKc6wc|crE<9E[]tx%$9mv9UΓ?܅Gd0+J3޾ ,A+xkBjx帐Ī'5m|mΘvVu7=^#{08gFY¦}+c{ZTXЭ%W>L q6+[c$ۑH&ʭY[9i3J-**6F` sTm|NǺy幟C}O}[yNQ}hǹ7߉Bz_s* g1ԔfƦn\;5Tj=u_ c.uti2^{:[`XDt5~*mv.#@/#†ŸQGxpM57J}^%F!+qS3@ceDN䚊mS9]܅ dVA#r3P}A@ kl"`V JǴB4QpV!-n[(I^TeheX9 a B;ۀ6QZPN #bAK= M@z{ KG:ƩR\bJW 5qX|dK'`3vy1Z7 #Q~ X C䛴'5φt1ãיE- S֏ҍyl3TqV§O+)Z!Tc! QB|M{#i- CT~De۫#P1Rr2Wg)]&c p=]F2_aX'&$F>VՐ+to $+Ŗ>sp9ĽIߍ?2I38cgH,4w݄HN f/cawoEģYэzAI .:uNR?X@)09aW`pMHwTi\^@9($-F:Ʀ/ ^imCfӒRw,HW#[ځ*c+񈠄)W<'Ej˰V.,~~тMZv]Ѧ|qC.Nal-jȊ6dwgO#R{¾H$= @VjfC3C f<!z SZ N7iE. Bwfnڸ_,MV.ZS\Xw)Mѿ*{Htq^!/R֠ hz:M޳e6,٢:ZN% ԶY}X!0j&s\@c\vM4{5EPVK4X:5>hW<?tZԭ"Z 큣) f8,?Y͸9kHLl-蟟[HԯfkE)&fXNyLSs2[Sxko5"*,Jx/`\pF =$L]P2<5v<~CSc2p,\M w+=GMȅYڇ\% NB(YlDzaq"K eV^8P? +wZKTH}as*ͥ #Ԫ?,k=02|c$w=Gn3R`:#?rrm}p=pvp72G /n6oEdmdp4 /@;)'Y(s 8m]μ8i{ 9[NhJG >V?{]۵2Q VI:Vje n+wBdQr{GMߐt^L)6NWvsԴPt9nLpUwrzD% {.+d~p͟LƵ ɱzlu(<`Փ?/4h I&Mkn;!6f9jGD_+W+AMǔjIGRp&t 6>)rFG+?qRD|̣ * սu4`@/'H" m%ݤ27󩭩@wU!y-Nye JZKx~>gVgK0zFNp $l{bIQe}1AnPaoDBٽ?6Yd!\0@d!RaGߗ٪GhFnT oWIM,;RlS|wX[mAG|,=&ӱ>zɁi%\  *UQ۴l5j%UQc-*8O^bh\Jgje)p1'#hRӭ U=J|@kir`S ׅ$Qh <:'-@ zGh6 z 3JKl=oIQ &C`[_!p&F'=i;oB]-;x`5VH}3>M2+e?(3>D )%'ۧ~!+ž-_@Q*#FV%ou Ԏr-?~'tCoX.&hN8@<2 . bfK˚G f[>:EZl4Z\pFvZ0*-GtbADh J;Vfles.6@ @kD%Ӻ|b+: zSnքԽi2NF؋8牵n$;uDz ـɇ| LI(ZoABd[:&ׄʿiff6ki2k AM԰%KW}Kլ(=N.] K\E/y$"=ghLd-a1?="H1bqq /yVnggр} Y#f(mna)(ؗ|2L)U|q]Q4˸|G 0r-c's7xnߚMntPojPAI /"MͶ[~7f %RyM[r`P#ӤhB0fq) O !ۍ'Y! n: +5{0g|KT@#_BOKJ~].'A0+9+5$SGM#Xh^u,/n7ib{ e;%O) 3!8Zk\ R[ QS r:"0H'uH75 F|&gLδ Xe7 NCcRVg:ΘXڟBc{i7zEԧ,,պl%DwlS"55A+a2{W@utEK29o# Gh(J~v6=\G~i)s6v%q.s4v'}G״?AJd@Q<5nЃ zk'~o~6SB4ثƖW;*p a#12!&rN{y!u#a $lK?+4ɿ틵ڪ:Z64UyS5scfh*dAY-*ܞWƹy oHf) \~oVhjc!:3H"z_+!u;Kсu׭Wam<"!o~0 {u|~i ,??rNZU6_Ǔ 793xAFAPsU >HEg6 :abWBN+).#XלQ|6lL̰nohPymK~=YzP ?3]WD/[&%v:iG>/źGj&=ΓT o2:D\DBl1&B[EɎģov |1$au8+;\%L^ wwn 5ZFՌ4DQuHd .:%Wiuq$mZ lTܑte@C< ƾZ\,|J]ߟ%;ɮ:h"& PCO_/ar܃8fjɂ3{ؑc`" $ 1Bjsŧï/)ǯ.A5\+js4<*'Bx{z ` K'A4qޒ5K֞l`80Em;L"!?~ t ƹxo /r`juW3DopG S_  9699 : H89$ пi= !طmtȱ4B9rgO4C=- XiEez7J(t[z hdO~>O 8sY.Y$u饶joH [㇎I#Fm 7`9hTM pIbZb]1iҍI7 ۫ẍ́ZXTiު{1*\?7VEgŘΉLdskZv5At^ =P9f,% # @RIkY{>ZL+9 dE l,nmhJ5sf]pԦ# _D:#xhXW:ĸjrv\#l'%,VѮE+,It%_>c ?M?γxfL2N(x ++eyoJ&($Qx4L_c!"k0&ߟ(D!9]B|Vjkg- QLzp,P:cij/lvL,1~DŠsaITMKKKIx~ hyi3̏x(j?l^uS[`mad)qu\Yxf\vziBTe۷ YMQC޶/͍bF(4wq]XHxIZU@$P]IoQ@~1ۓ]pB_ :^|Ř ޚaN z_ƪ᦭]Z 11yy@{'O9-reH*0 JXL7D8L&d3̇IG7{D36kQsVeTY2{Y$${f,~O?.GELKpZzKǐ*?%*v>kw>2~8ԉs@**uFհJC&Hh=G^ r>PN~L(cxMcR@ݚ˯l6+D}ﺦ#}=U CE,#b;~hutI_ݭiiSUYflW֍,fZ"#oVLarJ HudvЃ`INLnUf;f*wǛ1kc]YyYxOl~fMW ΀d[v ]D*D}{H]tn Sɜ"-RZǧwҪ:,iK !g{*μW7`]wt6ʞ /v޻L*k "wI 5ڊ 'd?@\Z :>Ӯ+:.1ًWX(՗dCfAl[!8NcWlʄX}V}EF_YiX3ΎpCzB8%h(PCyʚsB%L*HhU[A_~p $aAHtі|1wCֱۢ>&Eݛ肜RժݥgMhYIS/nM+CAv/*`y5>) GWeAGS>T.~ߣ?4+8(b;N@װPś kt 5@M(P~b/`~8uw;,2Z)J;@ p7:#)F!IDؠ}_l͓aVx&gF-Oj_T|I8{{M.]q OqYf?VFU@6+0L"f#[r]ja jBL&借A>D\>uA"iD?z^eQޕGKޢas2&C].+i!ѻ/#cR3܋ rQߏ?F3 }3xv\Wl7ޮ!B}GYm.sP,M]%BehH^ `4̍%Dӯ4RvpS# /,='s} =}S7XJ"]vO3UuN6哝&vbQ  =<;*4{7QtX~:y>* %ޕ?f܁@@QJ#j7LGLd;)MmAuBPyJ))ė\YՌΰyAg* {y٩;&RL&l[ƸVrbGе5WaEpJO~Xސ"W@|[Ɍ~v_')ˡ"wNcLdfG|b$e1IP*)/z4h&j.81O{fdPB5\߂6$/ !먞 mDȋn_1\^;lyTՐLV[_9Sgd8-v \g*E E+dDL-efSpEi[K*y[K/z2#ĖB~tB" =|8Dm U۝;DN7v*k)[XQYW*)XufS!YCy<૨75ba<ຉ@ 4 ͤ*WL݌T(O7Y3_5FkvʵlqeW=˖A>Uɭ`>za ѹ;wx >pd\ yb׆_aּ@vu]&^>/jh«iJR_WXFX_BtQXɹdƛI`H|y n:86G# 0νqL,S6@JY۫y^6p[ٜ~$nft3c"of~X2. QʫRL.V $F}73ћ*)ߒS n=<D_Թ-4[2:Sajȍ2X5 ._qDsF$ŠAЊ!Tl53!)'?UvʡS$ܖh]#3%|"pf0F }92ݍNwK\lܞ> =!& z|`PSM̝vJN~ \u:`,yHSzV "Z-άs^x8Х[YqP7ʲzj>s}JRcjD[z 8 S pyo7Tks@ m xkt&ŏBsbJ7"ҾSfK+45~pRP͚ y7<` ?IkeOϊhL;sB(C7FG0J\[gf J+Zpv t3w?Q@]?z$!M/=k75nk_'i4:d-GF WTJѭ<'$h7+"\ VŹM钄{v6a ȸM>PX Xb8] CLzIѨ4#Hx^)HOy:5@IԑV\jAz/ jNAFzUK}Mv+T R3Xܫ+/R9@g'=9 xa,²o@nPF2p֭ Q6C_6]̋1.rz!i051dQԚ[t3s:S']7`x/ȂGp{rH"8<=~G u%싻$YB G6!m;Y-NhEd;z4y?;{dh| b V?BAԜdhM܊Awa[^)AT:`&}#35[~Q)1 9isu{(s=Ogb,w*yK=T[" z8cff[k4XOmó\P/|Cm@B^KWmQ8QfaQq܃7SxPBƴ:f4+:BŮn]^[EoT@Ѷ'2}B#gYvdUᕹXl:xD^QmYnY7f9k7_)awd f} 1qJ#eL~cd& y >|0n_p,Gvx9R$_[XJSh$>aʈYmr\lǬ:v.%ffvo(?'t%zuxS%dZ%( ^ +].mX<=Iy5_&5cj *ߘ-<%4 C$V ;*қ o%Hb)'#BJ_O5 jDޝ =͊T=ʋm!8qnZy n,PXQTr vsAAG 8O'3:\J88{-Sj,zzZ;fS(k:n: 1?=%3$o7Iٕ`uÖO-s=Π[x:;ׯzK]<]hh۷f@(kC^ ;RJ+MT, ~Ҟۏ"6~|κMuj`ػ3cS{\ 7%&H0*U'iQ-I~#W]\ADOhe/WN uZB6]' 25#ng>!~> [ ?!k{vYX gniМT,=2E2̕rgO lMvT Y}Cx:u7e,;/$ޕu\ItS4m*dYl:z2S(q)uJ{zZ \Z$fg[6$:c1ȋ/ u"ҕU,{\M@5u.nj#Jf! OA$/QЩi7;bSCI8b6q|qt<ʀ$;_g4'O{p~jxJx֙lH;esZji"sǑmKw%_] XmǠIO(8}ke$N),3vV{cOk)E >utԥl,"rad!N:4)F:EQ\q>3NxB"e+ښ` qƪ>_yNRZjB`."6-uPᘤ8A2C4' AgueݐNY8Tnuyk.) r` PVRSvu c"`)͠rY"m|LH^#b!(!_NF5"ӊ pX0 G9qw*h6k(K5 #8Wvjh6r:;;X:;Vxܒ&w2^':I[ChKAbQ* fIي-iT![?>eNt7t6ũGw[; x^ E4ܹ P˧@oz~; t M +6BLB9UKƱ;̄J '.׺,~=A+6ԸؚIZ8gU{2 pϝ ȡ|C|Τo{<>^zY:d復Rv+d3[|!LqG ْ8u"mP {y(Plt)#yD1]ޯmQAzgVjt 뒯%?om`oTTh֯!S)V6FYnA"2#ʐY<4dFޭUϪF ʯ7)K{ooKS֮1v B9@qX6dLǷ3ȗ]qлWۡ'H4Z;2G^sE'p&z6hA:3נ]`U-/76}tF]jJ?#(JD7>* P: Fw8^Ү᠗&E$a QIʐW瘯ϣt|ZC1ŌBO7@ZZ=Da_!S>mNv9$(ԤSy`KCX$SYؖN[tMfmJٝ_#59uOZI䍇ܿi,Y_7FlR&s}-g:i&%B;OI~1_8mK A̰&7ƁA}qH25@.6WKm@7_*A1 x@pQQ*ЙRb uD> m41ؖ#%p~G$5L)j6"M<@0:*2yl^ƒ;##@ir"kK4[M2d:+ mM^CIӤ~{#x2#Lc f"eEM@ ^0{ W?IB"L(eG{QwЭOMbpIds~Czڏ&H&u&^jۣ=HJL_lڐMPF9D$X|?qg >3VcɐKOY3OJQz7>1tDnǙ1MWotb{{Lo[('^Ll~lo(}XS\=jDx{b0 Iu):-3ogq%-@ W%W|=BD9XDdpP CMޗ Pmu3nbJݸ)6S)ɂc  \;oEUy5g|J}X $XU d :эBgmYÐ4]f~ed"؞C,5$ La-VHZy,9]H.;sja܃( Qt#bJnR0@`ts?#d,X'yd,!T B,d֝|_O;jIneq _i ++fƤ0y\~R+u Qn+ TPb|CRZ(RF'#"7Q*!<٠a4@](J |OU0}X/ԕgt=VX[{h'2 MU엂I3qNԭ# ]!8>+LFt %%eQEw8}aɕg`T4xuJg;8ZO[ P"i;,(0}Vw9B,Fdy<7Ȥkv`EZ?;ŠB#X jT$OXj]bB,~^-rvճ2Msy E҈pdfT4oro5%[&p]q% r3p\<䄺H7@:M9b{{'UUj"<[CLGU!0ԋ:l VgjurG aɳ0}J}=*ԣάG=T8$׫+7QQ4-%uߗGTA158Xc|:x Cm=pjVXVWٌ5u\2@hw}H@ pyi\AgUToLItE.֨2c)ޝ@A)scT\A0b8ϣq]о+r GHsgW`T(u@[_ʝ"q 7 UY TѺN\yROjz!^d)n&x淯bɓ\(+}wf 6o]S KǦN] x 3z})%VO7]O(n1PLjyġRF$>:YP췔n/v3 (ŞU :i8ey-Zכ9yԙ͈& |cWn\bSɜE%;Q X/@o2Q\ji0@5ظX8]G2WZ?ڵc97P_usL߮2zĖDl9$-5upl橌O(dsnoðR=@"SF ?-DgG,?#_p8`e!ձF g*?K|{C$! 떴,yhؖ$=XkteM$?\DgP!ջ@!R~@{to: 9Q&-^dk1.|IR1z*LHa?Cg)ZCqAGqOtUPn,܎xxXRF1Pe\M)Lch66Mqq6ֽUq)38]KZy/\4JBDJ HL4jnբg2GH<,:ݯ3J/5|3REUh=ehZ\Be`ud d,kb[4U{~,k3Kk<sjMx+U+%Y7N5*knt'(%x:ղیma1vNɇI [3r?wy *#WZH(~{:"D缍 V뤦I42 h0SZ6p(֠nPz$]# 4HxvrL z q@npP?,>%yO'h?;Ax^5ͦ! L`ITbFA5M\'Rkƽv "> ^5@U#]/KRc+~0QQJp::]l8UI:V"*T%]f-XxH[g =] \F36yǶĢ`]/bD~9@^\(:NUL5sjk$|JpuI~g!X mBotQYE%g@įU֡T0 BX{;Hz{p@ $M#UIIMIH0&tb[htQ[1^"8 2ey(x; opR6QK0, ^t3D`@wAsrg}|LΑDG-ETkJEwЋ3Ήt[M7K[f|!SYeʲ*M .f夞쩜1߭e*CZ0Me4M6UQ 7Q}cQCI'}9&J˳Z@rtiɰ뗬MY琁yMj$d[ FC. [-Q#kMlxt%a->anMeEXܚmuD!_q`Z"Mؕ\cJ|0#IBo!v=UJB_7+@T ד|-A!f]UO Ye| \0Jn;gx7{W^CVөd51i|_ĺtΙ$DBLs 6>Ȝ0Dyn.x 8CpG:x_^"1m%yB*w\ԗ {D+jٲ' V~~VAL sdU-,o.<Ě[ӊl.ySZ30`!N%B'= y.>)@[LyyOHUPwi^A[93N%@H]gep0uUNuSkW,kLZm"IGQHNi}:~EtqnMJGVk2˟$$m@gD͋۵k"ӟ(w iGBLnX'N-1UJî@/IN 4חcsu tY޽g3Tp7鿽#^# $)SS0;O<^*{$F- պXי"R’L7P1 F< "j<ί[-`Ue^_.}>d.佼H4ʜ&DGeqE-o~A<0rAL!.|xJ:ҳx2p} %0;G7Ҟ?aiŪ5{$zjo4EkdXz<͉ [o"f'!4>"nAνjĞ4!W%8\Mcb .Ϛ uqVe^] [4E _uݦOC܃AM;x72KA?FB}HDu?jLxO 4؈۠V 7_H8{ʏ$F`ȿ#i}pdh\Vmte J8!s*Sw<ϖx}"\q3 fGRI;m}TNǠGV9 |wPյ]B : 5#,;ܙKւb!q?/uZ z<׀Ŀ{6q??D9ՒxCyGA^$@kMN-n1C8C)Z*13d 9WNjlk_hVIr\70)B'QBxzcih}!8q= 4# ck1;3 i8Yۃ1E T8j*qG$rW A&]KD6BݻūAnٕ/q09E0t'{C"-%dsN뢨u"E!(p8̯x1;iQɪ|e?yx>lzA% (Qhey*Dmѫ ?Bן,Z|j?s^:l$d>)ߩx.M l|ЫoDp7KX_z/W@"Y60: >-BB5̊o׈L $YJQsګn[= w*/A|Opn0[(N,?BIVc $MV0a 3fY҅2 $k8#C~a+~ݺƽ7h0:h{١v]OQ!8r - HD ":uhEG wPa'ރ0 r?Ok`#N7 GAbՔ)9p_&o-/Q &ܤ\d^Q% iX+ձrH]"گҬm)cmgh[4$jK$%t f%uhv$ fן Kt[tY~f$/zl!W[];n)݆m0c,/"sxr9MJ%GeCeIЖ Zi#|={-(C8?f vGtrAD mQ?x&f!o2/ HޟJfݡ&懞 %vϡ _jnmsj$.`Gn12Uކ, yYJL6JYLkUQ WMt+0 j'/1xcx^l}NKo;s<2 QIK֩|f|q_NcD*3FO&ug$,jfV4- <<} ɛ<&itبm趡M)@-qaVekalrC:>ܯp+å%q7Cϣ `Y-@`~VL0HKkn{etX.䝡5?5sv[N7\3Ƅy%T*Ey>4 YZ