[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Re: Re:Apache Chunked Vulnerability and Cobalt servers

Subject: [cobalt-users] Re: Re:Apache Chunked Vulnerability and Cobalt servers
From: Chris Adams <cmadams@xxxxxxxxxx>
Date: Fri Jun 21 19:59:02 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Once upon a time, Peter Masloch <peter@xxxxxxxxxxx> said:
> If you are interested in high-end security then you
> shouldn't use Linux at all. Use OpenBSD instead.

Well, as it turns out, the only remote exploit for the Apache
vulnerability is on OpenBSD's and FreeBSD's C library version
of memcpy.  The glibc version of memcpy (ie as used in Linux)
does not appear to be vulnerable.

-- 
Chris Adams <cmadams@xxxxxxxxxx>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.

References:
- [cobalt-users] Re:Apache Chunked Vulnerability and Cobalt servers
  - From: Chad
- RE: [cobalt-users] Re:Apache Chunked Vulnerability and Cobalt servers
  - From: Peter Masloch

Prev by Date: Re: [cobalt-users] Redhat release of Raq3
Next by Date: Re: [cobalt-users] no patches are installed
Previous by thread: RE: [cobalt-users] Re:Apache Chunked Vulnerability and Cobalt servers
Next by thread: RE: [cobalt-users] Re:Apache Chunked Vulnerability and Cobalt servers

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index