Stronghold Web Server version history

Stronghold Web Server 2.4.2 Build code C2NetEU/2412 [November 1999]

Support for generating Equifax CSRs
Added RSA daemon, allowing RSA key operations to be performed inside a separate process
Fix recompilation problem introduced by the update to Apache 1.3.6 in 2410
Reintroduce null cipher support

Updated to Apache 1.3.6.
Added support for Global Server IDs (GSID or SGC)
Fix SSLeay security problem where client certificate could be changed after authentication
Command line arguments -h, -l and -L have new meanings
New directive to set default language
New directive to remove a handler
Thawte Stronghold Web Server Extranet module now built into the server
Fix bug when making requests using machine certs to a remote proxy-passed https server

Updated to Apache 1.3.3.
Add -t command line option to test server configuration
Better protection against denial of service attacks
Server status processing can be turned on or off by a directive
Added source for Thawte Stronghold Web Server Extranet module (not compiled in by default).

Support for TLS added
Includes Apache 1.2.6
Includes PHP 2.0.1
Updated SSLProtocol command to allow selection of more than one protocol if desired. Default is to allow all Protocols.
Updates to the Configuration Manager
New directive SSLSessionLockFile to allow the session cache lock file to be located in an alternative location (default was SERVER_ROOT/logs/session.lock)
Update Server Status display to show the protocol being used
New builds for SCO, Linux Redhat 5
Fix buffering problem with CGI. CGI programs will now be correctly terminated should a transfer be interrupted.
Fix problem detecting bad MAC decodes from SSLeay
Fix problem where mod_rewrite would not interact with the proxy module
Fix proxy problem with Proxy-Authenticate headers
Fix problem where SSL_require command was being too restrictive and not allowing any access to protected directories
Fix problem where SSL variables sent to CGI scripts would sometimes be blank
Fix installation program to allow SSL only installations

New directives to authenticate proxy to remote machines using client certificates
Add new Verisign root certificates
Fix to proxy module which had problems accepting large amounts of POST data.
Fix to make PHP work properly again on Linux ELF platforms
New builds for Solaris 2.6, PowerPC MkLinux, Sparc Linux
Includes Apache 1.2.5
Added note that some browsers cannot handle keys created with more than 1024 bits

Update SSL environment variables. Now gives more useful variables.
Don't try to write out digital id's (client certificates) by default if no CertificateLogDir directive is given.
Move writing of client certificate files to connection phase so they are available to CGI programs
Fix authentication failure bug
Fix bug causing memory problems on some platforms
Allow combatibility with Apache modules not distributed in source code form (such as Allaire's Cold Fusion module)

Includes Apache 1.2.4
Includes SSLeay 0.8.1 (with some additional fixes)
Updated Proxy module that can proxy to secure servers
Workaround bug in Microsoft Internet Explorer causing images to not load and block characters at the end of pages
IDEA support now available by license key (purchase separately)
Includes new CA/server-rootcerts.pem file for verifying certificates via the SSL proxy
Includes updated CA/client-rootcerts.pem file for verifying digital ID's from Thawte and Verisign
Updated configuration manager to perform standard key and certificate tasks
Updated SSL interface library (various tidying)
SSL_Require updated and INDBM (matching INFILE) added
Installation script now checks ports and license key
Fix broken RequireSSL directive
Fix to "lingering close" messages
Fix to CGI "couldn't spawn" problem
Fix to allow Keep-Alives to work with SSL
Fix "Configuration" file for remaking Stronghold Web Server from source
Fix coredump accessing https port with http browser
Fix to allow nph scripts to be run again
Fix problem with sending client certificate list to MSIE with SSLv3

"SSLCacheDisable On" directive for machines with memory map problems
add "RequireSSL" command to be compatible with US Stronghold Web Server
Upgraded SSL libraries to improve temporary key generation time
Includes Apache 1.2.0 final release
Fixed Makefile missing -lmodssl and mkdir problems when recompiling
Support for nFast cryptographic hardware (www.ncipher.com)
Fixes to Configuration manager for default ports/virtual hosts
Fix so MaxRequestsPerChild is honoured
Fix to UPGRADE.sh
Includes PHP 1.2b12
Fix to allow asn1_kludge option to work again for people using Certificate Server products