[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] is this what we've been discussing - CERT Advisory CA-2002-27 Apache/mod_ssl Worm
- Subject: Re: [cobalt-users] is this what we've been discussing - CERT Advisory CA-2002-27 Apache/mod_ssl Worm
- From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
- Date: Sun Sep 15 07:10:01 2002
- Organization: Front Street Networks LLC
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
On Sunday 15 September 2002 09:22, jale@xxxxxxxxxx wrote:
> My CERT watcher sent me this yesterday ... so it is "supposed" to be new
> news. But it sounds like what we've been discussing. Is this new or the
> same thing? Is this what the line in httpd.conf is supposed to prevent ...
> and for us RAQ3 users that could not add the "stronger" protection noted
> today is there other stuff we should/could/need-to do?
>
> What a way to start a Sunday ... working on the RAQ and I'm still on my 2nd
> cup of coffee, after too many Bass Ales and Yuenglings last night :)
>
I could be wrong, is that ICBW?
But a while back I updated all my servers to use openssl 0.9.6e
AFAIK that version is OK, although i see they are on 'g', the openssl guys are
really kicking out the version!
I didn't do it for THOI "the hell of it"
so what gives with this advisory, is it a repeat?
(oops, to an artillery officer, repeat is a 'bad' word, unless it is what you
really want <grin>)
Gerald
--
http://frontstreetnetworks.com http://raqware.com
229 Front Street, Ste C, New Haven, CT 06513-3203
Phone: 203-785-0699