The Apache HTTP Server Project is proud to announce the fourth public release of Apache 2.0. Apache 2.0 has been running on the apache.org website since December of 2000 and has proven to be very reliable.
This version of Apache is principally a security and bug fix release. A summary of the changes is given at the end of this document. Of particular note is that 2.0.40 fixes the serious vulnerability noted in CAN-2002-0661 and the pair of path exposures in CAN-2002-0654 (mitre.org). We would like to thank Auriemma Luigi
Apache 2.0 offers numerous enhancements, improvements and performance boosts over the 1.3 codebase. The most visible and noteworthy addition is the ability to run Apache in a hybrid thread/process mode on any platform that supports both threads and processes. This has shown to improve the scalability of the Apache HTTP Server significantly in our testing. Apache 2.0 also includes support for filtered I/O. This allows modules to modify the output of other modules before it is sent to the client. We have also included support for IPv6 on any platform that supports IPv6.
This version of Apache is known to work on many versions of Unix, BeOS, OS/2, Windows, and Netware. Because of many of the advancements in Apache 2.0, the initial release of Apache is expected to perform equally well on all supported platforms.
There are new snapshots of the Apache httpd source available every 6 hours from http://cvs.apache.org/snapshots/ - please download and test if you feel brave. We don't guarantee anything except that it will take up disk space, but if you have the time and skills, please give it a spin on your platforms.
Apache has been the most popular web server on the Internet since April of 1996. The July 2002 Web Server Survey by Netcraft (see http://www.netcraft.com/survey/) found that more web servers were using Apache than any other software; Apache runs on more than 57% of the web servers on the Internet.
For more information and to download the release tarballs, please visit http://httpd.apache.org/