mod_ldap-2.4.37-43.module_el8.5.0+1022+b541f3b1 >  A a_U] _;@o&6޴ÚumhbQ$HAؒ}}E k7z52QHQ[ O@| e g$#;&47b)4QdmA) x@CUܨ V2'";=<;m똰q׎~ tEhonOdig\jhDUFa0?$SoP)QV(gwk˄SƴS 5qHGIep޽*_$Xb8r[VY|D2KK$p'~ oDus ` Tt`wB6df00be98419532f1266289a062e5e743a14ecada2e946dd06925e30c4d7eeae60ebc3cd99ceae95145a2845cf2c034181c03bb2=7a_U]}6X)ZL#jwUIڲӷE;jaV#!dG3&Bi2@{GvC26xCUpAdnU?ǨԶuC٫ynww >Τt?4rp( n*y֋C[~o̫ZM{ VwX1q;-ߴA(pB)6xm0b(ufD#P AoW,2s-;}sliiB_sYT8U3^p#Ea>,ͷJ( WaS﫨 #MX& dXtĭ]ʑ ˵RXt}7S$؜"#5faIW%NJbݦO|#ScZT`Db#M9&s7 ӬF{NJs#]!E!#!\,g(6B$͑2x>p=?d  2 i  ,Gagp    ~ "@xU(89 x:1G,HDI\XdYp\]^bdAeFfIlKtdu|vwxy04:|Cmod_ldap2.4.3743.module_el8.5.0+1022+b541f3b1LDAP authentication modules for the Apache HTTP ServerThe mod_ldap and mod_authnz_ldap modules add support for LDAP authentication to the Apache HTTP Server.ax86-02.mbox.centos.orgCentOSCentOSASL 2.0CentOS Buildsys System Environment/Daemonshttps://httpd.apache.org/linuxx86_64/6hBAaaaaaacbbbdd396fe056e8ab167abd7b2cb5145b42210bfea38452968ff02a03493fc8f0d8e6a12df234546c55cd6ede98adeede631ccb41292b27a9fbbaf162ce2e2e9b464e670a186287a6c008e8fd73a42627d26473c6bb0c2338463e65ca2a69fb../../../../usr/lib64/httpd/modules/mod_ldap.so../../../../usr/lib64/httpd/modules/mod_authnz_ldap.sorootrootrootrootrootrootrootrootrootrootrootroothttpd-2.4.37-43.module_el8.5.0+1022+b541f3b1.src.rpmconfig(mod_ldap)mod_ldapmod_ldap(x86-64)@@@@@@@    @apr-util-ldapconfig(mod_ldap)httpdhttpd-mmnlibc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)libpthread.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)rtld(GNU_HASH)2.4.37-43.module_el8.5.0+1022+b541f3b10:2.4.37-43.module_el8.5.0+1022+b541f3b120120211x86643.0.4-14.6.0-14.0-15.2-14.14.3awaU`:@`f@`@`@_м@__@_:_^b^(@^@^]]@]߶]҇]@]g@]-@]]@\7\Z@\Yz\T4\\U@[@[[[@[H[u[[[ā@[ā@[ā@[@[@["@[YZ@Z@Z@Yp@Y{Y@Y@YéYéYéYéYX@YYYYx@Ym@YlYf@Ycl@YV=@YGY5GY@YXۡXP@X @X@XwoX[@X[@XEVX)@X@WW~D@W~D@W~D@WKW@VVVVn@VhV.VCV@UK@U@Ua@UF@UQUQTp@T=@T@T @TT_Tk@Tk@S0S@SGS@SS/SS@SSS"@SS5d@S4S&Sz@Sz@S(S@R@RRG@R@R@RsRrF@Ri Re@RVQ@QQޞ@QQo@Q@QQV@Q@Qo@Qm=@QQQ,Q,Q']QP @P6@P6@P{@PPl(PiPiPiPiPYPQPIP3x@P3x@PPO@OO@O@OЗOЗOF@OF@OF@O]@O"O"O@O@O@O@O@O@OOOOOOleOleO_6O_6O_6OU@O8@O8@O5OKO@ONNS@N{#@NoENdNBrN)f@N&@N@N MM>MMn1@MdMRMF@M(QM$]@M$]@M# L@L@LLMxL7@K@Luboš Uhliarik - 2.4.37-43Luboš Uhliarik - 2.4.37-42Luboš Uhliarik - 2.4.37-41Lubos Uhliarik - 2.4.37-40Artem Egorenkov - 2.4.37-39Lubos Uhliarik - 2.4.37-38Lubos Uhliarik - 2.4.37-37Lubos Uhliarik - 2.4.37-36Lubos Uhliarik - 2.4.37-35Lubos Uhliarik - 2.4.37-33Lubos Uhliarik - 2.4.37-31Joe Orton - 2.4.37-30Lubos Uhliarik - 2.4.37-29Lubos Uhliarik - 2.4.37-28Lubos Uhliarik - 2.4.37-27Lubos Uhliarik - 2.4.37-21Lubos Uhliarik - 2.4.37-20Joe Orton - 2.4.37-19Lubos Uhliarik - 2.4.37-18Lubos Uhliarik - 2.4.37-17Lubos Uhliarik - 2.4.37-16Lubos Uhliarik - 2.4.37-15Lubos Uhliarik - 2.4.37-14Lubos Uhliarik - 2.4.37-13Lubos Uhliarik - 2.4.37-11Lubos Uhliarik - 2.4.37-10Lubos Uhliarik - 2.4.37-9Joe Orton - 2.4.37-8Joe Orton - 2.4.37-7Joe Orton - 2.4.37-6Luboš Uhliarik - 2.4.37-5Luboš Uhliarik - 2.4.37-4Luboš Uhliarik - 2.4.37-3Joe Orton - 2.4.37-2Lubos Uhliarik - 2.4.37-1Luboš Uhliarik - 2.4.35-10Lubos Uhliarik - 2.4.35-9Joe Orton - 2.4.35-7Joe Orton - 2.4.35-5Lubos Uhliarik - 2.4.35-4Lubos Uhliarik - 2.4.35-3Lubos Uhliarik - 2.4.35-2Lubos Uhliarik - 2.4.35-1Lubos Uhliarik - 2.4.33-4Joe Orton - 2.4.33-3Luboš Uhliarik - 2.4.33-2Joe Orton - 2.4.28-8Luboš Uhliarik - 2.4.28-2Luboš Uhliarik - 2.4.28-1Joe Orton - 2.4.27-14Joe Orton - 2.4.27-13Joe Orton - 2.4.27-12Stephen Gallagher - 2.4.27-11Jeroen van Meeuwen - 2.4.27-10Joe Orton - 2.4.27-9Jeroen van Meeuwen - 2.4.27-8Stephen Gallagher - 2.4.27-8.1Joe Orton - 2.4.27-8.1Joe Orton - 2.4.27-7Fedora Release Engineering - 2.4.27-6Fedora Release Engineering - 2.4.27-5Joe Orton - 2.4.27-4Joe Orton - 2.4.27-3Luboš Uhliarik - 2.4.27-2Luboš Uhliarik - 2.4.27-1Joe Orton - 2.4.26-2Luboš Uhliarik - 2.4.26-1Joe Orton - 2.4.25-10Joe Orton - 2.4.25-9Joe Orton - 2.4.25-8Luboš Uhliarik - 2.4.25-7Luboš Uhliarik - 2.4.25-6Joe Orton - 2.4.25-5Fedora Release Engineering - 2.4.25-4Joe Orton - 2.4.25-3Luboš Uhliarik - 2.4.25-2Luboš Uhliarik - 2.4.25-1Luboš Uhliarik - 2.4.23-7Joe Orton - 2.4.23-6Joe Orton - 2.4.23-5Joe Orton - 2.4.23-4Joe Orton - 2.4.23-3Joe Orton - 2.4.23-2Joe Orton - 2.4.23-1Joe Orton - 2.4.18-6Joe Orton - 2.4.18-5Joe Orton - 2.4.18-4Joe Orton - 2.4.18-3Fedora Release Engineering - 2.4.18-2Jan Kaluza - 2.4.18-1Joe Orton - 2.4.17-4Jan Kaluza - 2.4.17-3Jan Kaluza - 2.4.17-2Joe Orton - 2.4.17-1Jan Kaluza - 2.4.12-4Joe Orton - 2.4.12-3Fedora Release Engineering - 2.4.12-2Jan Kaluza - 2.4.12-1Jan Kaluza - 2.4.10-17Jan Kaluza - 2.4.10-16Jan Kaluza - 2.4.10-15Joe Orton - 2.4.10-14Jan Kaluza - 2.4.10-13Jan Kaluza - 2.4.10-12Jan Kaluza - 2.4.10-11Jan Kaluza - 2.4.10-10Joe Orton - 2.4.10-9Joe Orton - 2.4.10-8Jan Kaluza - 2.4.10-7Joe Orton - 2.4.10-6Fedora Release Engineering - 2.4.10-5Jan Kaluza - 2.4.10-4Jan Kaluza - 2.4.10-3Joe Orton - 2.4.10-2Joe Orton - 2.4.10-1Jan Kaluza - 2.4.9-8Jan Kaluza - 2.4.9-7Jan Kaluza - 2.4.9-6Joe Orton - 2.4.9-5Fedora Release Engineering - 2.4.9-4Jan Kaluza - 2.4.9-3Jan Kaluza - 2.4.9-2Jan Kaluza - 2.4.9-1Joe Orton - 2.4.7-6Stephen Gallagher 2.4.7-5Jan Kaluza - 2.4.7-4Jan Kaluza - 2.4.7-3Joe Orton - 2.4.7-2Joe Orton - 2.4.7-1Joe Orton - 2.4.6-10Joe Orton - 2.4.6-9Joe Orton - 2.4.6-8Jan Kaluza - 2.4.6-7Joe Orton - 2.4.6-6Jan kaluza - 2.4.6-5Joe Orton - 2.4.6-4Jan Kaluza - 2.4.6-3Jan Kaluza - 2.4.6-2Joe Orton - 2.4.6-1Jan Kaluza - 2.4.4-12Joe Orton - 2.4.4-11Joe Orton - 2.4.4-10Joe Orton - 2.4.4-9Jan Kaluza - 2.4.4-8Jan Kaluza - 2.4.4-7Jan Kaluza - 2.4.4-6Jan Kaluza - 2.4.4-5Jan Kaluza - 2.4.4-4Jan Kaluza - 2.4.4-3Joe Orton - 2.4.4-2Joe Orton - 2.4.4-1Joe Orton - 2.4.3-17Fedora Release Engineering - 2.4.3-16Joe Orton - 2.4.3-15Joe Orton - 2.4.3-14Joe Orton - 2.4.3-13Joe Orton - 2.4.3-12Joe Orton - 2.4.3-11Joe Orton - 2.4.3-10Joe Orton - 2.4.3-9Joe Orton - 2.4.3-8Joe Orton - 2.4.3-7Jan Kaluza - 2.4.3-6Joe Orton - 2.4.3-5Joe Orton - 2.4.3-4Jan Kaluza - 2.4.3-3Joe Orton - 2.4.3-2Joe Orton - 2.4.3-1Joe Orton - 2.4.2-23Fedora Release Engineering - 2.4.2-22Joe Orton - 2.4.2-21Joe Orton - 2.4.2-20Joe Orton - 2.4.2-19Joe Orton - 2.4.2-18Joe Orton - 2.4.2-17Joe Orton - 2.4.2-16Joe Orton - 2.4.2-15Joe Orton - 2.4.2-14Joe Orton - 2.4.2-13Joe Orton - 2.4.2-12Joe Orton - 2.4.2-11Joe Orton - 2.4.2-10Joe Orton - 2.4.2-9Joe Orton - 2.4.2-8Joe Orton - 2.4.2-7Joe Orton - 2.4.2-6Joe Orton - 2.4.2-5Joe Orton - 2.4.2-4Joe Orton - 2.4.2-3Joe Orton - 2.4.2-2Jan Kaluza - 2.4.2-1Joe Orton - 2.4.1-6Joe Orton - 2.4.1-5Joe Orton - 2.4.1-4Joe Orton - 2.4.1-3Joe Orton - 2.4.1-2Joe Orton - 2.4.1-1Joe Orton - 2.2.22-2Joe Orton - 2.2.22-1Petr Pisar - 2.2.21-8Jan Kaluza - 2.2.21-7Joe Orton - 2.2.21-6Fedora Release Engineering - 2.2.21-5Jan Kaluza - 2.2.21-4Jan Kaluza - 2.2.21-3Ville Skyttä - 2.2.21-2Joe Orton - 2.2.21-1Joe Orton - 2.2.20-1Jan Kaluza - 2.2.19-5Iain Arnell 1:2.2.19-4Jan Kaluza - 2.2.19-3Jan Kaluza - 2.2.19-2Joe Orton - 2.2.19-1Joe Orton - 2.2.17-13Joe Orton - 2.2.17-12Joe Orton - 2.2.17-11Joe Orton - 2.2.17-10Joe Orton - 2.2.17-9Fedora Release Engineering - 2.2.17-8Joe Orton - 2.2.17-7Joe Orton - 2.2.17-6Joe Orton - 2.2.17-5Joe Orton - 2.2.17-4Joe Orton - 2.2.17-3Joe Orton - 2.2.17-2Joe Orton - 2.2.17-1Joe Orton - 2.2.16-2Joe Orton - 2.2.16-1Joe Orton - 2.2.15-3Robert Scheck - 2.2.15-1- Related: #2007235 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path- Resolves: #2007235 - CVE-2021-40438 httpd:2.4/httpd: mod_proxy: SSRF via a crafted request uri-path - Resolves: #2014063 - CVE-2021-26691 httpd:2.4/httpd: Heap overflow in mod_session- Resolves: #1680111 - httpd sends reply to HTTPS GET using two TLS records - Resolves: #1905613 - mod_ssl does not like valid certificate chain - Resolves: #1935742 - [RFE] backport samesite/httponly/secure flags for usertrack - Resolves: #1972500 - CVE-2021-30641 httpd:2.4/httpd: MergeSlashes regression - Resolves: #1968307 - CVE-2021-26690 httpd:2.4/httpd: mod_session NULL pointer dereference in parser - Resolves: #1934741 - Apache trademark update - new logo- Resolves: #1952557 - mod_proxy_wstunnel.html is a malformed XML - Resolves: #1937334 - SSLProtocol with based virtual hosts- prevent htcacheclean from while break when first file processed- Resolves: #1918741 - Thousands of /tmp/modproxy.tmp.* files created by apache- Resolves: #1883648 - [RFE] Update httpd directive SSLProxyMachineCertificateFile to be able to handle certs without matching private key- Resolves: #1896176 - [RFE] ProxyWebsocketIdleTimeout from httpd mod_proxy_wstunnel - Resolves: #1847585 - mod_ldap: High CPU usage at apr_ldap_rebind_remove()- Resolves: #1651376 - centralizing default index.html for httpd- Resolves: #1868608 - Intermittent Segfault in Apache httpd due to pool concurrency issues - Resolves: #1861380 - httpd/mod_proxy_http/mod_ssl aborted when sending a client cert to backend server - Resolves: #1680118 - unorderly connection close when client attempts renegotiation- Resolves: #1677590 - CVE-2018-17199 httpd:2.4/httpd: mod_session_cookie does not respect expiry time - Resolves: #1869075 - CVE-2020-11984 httpd:2.4/httpd: mod_proxy_uswgi buffer overflow - Resolves: #1872828 - httpd: typo in htpasswd, contained in httpd-tools package - Resolves: #1869576 - httpd : mod_proxy should allow to specify Proxy-Authorization in ProxyRemote directive - Resolves: #1875844 - mod_cgid takes CGIDScriptTimeout x 2 seconds for timeout - Resolves: #1891829 - mod_proxy_hcheck Doesn't perform checks when in a balancer- Resolves: #1209162 - support logging to journald from CustomLog- Resolves: #1823263 (CVE-2020-1934) - CVE-2020-1934 httpd: mod_proxy_ftp use of uninitialized value- Related: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work- Resolves: #1823259 - CVE-2020-1927 httpd:2.4/httpd: mod_rewrite configurations vulnerable to open redirect - Resolves: #1747284 - CVE-2019-10098 httpd:2.4/httpd: mod_rewrite potential open redirect - Resolves: #1747281 - CVE-2019-10092 httpd:2.4/httpd: limited cross-site scripting in mod_proxy error page - Resolves: #1747291 - CVE-2019-10097 httpd:2.4/httpd: null-pointer dereference in mod_remoteip - Resolves: #1771847 - BalancerMember ping parameter for mod_proxy_http doesn't work - Resolves: #1794728 - Backport of SessionExpiryUpdateInterval directive- Resolves: #1775158 - POST request with TLS 1.3 PHA client auth fails: Re-negotiation handshake failed: Client certificate missing- Resolves: #1704317 - Add support for SSLKEYLOGFILE- mod_cgid: enable fd passing (#1633224)- Resolves: #1744121 - Unexpected OCSP in proxy SSL connection - Resolves: #1725031 - htpasswd: support SHA-x passwords for FIPS compatibility - Resolves: #1633224 - mod_cgid logging issues- remove bundled mod_md module - Related: #1747898 - add mod_md package- Resolves: #1744999 - CVE-2019-9511 httpd:2.4/mod_http2: HTTP/2: large amount of data request leads to denial of service - Resolves: #1745086 - CVE-2019-9516 httpd:2.4/mod_http2: HTTP/2: 0-length headers leads to denial of service - Resolves: #1745154 - CVE-2019-9517 httpd:2.4/mod_http2: HTTP/2: request for large response leads to denial of service- Resolves: #1730721 - absolute path used for default state and runtime dir by default- Resolves: #1724549 - httpd response contains garbage in Content-Type header- Resolves: #1696142 - CVE-2019-0217 httpd:2.4/httpd: mod_auth_digest: access control bypass due to race condition - Resolves: #1696097 - CVE-2019-0220 httpd:2.4/httpd: URL normalization inconsistency - Resolves: #1669221 - `ExtendedStatus Off` directive when using mod_systemd causes systemctl to hang - Resolves: #1673022 - httpd can not be started with mod_md enabled- Resolves: #1695432 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: #1696091 - CVE-2019-0215 httpd:2.4/httpd: mod_ssl: access control bypass when using per-location client certification authentication- Resolves: #1672977 - state-dir corruption on reload- Resolves: #1670716 - Coredump when starting in FIPS mode- add security fix for CVE-2019-0190 (#1671282)- add DefaultStateDir/ap_state_dir_relative() (#1653009) - mod_dav_fs: use state dir for default DAVLockDB - mod_md: use state dir for default MDStoreDir- add httpd.conf(5) (#1611361)- Resolves: #1652966 - Missing RELEASE in http header- Resolves: #1641951 - No Documentation= line in htcacheclean.service files- Resolves: #1643713 - TLS connection allowed while all protocols are forbidden- mod_ssl: fix off-by-one causing crashes in CGI children (#1649428)- Resolves: #1644625 - httpd rebase to 2.4.37- Related: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- mod_ssl: allow sending multiple CA names which differ only in case- mod_ssl: drop SSLRandomSeed from default config (#1638730) - mod_ssl: follow OpenSSL protocol defaults if SSLProtocol is not configured (Rob Crittenden, #1638738)- mod_ssl: don't require SSLCryptoDevice to be set for PKCS#11 cert- Resolves: #1635681 - sync with Fedora 28/29 httpd - comment-out SSLProtocol, SSLProxyProtocol from ssl.conf in default configuration; now follow OpenSSL system default (#1468322) - dropped NPN support - mod_md: change hard-coded default MdStoreDir to state/md (#1563846) - don't block on service try-restart in posttrans scriptlet - build and load mod_brotli - mod_systemd: show bound ports in status and log to journal at startup - updated httpd.service.xml man page - tweak wording in privkey passphrase prompt - drop sslmultiproxy patch - apachectl: don't read /etc/sysconfig/httpd - drop irrelevant Obsoletes for devel subpackage - move instantiated httpd@.service to main httpd package- Resolves: #1602548 - various covscan fixes- apache httpd can work with TLS 1.3 (#1617997) - drop SSLv3 support patch- new version 2.4.35 (#1632754)- mod_ssl: enable SSLv3 and change behavior of "SSLProtocol All" configuration (#1622630)- mod_ssl: add PKCS#11 cert/key support (Anderson Sasaki, #1527084)- new version 2.4.33 - add mod_md subpackage; load mod_proxy_uwsgi by default- remove %ghosted /etc/sysconfig/httpd (#1572676)- Resolves: #1512563 - httpd: update welcome page branding - Resolves: #1511123 - RFE: httpd use event MPM by default - Resolves: #1493510 - RFE: httpd, add IP_FREEBIND support for Listen- new version 2.4.28- add notes on enabling httpd_graceful_shutdown boolean for prefork- drop Requires(post) for mod_ssl- better error handling in httpd-ssl-gencerts (#1494556)- Require sscg 2.2.0 for creating service and CA certificates together- Address CVE-2017-9798 by applying patch from upstream (#1490344)- use sscg defaults; append CA cert to generated cert - document httpd-init.service in httpd-init.service(8)- Address CVE-2017-9798 by applying patch from upstream (#1490344)- Generate SSL certificates on service start, not %posttrans- move httpd.service.d, httpd.socket.d dirs to -filesystem- add new content-length filter (upstream PR 61222)- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild- update mod_systemd (r1802251)- switch to event by default for Fedora 27 and later (#1471708)- Resolves: #1469959 - httpd update cleaned out /etc/sysconfig- new version 2.4.27- mod_proxy_fcgi: fix further regressions (PR 61202)- new version 2.4.26- move unit man pages to section 8, add as Documentation= in units- add httpd.service(5) and httpd.socket(5) man pages- require mod_http2, now packaged separately- Resolves: #1397243 - Backport Apache Bug 53098 - mod_proxy_ajp: patch to set worker secret passed to tomcat- Resolves: #1434916 - httpd.service: Failed with result timeout- link only httpd, not support/* against -lselinux -lsystemd- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild- mod_watchdog: restrict thread lifetime (#1410883)- Resolves: #1358875 - require nghttp2 >= 1.5.0- new version 2.4.25- Resolves: #1401530 - CVE-2016-8740 httpd: Incomplete handling of LimitRequestFields directive in mod_http2- fix build with OpenSSL 1.1 (#1392900) - fix typos in ssl.conf (josef randinger, #1379407)- no longer package /etc/sysconfig/httpd - synch ssl.conf with upstream- add security fix for CVE-2016-5387- load mod_watchdog by default (#1353582)- restore build of mod_proxy_fdpass (#1325883) - improve check tests to catch configured-but-not-built modules- update to 2.4.23 (#1325883, #1353203) - load mod_proxy_hcheck - recommend use of "systemctl edit" in httpd.service- have "apachectl graceful" start httpd if not running, per man page- use redirects for lang-specific /manual/ URLs- fix welcome page HTML validity (Ville Skyttä)- remove httpd pre script (duplicate of httpd-filesystem's) - in httpd-filesystem pre script, create group/user iff non-existent- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild- update to new version 2.4.18- re-enable mod_asis due to popular demand (#1284315)- fix crash when using -X argument (#1272234)- rebase socket activation patch to 2.4.17- update to 2.4.17 (#1271224) - build, load mod_http2 - don't build mod_asis, mod_file_cache - load mod_cache_socache, mod_proxy_wstunnel by default - check every built mod_* is configured - synch ssl.conf with upstream; disable SSLv3 by default- update to 2.4.16- mod_ssl: use "localhost" in the dummy SSL cert if len(FQDN) > 59 chars- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild- update to 2.4.12- fix compilation with lua-5.3- remove filter for auto-provides of httpd modules, it is not needed since F20- core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix a potential crash with long headers (CVE-2014-3583) - mod_lua: fix handling of the Require line when a LuaAuthzProvider is used in multiple Require directives with different arguments (CVE-2014-8109)- require apr-util 1.5.x- use NoDelay and DeferAcceptSec in httpd.socket- increase suexec minimum acceptable uid/gid to 1000 (#1136391)- fix hostname requirement and conflict with openssl-libs- use KillMode=mixed in httpd.service (#1135122)- set vstring based on /etc/os-release (Pat Riehecky, #1114539)- pull in httpd-filesystem as Requires(pre) (#1128328) - fix cipher selection in default ssl.conf, depend on new OpenSSL (#1134348) - require hostname for mod_ssl post script (#1135118)- mod_systemd: updated to the latest version - use -lsystemd instead of -lsystemd-daemon (#1125084) - fix possible crash in SIGINT handling (#958934)- mod_ssl: treat "SSLCipherSuite PROFILE=..." as special (#1109119) - switch default ssl.conf to use PROFILE=SYSTEM (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild- add /usr/bin/useradd dependency to -filesystem requires- fix creating apache user in pre script (#1128328)- enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf- update to 2.4.10 - expand variables in docdir example configs- add support for systemd socket activation (#1111648)- remove conf.modules.d from httpd-filesystem subpackage (#1081453)- add httpd-filesystem subpackage (#1081453)- mod_ssl: don't use the default OpenSSL cipher suite in ssl.conf (#1109119)- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild- add support for SetHandler + proxy (#1078970)- move macros from /etc/rpm to macros.d (#1074277) - remove unused patches- update to 2.4.9- use 2048-bit RSA key with SHA-256 signature in dummy certificate- Create drop directory for systemd snippets- remove provides of old MMN, because it contained double-dash (#1068851)- fix graceful restart using legacy actions- conflict with pre-1.5.0 APR - fix sslsninotreq patch- update to 2.4.7 (#1034071)- switch to requiring system-logos-httpd (#1031288)- change mmnisa to drop "-" altogether- drop ambiguous invalid "-" in RHS of httpd-mmn Provide, keeping old Provide for transition- systemd: use {MAINPID} notation to ensure /bin/kill has always the second arg- mod_ssl: allow SSLEngine to override Listen-based default (r1537535)- systemd: send SIGWINCH signal without httpd -k in ExecStop- load mod_macro by default (#998452) - add README to conf.modules.d - mod_proxy_http: add possible fix for threading issues (r1534321) - core: add fix for truncated output with CGI scripts (r1530793)- require fedora-logos-httpd (#1009162)- revert fix for dumping vhosts twice- update to 2.4.6 - mod_ssl: use revised NPN API (r1487772)- mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage- add patch for aarch64 (Dennis Gilmore, #925558)- remove duplicate apxs man page from httpd-tools- remove zombie dbmmanage script- return 400 Bad Request on malformed Host header- ignore /etc/sysconfig/httpd and document systemd way of setting env variables in this file- htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109)- execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured.- fix service file to not send SIGTERM after ExecStop (#906321, #912288)- protect MIMEMagicFile with IfModule (#893949)- really package mod_auth_form in mod_session (#915438)- update to 2.4.4 - fix duplicate ownership of mod_session config (#914901)- add mod_session subpackage, move mod_auth_form there (#894500)- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild- add systemd service for htcacheclean- drop patch for r1344712- filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712)- rebuild to pick up new apr-util-ldap- rebuild- pull upstream patch r1392850 in addition to r1387633- define PLATFORM in os.h using vendor string- use systemd script unconditionally (#850149)- use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists- use systemctl from apachectl (#842736)- fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks- use IncludeOptional for conf.d/*.conf inclusion- adding mod_systemd to integrate with systemd better- mod_ssl: add check for proxy keypair match (upstream r1374214)- update to 2.4.3 (#849883) - own the docroot (#848121)- add mod_proxy fixes from upstream (r1366693, r1365604)- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild- drop explicit version requirement on initscripts- mod_ext_filter: fix error_log warnings- support "configtest" and "graceful" as initscripts "legacy actions"- avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file- use _unitdir for systemd unit file - use /run in unit file, ssl.conf- mod_ssl: fix NPN patch merge- move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise- fix htdbm/htpasswd crash on crypt() failure (#818684)- pull fix for NPN patch from upstream (r1345599)- update suexec patch to use LOG_AUTHPRIV facility- really fix autoindex.conf (thanks to remi@)- fix autoindex.conf to allow symlink to poweredby.png- suexec: use upstream version of patch for capability bit support- suexec: use syslog rather than suexec.log, drop dac_override capability- mod_ssl: add TLS NPN support (r1332643, #809599)- add BR on APR >= 1.4.0- use systemctl from logrotate (#221073)- pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+)- really fix restart- tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default- update to 2.4.2- fix macros- add _httpd_moddir to macros- fix symlink for poweredby.png - fix manual.conf- add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage- clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir- update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog- fix build against PCRE 8.30- update to 2.2.22- Rebuild against PCRE 8.30- fix #783629 - start httpd after named- complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild- fix #751591 - start httpd after remote-fs- allow change state of BalancerMember in mod_proxy_balancer web interface- Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf.- update to 2.2.21- update to 2.2.20 - fix MPM stub man page generation- fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd- rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names- fix #716621 - suexec now works without setuid bit- fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve- update to 2.2.19 - enable dbd, authn_dbd in default config- fix path expansion in service files- add systemd service files (#684175, thanks to Jóhann B. Guðmundsson)- minor updates to httpd.conf - drop old patches- rebuild- use arch-specific mmn- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild- generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script- update default SSLCipherSuite per upstream trunk- fix requires (#667397)- de-ghost /var/run/httpd- add tmpfiles.d configuration, ghost /var/run/httpd (#656600)- drop setuid bit, use capabilities for suexec binary- update to 2.2.17- link everything using -z relro and -z now- update to 2.2.16- default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts- update to 2.2.15 (#572404, #579311)2.4.37-43.module_el8.5.0+1022+b541f3b12.4.37-43.module_el8.5.0+1022+b541f3b12.4.37-43.module_el8.5.0+1022+b541f3b101-ldap.conf.build-ida3ddb7368c5a9c54a13b3b50675402dd0eed4d10ad85d9b4e29de7e54bb78df28aa247586462mod_authnz_ldap.somod_ldap.so/etc/httpd/conf.modules.d//usr/lib//usr/lib/.build-id/14//usr/lib/.build-id/99//usr/lib64/httpd/modules/-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -Wp,-D_GLIBCXX_ASSERTIONS -fexceptions -fstack-protector-strong -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection -fcf-protectioncpioxz2x86_64-redhat-linux-gnuASCII textdirectoryELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=9910ad85d9b4e29de7e54bb78df28aa247586462, strippedELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=14a3ddb7368c5a9c54a13b3b50675402dd0eed4d, strippedRRRR RR RRRRR RR RRutf-8d70bb28f60e52bb92fd0d5a1cb2bb2f8661d4104b74291f5994ec9ec77c00166httpd:2.4:8050020211112043353:b4937e53?07zXZ !#,wE] b2u Q{LR~.&&բ#͔S$iIQ50c çfG|4V6ܥ9;srX69bgꄣ§Ί1$x%A:[`o#9!Etr ]E|rl5- }=/#wĖR'<#ܲG Gsk-U=Ψwxi@QIiy5t))Ġ/cXp* 2%i;C`%)xK~5"faN):C=}wHxB&t<}2L="H&'wb&2d~ 3w4HEF7?䐀'"M\w`~P7Qdry6x!Y2mLY‰n!Q'c+z:fq2J&{KM2;-Q׹/4Rr$OgġtxVz]cQҶLW=>]JcU5 wN$6pB1Р]Ԍ{5/jeuָ̳2rKr j9霸j7&g-8*G#5IY_(I )NSeXRZ-C&yR wΜ9m%% }3jo[0{pv̓[69-ܑvJV~X77yX3*Ŧ4h6\Ǣ9v?^3s{`K`>iuY!"-:m2nT!{eE5r Eb6A`*R i*E_p Dc:1!'kk&ڇ {G&W|{~SJWIKqC z\A/ ig7`m, {SDuxfyBڔ2_?I&L‘e}^-lAChG]gd2y鋹"k6L!prqkDC,kGidOrԞH "E,4 "9skv%*8j5:TQgHy=B~!("͂\a:( JC':*͇FySꎝ섩+ʏ8m>.vuJC}ߦ 7̇BߓkBAu\tVŝ  : pM^@[$|3_AYN6g4G,uu{(s=/C?̜s }Z'>WIɥW`Ayh80k8ϻNKLDSQG|6qZI.گ#h a6]IG$D93mI C!/{E:݌TCk7kb >,lv:-A/23YSuně tL[ ~Qi0I`εS8-:cLDY$L0[JL GtM}U8"gȮY4SKiYYڮoƶ ~a; sb5RHNX,'vRW:;BL 902 v|,C/3%@bh ֦ʊRjQSiPlU)ưY YyYhjH;a? {(STY ݩHGJ@kTu4Y{wr]WH~ 4&-SK WP X/CEN&yEkӕǘP摪S"$0}:[ >gES`u/v/mlhl[B<[ձ;a:DK;hUzf1 #U+ ~ 9Yy[)"\lX#A[{gOޤԊOz~ G~ߌ=Kzwں|4-Wjr%ЪlU'7 .^xN)Wߧ[M_/MĆCX(Ά #p{EbZ6 }յZH궩g3bvo R:~0\*e&LlwWg )]4Jo1w%ŴH]A[nɔgwݱ<e0Lj߈ uZ%*Ph=F?}%݊G k)v+ Yt.lDM:ZgtOVTo}v y.bxbA'+hNoUv]ب<7]RܹWN6"|, J)1]tZ[ uzS-hRi9){iRQE̘C9iwIQׁ Lأjƕ\6O ,d0d2X" +6S&!=zpˌ;pm LdVf|IoZ  G.n2,(N$S7\$ߌk*v \yq\~`k3{!nqO4yw{q=8k2=S=,\.5D%|muX&Tjd6 Mrd1pl%w.ۘ}F@ra@J_rb)º|@L5u_zbDYߙ=BR&/G-/ Btxf5W)IJi묩!ҟ_#h4qGL߶ j,4<=XH1oύz50\@m(I Y{ƒ%bR}UYo+/4譜D9W|0Ga8\3ۭSZ:BXjob0bT8bZ+ 2=T\HqV?o,C86vq1 5PV6g$*y[хTtVD'uUWm.wvY+IdA۪J^@ QXR' )O!mPJS~?t0nʜHG<$ \1J4,[H* E:PXyShziX3k@0 aB'eryZ Ǚs b@>i/DT+J2q,XY|}y;J6.7LZmZz3_g~Auj:5b绰$X t VusJMs,:fS]9hbSG{] P'FawFs+$P=Roh@7ƪGٌ"̼+[1=FtܧhQb`/2D"u$(ojƝZ5G3j xJTH^T(ʰ`DDV7pASDmnm:cU xiQf"Wyp.J=}i8烊ᢅQA8K"&`qD꯱/mQ$"Rz1HY\&GNZYO~wuxPt)b_MN^)'M/ʟw 9OPWq< -{B\L+}A9^NX1&&8 X]Y| v RWqp`A7Pa?'@.B-߻w5g^R톪]%X&f6CFVD؃őtCe!؆?ٷp@LdHJPos%A`nbhy8̸S JX.ZEFZ}!a ZVz#Ns]HWϞ퉕]J5"l;1qkTp!P[o>0)uΌN),3 K9Bw(=u GOKt9([CDLf)IZcp.g vKEN3f,Uj9$`i7IǨ0iFF cVم6ef(﯇8؍Z8qum!v7 G:y8/k!%CL7j<xAJbfhlAh{bU;Kʣ\T pQ`&t2MB-|_ۃ:[z?'}YCK5s8Ր$Q*Sct- `RߪJ: V;oB[[j^l=+DFk\v/a"WsҤ[ &7;SP`56Cі"q8j~yFpE\*ށEUP`/K?cԗZE0pV$<1XNj 'T2*dZH$k.ϩ:IFf#LRءE UINg{1v[W!9ʮ̓v}|Ԁ4<%U 33f!ͬjKJwj<^pU)T fGCs٭LOXD'+OPul饻S%g&y.sk`ow4k9!i8@a5hi,퇩X׾&PQS̥YXl_!^XMJSN HNjPY-zuA%lli1LWTV'N``PݲH%$z1EL\@7e'ˉ!+\䄅_FZq2ˆuBzò[hs/[50]O8!Ynfr_nA!a}= ޛGCש[B^WBp֋ FD}K>i}}H^t@ɫسXS{yDŎ:GC„]`1DiPSizo]ՔgĥSw!'& -?J'K#B}!' S5?b2:Ͳ] 􎫝n ގTqߏx.TgĄu)U88B7{^ފCH lj%Act%!Q(Qd'hL>x`FeP @:<^ {05 +5)5L$r!\9֛ݶ :ÁCGUj\Od*G Wd}ks Z,Κ#h3@W5NuY2nf/w 򦸶Oɠ"Acs_@ p kS$a:K7Jgf$#i|?ugLg$ ˽HZء*|opbh8p+ktgJCw 4dslE&u|vj 4dپq0Wjk8߿aMZo:l80(~5 Sۙ)$Zn'5wN>nK}`֝$XP.KX&6~!ޔjqH{M[KGBY\&cx/_˺\ v"Js$T_` [C(egn"z ;*?R$cYꉫ/ 6A< U2hnDCx]/%}cΡ}H+-P )ܪQYQ/TG$^׏>T'yt6DL(luhK lנmgx,0.T*nC^-MiZSIm,qSt_%|,"{Zmp~hx'ΟPcЇຏ]3ʦ8hR`$ ֘u%ޒp3"k@7wvUA=;5#,qC YA-Ub۸n˲eONTHs:C² ^ω8riiS[PKhJt\5:Ҫr-LBfjaQUK辟5w`Sx('>|`@6|dGa!Dd_d<0yé*rTFK(W]"z 0ф h w{<Dxc$齱sdK<r}\*si04I&LbD; pEԪuf?zYƞ+ZD*[-}ĊF0a2JJ>C0Fe199uIǚL5hg|\)uxvNA@Q*N5/ҠozԽٔM}6צu9s\+.$VqUpq5CHೇ2Up .464WE$'}^6Wq¯qS7lHEUrP:&C~'k~zsqU)3m i6{۵J_wOA$*7nD WH6{X'XݵIY Rs"L6U^GS za۰T*€1A*\?#.h;F:<ɕi֝ElLSұg /(??k4yhIϡ7tB4\/[=lʆD|hPwY:UAʾ,|I0,fV2P{n&&&gcVm:rXD As'D*J1*n? 'XOB~G;0-;K圳gƑa .*RkiB]̃ٯ΀W8Rآ.1I~AP !HzN(*X4司{vSNm䍩ǺF<%_F.f;4HʔBu~uSU!@11:`Y\3+\x~ FB8b>׾q0P+.8t,FF$te4&ᘡ"vFyVl<S~u4ivt?|-6AQ+dēҞ)V/m#;D*kEe e@9?1j?`JPp]zeeʙJ\;a)sb 1U=ݝfi=*ƢykF $i0K/ˢr/A:@ASX_<._wF6'Xqv#G{8K; cwv$S˪I }gLI$ -|"z( OyʄĆVs &I-xU/h*xJQjoO;!#>ǂYMC$(| ?2@"rPdq"XZ"&:tX9|dx !V@ ̜.dY1i%![SbEsZsN7~x ew2 z@PPg牢)G[Pr#c{l%SW-mtBÄ.2WB܎EѬ}sY໸O 0Gtl3C]ZYgŷGEtMHha;?Qg W.jk~Χ?ڽt~6,;Av r=A"w~qEX95skE|AX>r;wTӘlK5w%K~!k]M }׮玔Q1R9'b;3j!o_$nƢ(^d[G+J4EfnI[JId+# E"~;].k#rv3}`E5#yGrOlfMNf:5}pTUMghh\ϛ#o#J6_=R W*RalM>:P6x^,01v߱EƌtQ?SLlg(o>ߐ#z)pwsڄ>5xb `"Pc8!} 1FUwp3u0WKյhr<9$8ꚬr1r7Z %{ -av\^tq#ay8+].mCE'x$D# tqp}/iCN,nSת||p (γ1~hW5B?c-94i::ףAl#*4݋ev'3%'p\[o*vZR3c !oNlѬGM.݋$[ JuN9SuM97LجѫK:u1n!"dxw6(awŲ7wb͘s.my3Ct ):=~B?pb\0|xwmxOP,уN(~`r` dPZ%[(O"Q Rڥ\]:hXmQvxr=)f2n5BW=fb%iRylnqHEuEIaodUD*z%G/Mv le46۬Fí4QSUҧC<|.;vqkYdHɂ4(ч/ 5k$>؜kuyYnH* !ͷ/[9lISIkcp8(|?cIjOrK=anLRl]g*T X{bj*j,W8vOc+OA^KaU!TNp.22Gi%Ac)q_}Miknr :8 $m6 T(cdVԂ3qkݿiM*Fs?br}6:!P5]K_Q8O{F9;1šhI6N3uX ]Lj'4!dƤTTja";ZײH-CK] _U˽ gYHN8o| `,jeV{2 [?] r Fn ƸE8U[1;4F6;<=M!AZύjd10dZ4 [f^Ğ6XL]$7/i!| R2YqibsgܸC`sȷI+j@s;i\tc&] I);MIcN?VW'3:?hpW{ÿMp-S:#8KQ>qEd(aPXj\ĵ75ZQo&$w ]Î*~xo-+U bӪX65ո ÂH#,թ .^kHiѐqN?򢡩Uydk: BDS#3' 6YnK41OZE.i? Wqk<nj PҿꪨS@5F״ k:T})wZDD.+6QowCwy%k5($3j)[SPe j̑Q$XP6ϲЩVFaHǙT"#H$|ysMz~e$*T' AqYc/8YEqs[ߋ24u6G Cf;@L7T5 (10wP\߈f ~~29z1=)|Z+󴠅kb#^gz#T CBݓMeҖ2Y>ܱ/tnA4M] E)s-'GP9$4'sO_oMX%bZIxjkԽy( <_KlYmmFff*'QMĽcv,l}B|B3 Qe}1B@p": ձճF>F/_Ũ 3uEƨ?TsĚd I#YkJ54|K:ѪiMѫӌ: rsG'T9Q'XJN{[?`lIEdMJȣb~u8cN[ӏ5. S= =Dj$lIZV}v1)cΐ͋:dB-AU@Iϖ~PƤ. ڣ(ԍ?b4 bH,\K4Ng0Xo-]EP|^%Q^ɎI~F)x2K w,p/MUCn^Uզc|DCVgqfi;֙m63&נ˘]K6"O^fmiMj˃vJLb\i2&Rܺoi1t^RVGiP 6n-|u^#9(k% s;XJMXKj7) 3gOP&?N3H\{ b[| v+l㍝t %.#*X|I0+pM%?pF. 'mчypkt{͔)H)c?W$Ph rs/gZႃƇPz3+i IwǹT72oW 9G Щq+Қ'Í_\(N 2vn T'3g8s(ƦhR@n:߿r2VP;)>.\%/[\K#EU %vtEV<[|li]{zNTR|Bgu[yV_{󦁎O)b(-ARkî}Z^=aՂ Ǥjj/ȸ4DZ[c ~~a*C|io+cE,d*m<)vwtqyO#6U^ Y Q0HK1k?gey9> o) s|٤KlTעj{U yef!6L_'>t/R+c:׉PtpG7ߛ5$6c s\:V/$r I}ɸN8՜l}r.:b0+: qKn8F*Qj7芄 ݐ+5^4[ &Zl 19;}M1iS)Fy~kEV$0u:K^⋝ZC$X8푄?+F C3ޛYʓ| [a1yYA8J*~1f+ _lwǔ4#͌ pn ߋ^w<XjJ#DPWmkd"D.^Fld-\{m߀JzS`b 6ʂw&?S>q.Ӏ4~E%.maT|![V!ru\ )؆mD"ofDYN_@a"s\xe@ oJ fRRWش_NEP{C4:rATyk(C=I-ZvбصVb} 4"(4/whY@ b'VG!τO!GNe9@qJD(ja; 4cii^Z"ԊiGAdmh Ĺw1^\lTg[6k5}ĦK9!̼euP3!xcaf2!Ke-^=nQpo9otjCl[fאHf xP;|^3ϥ16 SlB]dkzq`<;Y%3&rf'G7'O3%Q mӸJs0E\WA y[̂Dyc[1GJbL,CA7|)4~ñ}?Q W]Q8,@.or4mx/HeG-XR`T)3UI[̃ߚ&҅7\U@bJzƁBG~tldu"_uI¨Wy~2dmO0<ԅm~}Q&]Mx*#5'W])da\^&5;C(̀ςuբ-- rrZ_o_ "Bu{M)ԢR6c3ވIeVgNuC<Ϳp̓J.?0',k_̑câ3^_vĖWn~x-^[BXabL;pkw <{O`o2i-mmR 7ouAqaN鬔%c/bYQ5\8>iNCj!0&՞/,x2@/QTq4 0յ|ۗ19*E=6G?̥i?V:t;А>նaS%K^iNc>D kU+c_'#D(Y YɿV~t"1tNN WN;gwIy>[X~©gZC\Ή2-Goyp#D5ce'M,w"B+3pvF b{vt*6ԘGxBf/k['T~lbt:'L[hsqV12UPzPUђ$\ʼnll*&iV6$Ho6Y)5U⛎ऒgC rp  /ZIݸc2I"¿(ϭU|_5mO"+tMI>&0[p/BֶyYh|nj)|EC;Cb ~!f^ʑǂ_ԡ(rBGcu/8ÚBce:ٰg!~61Mzّ3'O{|)ѭ(,6v 9?]d*)K˪yap5(Ͽ$iV)++1sRH!Ǹ 'μg&Q8Ri GLaόzYX:yŠ^EcDGjj#Zm[*&bF ӛ-k>-va.ewmKH'6k':͸nbR 9d&6xDL-WQVf4I$F?~5,;)X5R56 "t1 2{~ s_4*M.1Ŋ[!gBkOuq߄;"'ݨ!{*OeXzDL7/l˙*(\ }\=ԗ:˨\L|eԼBNHm`M3 %Th5\?.sݬ} A(v~ 80#$@Q)ǝa%I3 mg=HA>8ۑwU?4%'ٹ~x'gDޛ_5q/)c|MyR'eZZà #1,P2])N9: XO"ەπ{lO5i5੦U!+#BJfz $ƽ&{aDAKPP3βGx/w4@:hIjiPX2M~yaQ>@hwbِ^w0fb(r)/ to+Ta |.K9j$*AjꯨѹvE0p(,,VhkC&mTVS wsGC>B;̉Bgֵֺj݆fl{C@F5 7e:$v1%cۋeWٛ*{DpJC̘{4C&ԈLAq-Y[?Y;sHs8L81UL#js\ӘhMK )~lL+{Z= {kͫ2q(a7aWۺL,qAy_W[uBbiҴ>_xI혚**[[!B| /<]E.e^KrNjXB?HO͎!@֔~;s+6l n3ɭ|䴍Mē5MÙp/(?$q?Li~Rur}&휱cpIڪeЇH[TʼnT)|3WS6ˤ2gM,fiiէzt!Bxa:zz]HoMrw"ttj Gcz6 SYl KٔnE.ck6{0ub\v+~&A-8); Ǘ!GJ[iHJPH}%# '$oΪljt\lnkysݱ"ٖ G Y⪂^b. ?e,K[eE]'{E?xюf!c]YS`%hvD3Ԣ V&V^+d،#1c?R56-wv'+YW"颍 Y&~}lB_ u뱷H${۶o ҀmεӀ*a/CIO>Uw:USOs隖ϖ!zkPy9K[do6ޣJu({z6$n'PDŎzH& lH -}x rr:'5LCf 8,꯺W{on9@'3dB ncCRS nB5VVFGwy6gCI {`Q7fc!Ҟ~_ފZ={68ާP6MG <eRs9C^ΐQ98 '3k}A)ȟ%wâX_2lTZj:Ş~8Z^RA{Yɍ@O緻q=h2?]LTQ3kn})(7ud\Y]\x1i2G cۧΈ0& f-Ís̜C5H_=j(9c_nʼ%Y:QYE@1B< D%` ct st;ž4tCTe6O^ER@ 9#xX[jOpIhSaО+Á-=:Ƌ A8Q\H( gH/H)o@Ϸ/||Zvv\bQUT錃KP lo{f9X1hMATǾGݵ c(rp): ēH;I_hjKǾ FFpV֖p3 mdu}pd#uL!8~96_e|:KrʍܒRD[!O>8ޯ^~h*Ʒın2Z ^]Z*TxNCxu U4ue/Wog6h6v,mƣ{F 9X:a(&܊XT,A3 MkX3.6vY"Zl/e=\qODv-MH)<#)X-P1߭?)hcxզ=iJ*>!N,Շ_̀09mުOz^nk΄;+Ƴ6ݗmA70PVb3r{~_=EV scCK23̏Э `* -x5v'ޫ#8/hF)*KӸ Rڧ"p0jC] _!oX=q$+,YzB'+qH`~bsC' aʯ*;['~ӮL㛪|7֟9 177M^g+ +)OeB<2@er *]g{ٲX#TV6:j(I7b0hhea=Bd Nr/NϪib<<+j # Zֻl _|~8?\bTNFEr-  6J m]G|guNBU쯟9i^4܉H:x<1/t U˼d'5{hQO1M!>mma>쳿ь v]HtЮk6\ͅlR_2thTd3nm'Xk V)C U `bUۑj</KG{x?X]5U ׾yĆ CF:u?.CEb/'.+mxBet˘%7D.oqQѩ-#f֙ "|A5˭ulwxB#F@t,&KcT:#ip_*dNaR Vpn/gu@D KHD~sh&zyed{8TdG΀xH-vN-*Ekew;.ؽF@q,Q-6#S>0[y1<;֬TpV| u }ؘ fL 媟ঌKq upP2Lu1OuN;n$0ؕ%dϒ4NU!41NP2J8/ɣV2]Jg[ z=F#ɑX—yDUKX5{a笮`p[w+[Ƞ0^Ь[>h6UԑCrF OZFXȼNK~P3*^Є;]h[rRixe1U f"$9b[43-jIɫ&;vj&y@~8ֲ|q p$BG(.I "LIJt93FEԩ: !KTJىKTj9N.<-4C D٩hVeI+ݿ煿s.OhW:11>9m@^k.1v*}S XJ9 A}en)nӶ&D=B@[p*͢t4/[U|P:75}@κn݇!"W,9of$ӽ u&nemh@3E@+-?,}~܅y8:9,P%e1PJxBF lxvE9J$q­yq1Onzvv6%UTSqxAkP,b#8Lа›O&֫f="IߟAQ`HQ9=Nd-n}֝vMh.|SioO_%yXUTƻ6mQt4q8T7a|h[eA6v}RSdDHO'k3<͟N$@H| mQAT-3^ϲwN-z'[9X^qKR`[N_Y/@Mu5 P~N1 +\ELjGoA'?e%n`xb[~R1;DhᄌyljIHGӤ#ϣ8wI^[6ABH&R.%0 ۊ!~V'qE HaK'<̣Y + Nzv)Ml*XDve: _MyޒA5ܯeZpjs\_78O`! \iōm; bNuiiLJCQ ʡ*tl@e'IP[MZ[ɴni!;:Girk[>- S_hoc1 >ѿSc2AU P4׵ Hqip%YxYXY2TE8me .?OUzn, ^c]JYE=ڑ\Ѱ~L@ @RrjD|/ &yL"A^=ԙ=FVDBjQUGbcPp!|0qJ9p irHozO>b5·%5/7sP9ѮH5ga2R. %"L{˩vm?kB^ULN(JtIEG]6)X*a$\D( Ȉ]R^4bʲ|CJ%+OQRpE*UٳS98SZc $C4Pq~ܩ~Ul-HI1}>+xB-k9QdN Q 5!S.x51{dsNW73;v7 p&$9 RΚ1} C3#+~.@IԌIz{3E%ENh;6@(vv~GFFSLm*"8`ViY r/ uPiq>z^cnrvfI#h=ʲBhs8I[̏Q%xّ[$O|K#ηF,!D\$ dC08in hZ5r@.$澮 #K+bhEr9lsMUۺ2u:zೠѦ7=֑tTlWE }A@rN4MSXRY;Hw:bn)B>`HFRnEj|6idF/_Q<\m?"ÅV/ߠ1ۀZMjGG^; ?Lk=зlgʔScBۯmݸC۠Ci<څ?R`1_8^ٙu.v .dݓ/UÃe㛁R)z` Io)ޏ 7J׶yO\Jx!IZ;RyJGAٟJ2naYzg_$l[G!rqTOo3oX|44|ANdXrc %PΗ+#Ř+HBn6q,Jg$s+Q}4{tHLu<%ݩ[?>i5~9yWI{|.9q!nj;Ħ3ӌPl"E~T';lK0dPRKэޓ \;ҘfHAۯuіFkY @p X~W*d]f./? AR5PF.13p&K_%FcxˌՏp%&w AQY2>_5NɃV˔BAQ!2kmziPSv-N033q ]z%6`} vSn J>Y$,H*>-?AҩF.U?|5A!|}`f\~ʍ7~eց+Ur`e9Xƹ|&{gSI{(R_IaIFtvo̰^P~?ÚYܺvn %J\g`yTCOCH=_,޳"T.q`͉PF82Dw!Z~|A+ :S5xP ;?f0:$|Hq:jf78nJGhlwSf Y+qI%IYwtJ  yCB)j-e8_dg#IJ=nL[| we>%NzRR r碅$% Gb$)-6,/d~=5 $ \pnI@QE}PZ#\]ءĠp:XDzc ڏ3FWCԂ%K[ s]S6CCw_Jaf%A| OYlv D?6WC> `#sgl.'tT[@$M{{"ͽeFA|'ؖn@AiՅ/l50h]vZޗs\e)~&pV.Iٯꩲ5I;{vo$guc]c%ِi%@RJX4j ӷ.dҵx څX*lb\ g0|-ZpK6JUof,#iFl)f{~aY+qt5rSdiBDɢ C0`C-taIwBt\+uOZ.;oܮ:g/ǼKR -}옚]P6$v{g|Su)΁c:ydxNN.c_xsmH-P'ۡEmf ~)JF=2L:[PN]>N-5)Sf*^qEcbg4cSliXZT6kYޚFG+9PGwduy#A9fBG/C"Y3ȍE騆$la_:ꋒuv|mLjI$%ig[7a8B֢쮶I*sj.FFp'ѩ9eכ.Sӱ^}V47I9#E$|BbϻM?(##u,xQI3BN[,af+QtZ.σ/"z* miޘ筦]YXb؇^]_s~φFfx115J@&{R8%8fuqHC鹄&eca Ū^KXlpb1 3[nڜfG ~^iu]^C?j4kהPN rɚ`Iv\pVR>e$LkiNو<5܊R5F0`-2uO;vES_V{ K$EꦑR/o/ ]/I]#R8;jUȱ*ZqMڱQ~B -4g]ycRn )FpSEa0fę0e#oX,4Tdw|AKjo0~׊q/0 B?4 PsRU?](8Ng-koޜ_h/oUl2Gn&Q"Uһ-Tx01Kÿ;cD$%ok̅erOZ31%it?#ȏ/OJ[vOu%0 p03$sfplu)ˎcRK7c JfALD8"qcܜd4BJtdJpo"xIWy$EEBTqҌB#)Q_U6e ˇgq90@ڍ)3?UG't XH4UvfG:H, |OJh~P}6k8?%ApP {ze}RSBVLH ~w{monj"dJc)??ZNV)= 2l p.O!.;ʽP4'?(?Yx:%4GZ2rR.z>y b=al#;9]Vć&\z]q.Wͳ]y:kӡ/m |r*sP1wd+c(}V7cp)g-@/仿,L2EIGjz2q* jpsdNj# l!**9c0i7(YXLy0m-n1?%ņeZn<&SgS-n"6#ax&Bk\eِ߭X*([E`c\.au(CJcD]DMQl{~"z,2,s _2+:#Ҿ\[n0Jd}u흒ED-_F2A ÐS_Ak;>B%P?)k!#+}5l$*aHjW:d @=8Mx6E~T;#9wERޮ^-p4{zBg@rRm=)w{-#1E+Wx=qdU6飶[pNJQ钤eBOLvy Zf%`TITؙFn֫${A,; S.1%w=G`-|”I-([I7* hw|\,YA4]^[i1zSe V#љ,'9 Z@/},UG13'ckzL;C91*?Cd" 椲E7 $bRmML'"oѕP$2482Xۛ uJ9KQ{P@)%G2@a?SK,]sиp֔j1WQ~8u"f 虖-.`2{B4^DuoCNp9Wg} s嶊8lGj{mMؖ2JihǝZ?jᵕ HChëN-f"},':ǶFdgw䆓yq!>_DS/0.2ʎt&7yyp׀;32E$G郎_DٓEd^{1T tL.?j$S)]WChy:ѐVCSYv;UPJ{T)hj'yam8R+z?@ohdt!?\-Z*N:b#!*Rw?[XB;eQQjwF''nTELcnvsou q)*ygShӂ6@˯gj&YqPl69Vb%juvQ<ľiOڐN:(7,?4jVJO*N)2_a%v-,c1҂evW.uO} N%{vMF`_ݓzw< HXeMDѥ7^Zhr8+?D28,]f[:ΰS^X-t<8t>w[W_.hL+qvz[aZY/Go_(s1+_(yƳiy$|g.AUcS%yHuxlɗ[z $1}A.@pXNpPzj9}^=ag+x ?B"Rxr5ćim,פ>z@% ';{X[H*y.v~M7 Hxe G|yt [*i9j{XhlkL'VqBbuBvDVuVVՎiXl[aӵi1msӊX2.׌>$*"?Sw [QD ^w"\^X*\ %^a=B&ib$SY6KbFpBSV. `N7 {̨i`᠏)4tn%,9ޮCa]{.Q%,h٩~8a;2tJ.Qۍ"wBbn(<,vN$^˔APa4v3 xwlf)b]GXtdf)JcEdRaCb@26,v/}JM!@ zRT+]ECb7it[׏qeHېjC ~~Euشh.WX@;Ay,PxV̽D>:45j }ѡW{TJ]' *#:PpvZbD" *țC#P޸BHo%ic!u8M*{lqt NQh) a+޻w4z G 2Y%II>\a1@@"CX@KPغh Y0,RR(~XLMbt0}x Jebִ xGAی({[念]tbܦ-G4;xVO0аJЀ >U8E #1XcsaSO6L>t%"u`QcU8iвJ1ojTZ})(4cl8 xeҒ=;?|)A_9h!tY<sz֪{oYڅ"=a<>O!Xz?Wb;$ Y}#0ɚe!ȿ>Ty /`|F–Ο 3 |сZ)K1[ ,EL:Hn7;xU[2Ԃ&t5ѩPX|C.?qeF`R Ųgsz 移籆t,j8yzs|RLD#;ƤqVlr쇀Etauja* Ǩaeq }\lፏpo=E"g(ߴSW7&_3|[\o넢5 ?EC +U=Mh- BB=`RPfb]iA%vY(Y9A8=˜oL)A;"D9¹R4s,Ѱ>镏y/!*7S$L^! ;4bO8E! Ĩd=U/vjN^MwV)Yrvw+.Vҝ#lL Ue9Km;WO2%aY@>Hri}W&6 GǗYu+Ќh*m O̞",0W3*ZHl)%yjU'\Zm|c I[Wg*LCbAHu[sβaq4cz\6_=aq=>mNZDK+).ORi>P}4MgYƌ_kWMrA 2}7*XJ-pOY#ItԋF! coRd7QWʙsVRZN4Wm8i1 ݔj_g tKTabߣcڟGzS'f5> 1=gpqvZ;4JŔ`t2G4ն&mHڴ˶pUJ^u+j"B ±6TC TF_Z UDYn} k^z=8Ki1Bf)y[ ri"(['$/`~ga~ %i giWHvE[qYmiF]R^寝2 ֌O寛Ì0{KK sWK Ə͖=v2+Bw>2.wy=Վ|+Wgp,mX`jWEDgDEvT'NYb?F0rÜBm`n4رxCbX)o?1/0yvvi iϊ_/?~ako8o1J%sTP- Zq9kyu!;d3;ܚH x n@:o@d5fx{Y>rp(Sn̸W}aB$q&@P)Q֭ėaEj#_L;c_9HzN/ܸ\^Ұa+wRx67'm),Lҭ1ebwmoGYn4 h=oZ\$ ?`JE^.[!W#mG \X୏9ܠsLfWu A0\k MqWPH ьۆT6etW [VAߠ8@D-rwC`em߽ aPXp kFS =؏:%C>A::(*,>Qk}6u"H<'|J%;7-LPMݒN;bM~ĔHG+vx;-?(pZRiqVu`sUpQryM.M+(Oz XyW/Ilf3qؕJéh8ƞj/ ͙͛?<8* mFB芲+JtewT/ܗDokop48\ EFJ F;W2ƴ[J"·l Ptrafhfs8:&_㔢SjSآZ_iu)j Z)NssS1s6ycf} [ ̷*:!nX`,wOrPxIɆ4=˾=1;)Q~ck/CSpZsL^Wė(U~"ctز`sks""ZuYNpT;aꥴ:,b1}R5t+{ CWMhXքڂ.+{#$2Z`dBoa%o͐iY5\8>]gjcV-kIdkdbm6g%r/hFh9Jtܖ:'(FDpdwʛ[~;ݕO`Cv "=O}w*_SU +tMlQt#4Ԫ `Ce az J,Pͱ7p㠻F< Jgx~>;3x$)UhF>_k0.]QLיeamT?&kƹy-~[QiJ3NڴvM|! g^v{$YY]U fx+:mopNXޖ5X*jJ)Ɯ'*EW*S?p_qU߷Y[v__]~-Y-aX% J,O@YV4 5!_g&11MmW5,hÖ縺eҟt7;05 G(0#)a-M<Hvf+Y4l tJV;L:•ھWZEC%Z((XU'G4eIm२M֤^yrC"DQiLjEɤڮifv|״Rz̾42Ȩ#ōk5p0j!J R[aRω#a8KkGZNeP4XJsqagWV# DHǬlVfyh.(XY"Es"%aЭN[?8O&v4JRS5Y\O:Je! K%NG/Ng֩Y\zvk[eϣ2IRYݬ{5* ͭ.)ZU0$ @a }؎'70=0;XN Kiѷ9Шm:9831AbB`XR$jc/e!JI5r-՘dt>%ߘ\ /q=+ob>;dDtF'(T;e}q.ʮoDǿmva·x=y:{'#mmepWa5D4'/!nY2!L~G2!#6gҙ[/hch ?wTGݭ] *7l@k,4v9oƱ9TkXk\AL\5Oq,x"Pܢ8oV#q5 `{eؚm"4yqmU'iTj5k㗹ǩr)=#cInH j֋}cB5goCN]2S`sO#FY(|8_rF%1QAͳWЕ-u< 9W1ڍ~**0ֳ`2Ȏ/ t zM'Uxc^94 _([(Ivo"vZJAacK  U>~okg&j{~mI p}?c?ޑ;; 9!g1ZXWJKlq 388!5K#H =sF$T`W:ѣ`:|h"!~Q foa7Z@F%hb\4@ޙ1~[PZ*ܣ"(#[m sjk:DY@Q~˜*o=mh/c[),HX{:AE݂ws) 9/b~$~jT^^Uàd:ӵw+whD;bK}`Dtu8%[bN"|Yn މzy7eph΃I!S DbM&bI<'Ӂޛnl6MD #t)hS{&]eI_u}$$G}c+ܫo"97d6{ZB}oghi Cx@uΠL̦uOI>ƌ8xÍ^Rctʇ^@#Q:yd"`Y[eFV-ܢFm!P+D@p 0rK+T%.Rx7SWp0e~ON\5~=UI\Z7pdFRK_ef2R#D|]ڱt3tN?P @>|[`io3kG l?V81Ħq$`.)dq')頜 Epz|9ЫSDYc H{