Re: bid 12877, apache mod_ssl remote DoS

To: Geoff Crompton <geoff.crompton@strategicdata.com.au>
Cc: debian-security@lists.debian.org
Subject: Re: bid 12877, apache mod_ssl remote DoS
From: Micah Anderson <micah@riseup.net>
Date: Wed, 30 Mar 2005 12:07:51 -0600
Message-id: <[🔎] 20050330180751.GJ14148@riseup.net>
In-reply-to: <[🔎] 424A1AE5.3050508@strategicdata.com.au>
References: <[🔎] 424A1AE5.3050508@strategicdata.com.au>

The way you can tell is to get the debian source of apache, look at
the patch referenced via those URLs and see if it has been applied to
the debian source. If it has been, then the problem has been resolved
in Debian. If it hasn't been, then either the problem is unknown and
you should file a bug against apache (tagging it security), and
providing as much information as you can. Or the problem does not
affect the particular version of apache in Debian... Do your absolute
best to figure out the latter first.

Micah

On Wed, 30 Mar 2005, Geoff Crompton wrote:

> Does anyone know if apache 1.3 is affected by the issue mentioned at
> http://www.securityfocus.com/bid/12877
> 
> Also, anyone know how Debian stands with this?
> -- 
> Geoff Crompton
> Debian System Administrator
> Strategic Data
> +61 3 9340 9000
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact 
> listmaster@lists.debian.org
>

Reply to:

References:
- bid 12877, apache mod_ssl remote DoS
  - From: Geoff Crompton <geoff.crompton@strategicdata.com.au>

Prev by Date: [OT] Release cycle - was Re: My machine was hacked - possibly via sshd?
Next by Date: Re: My machine was hacked - possibly via sshd?
Previous by thread: bid 12877, apache mod_ssl remote DoS
Next by thread: Darn skiddies (ssh login attempts)
Index(es):
- Date
- Thread