[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild

Subject: Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Date: Sat, 29 Jun 2002 00:56:20 +0200
Organization: SOLARSPEED.NET
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Rick,

> Last week we added blow_chunks.c to our apaches using apxs.  Do you see any
> problem with this being the case?  Any need to remove blow_chunks from the
> current server prior to doing the upgrade.

No, you can leave it in. It doesn't cause any problems on the four RaQ4's 
where I applied the new Apache.PKG so far. Also, those who have upgraded PHP 
on their own or through third parties do not need to worry. PHP continues to 
run fine after the new official Apache-PKG has been applied.

-- 

Mit freundlichen Grüßen / With best regards

Michael Stauber
mstauber@xxxxxxxxxxxxxx
Unix/Linux Support Engineer

References:
- [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
  - From: Rick Ewart
- Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
  - From: Michael Stauber
- Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
  - From: Rick Garcia

Prev by Date: Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
Next by Date: Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
Previous by thread: Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild
Next by thread: Re: [cobalt-security] Apache worm that uses the chunk vulnerability - in the wild

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index