[BlueOnyx:08244] Re: Apache DoS exploit kit
Richard Morgan
richard at morgan-web.co.uk
Thu Aug 25 03:28:45 -05 2011
Thank you 'User Ernie' and Michael for spotting and fixing this so quickly and thoroughly.
You'll probably already know your fix script worked like a dream... it's also shaken me to get moving in the BX direction a bit faster :o)
----- Original Message -----
From: Michael Stauber
To: BlueOnyx General Mailing List
Sent: Thursday, August 25, 2011 6:47 AM
Subject: [BlueOnyx:08240] Re: Apache DoS exploit kit
Hi all,
> > I just noticed that Apache are warning about a DoS exploit tool that's
> > curculating around the Internet:
> >
> > http://www.computerworld.com/s/article/9219471/Apache_warns_Web_server_ad
> > mi ns_of_DoS_attack_tool
> >
> > Is the Apache on BlueOnyx vunerable?
I took the opportunity to sum up the findings and the possible fixes for BlueQuartz in a news posting on www.blueonyx.it:
http://www.blueonyx.it/index.php?mact=News,cntnt01,detail,0&cntnt01articleid=95&cntnt01origid=15&cntnt01pagelimit=4&cntnt01returnid=54
Please note: The rewrite condition and rewrite rules on the news page (and the published script to fix the issues) are slightly different than in my initial posting here with the ID [BlueOnyx:08235]. The newer rewrite syntax is taken right out of the Apache advisory and should work better.
--
With best regards
Michael Stauber
------------------------------------------------------------------------------
_______________________________________________
Blueonyx mailing list
Blueonyx at mail.blueonyx.it
http://mail.blueonyx.it/mailman/listinfo/blueonyx
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20110825/5e2f8728/attachment.html>
More information about the Blueonyx
mailing list