Transfer-Encoding: chunked 80000001 Connection closed by foreign host.
Tova oznachava li che triabva da upgrade ? ----- Original Message ----- From: "George Danchev" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, June 20, 2002 8:09 PM Subject: Re: lug-bg: apache remote vulnerability > On Thursday 20 June 2002 17:41, Georgi Chorbadzhiyski wrote: > > za subject-ta ima veche ot 2 dni pachove. ot barziat mi pregled iz > > .bg prostanstvoto mnogo malko hora sa si napravili truda si > > upgratnat serverchetata. ne se motaite shtoto v nai-skoro vreme > > shte pochne da stava interesno. > > za da testvate dali ste vulnerable opitaite tova > > > > telnet server 80 > > > > POST /hello-admin.html HTTP/1.1 > > Host: georgi.top.bg > > Transfer-Encoding: chunked > > > > 80000001 > > boza > > 0 > > > > > > ako vi dropne konekciata hubavo e da se pogrizhite da si pusnete > > apt-get update, up2date ili kvoto tam si puskate. > > ako vi dade 400 bad request, spete spokoino. > > ами аз пачнах debian source package-a от testing и unsable (apache 1.3.24) с > ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.1/common/005_httpd.patch с леки > модификации и се apply-на чисто уж, иначе требе да downgrade до apache 1.3.9 > от stable щото DSA се грижат само за stable. Та преди да пачна 1.3.24 с този > тест направо ми затвареше конекцията, а след като го пачнах плюе Bad Request, > но пак close-ва connection-a: > > HTTP/1.1 400 Bad Request > Date: Thu, 20 Jun 2002 17:00:07 GMT > Server: Apache/1.3.24 (Unix) Debian GNU/Linux mod_python/2.7.6 Python/2.1.3 > PHP/4.1.2 > mod_fastcgi/2.2.12 mod_auth_pgsql/0.9.12 mod_throttle/3.1.2 mod_ssl/2.8.7 > OpenSSL/0.9.6c mod_perl/1.26 DAV/1.0.3 > Connection: close > Content-Type: text/html; charset=iso-8859-1 > > <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> > <HTML><HEAD> > <TITLE>400 Bad Request</TITLE> > </HEAD><BODY> > <H1>Bad Request</H1> > Your browser sent a request that this server could not understand.<P> > Invalid URI in request POST /index.html HTTP/1.1<P> > <HR> > <ADDRESS>Apache/1.3.24 Server at localhost Port 80</ADDRESS> > </BODY></HTML> > Connection closed by foreign host. > > Това safe ли е ? или пак умира child-а и parent-а може да направи некви > дивотии с ресурсите ? > -- > Greets, > fr33zb1 > ============================================================================ > A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). > http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora > To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html > ============================================================================ > ============================================================================ A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html ============================================================================