i may be missing something, but i found myself needing the following: when running fastcgi applications, authorization data is only passed to the cgi application when SECURITY_HOLE_PASS_AUTHORIZATION is set. the insecurecgi use flag could turn this on. like: use insecurecgi && append-flags -DSECURITY_HOLE_PASS_AUTHORIZATION feedback welcome.
GAPING_SECURITY_HOLE would be a better flag for this, not that'd we need this flag in apache either... Doesn't EXTRA_ECONF work if someone _really_ wants this? If not, maybe it should. :)
CFLAGS="-O2 -march=<yourarch> -pipe -DSECURITY_HOLE_PASS_AUTHORIZATION" CXXFLAGS="${CFLAGS}" emerge whatever ;) Won't add this to the main apache ebuild, too little use and too much potential for doing silly things. ;) Best regards, CHTEKK.