bugtraq.c httpd apache ssl attack

To: "debian-security@lists.debian.org" <debian-security@lists.debian.org>
Subject: bugtraq.c httpd apache ssl attack
From: Phillip Hofmeister <plhofmei@zionlth.org>
Date: Sat, 14 Sep 2002 14:57:56 -0400
Message-id: <[🔎] 20020914185756.GA31379@zionlth.org>
Mail-followup-to: "debian-security@lists.debian.org" <debian-security@lists.debian.org>

Is this log evidence of our worm?

[Fri Sep 13 23:46:29 2002] [error] mod_ssl: SSL handshake failed (server www.zionlth.org:443, client 195.34.113.130) (OpenSSL library error follows)
[Fri Sep 13 23:46:30 2002] [error] OpenSSL: error:1406B458:SSL routines:GET_CLIENT_MASTER_KEY:key arg too long
[Sat Sep 14 04:11:02 2002] [error] mod_ssl: SSL handshake failed (server www.zionlth.org:443, client 209.217.161.130) (OpenSSL library error follows)
[Sat Sep 14 04:11:02 2002] [error] OpenSSL: error:1406B458:SSL routines:GET_CLIENT_MASTER_KEY:key arg too long

Regards,

-- 
Phil

PGP/GPG Key:
http://www.zionlth.org/~plhofmei/
wget -O - http://www.zionlth.org/~plhofmei/ | gpg --import

XP Source Code:

#include <win2k.h>
#include <extra_pretty_things_with_bugs.h>
#include <more_bugs.h>
#include <require_system_activation.h>
#include <phone_home_every_so_often.h>
#include <remote_admin_abilities_for_MS.h>
#include <more_restrictive_EULA.h>
#include <sell_your_soul_to_MS_EULA.h>
//os_ver="Windows 2000"
os_ver="Windows XP"

Reply to:

Follow-Ups:
- Re: bugtraq.c httpd apache ssl attack
  - From: Michael Renzmann <mrenzmann@dylanic.de>
- Re: bugtraq.c httpd apache ssl attack
  - From: Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>
- question from a newbie regarding possible trojan
  - From: Adrian Gheorghe <adrianghe@shaw.ca>

Prev by Date: Re: Fwd: bugtraq.c httpd apache ssl attack
Next by Date: Re: bugtraq.c httpd apache ssl attack
Previous by thread: Re: Fwd: bugtraq.c httpd apache ssl attack
Next by thread: Re: bugtraq.c httpd apache ssl attack
Index(es):
- Date
- Thread