[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Grave apache dos possible through byterange requests


Carlos Alberto Lopez Perez wrote:
You can use the following redirect as a temporally workaround:

# a2enmod rewrite

RewriteEngine On
RewriteCond %{HTTP:Range} bytes=0-.* [NC]
RewriteRule .? http://%{SERVER_NAME}/ [R=302,L]

Would that work for all websites of a Debian server if placed into a file located in /etc/apache2/conf.d ?

Will other rewrites will be fine in the normal conf files for each website?


Kind Regards

Andrew McGlashan
Broadband Solutions now including VoIP

Reply to: