hi, this is interesting.
I see the 1.2.16 fix on the * site. can u explain how can crash * < 1.2.16? Thanks LLoyd On 3/9/07, Ian Darwin <[EMAIL PROTECTED]> wrote:
In case anybody didn't notice, there is a significant denial-of-service attack that is fixed in 1.2.16. Basically, if you run SIP and can be reached from the Internet, your * server can be crashed in under a second by any script kiddy, anywhere in the world. There is an exploit available and I tested it on my backup * server, which crashed before I got my finger off the return key. In other words, please upgrade ASAP. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
