Re: [CentOS] Apache warns Web server admins of DoS attack tool

Thanks Tom, On 09/01/2011 02:05 AM, Tom Lanyon wrote: > For EL 4, 5, 6: > https://rhn.redhat.com/errata/RHSA-2011-1245.html rpms for C5 are pushed into the 5.6/cr/ repo; the c6 build is running now, we will have the cr stuff up for that today and get this into there as well. Unless Tru gets to

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 31/08/2011, at 11:07 PM, Karanbir Singh wrote: > On 08/31/2011 10:56 AM, Timo Schoeler wrote: >> Just released: >> https://www.apache.org/dist/httpd/Announcement2.2.html > > thanks. I guess we should wait on a fix from upstream, make sure its > tested etc. If there is interest in doing a local

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Wed, Aug 31, 2011 at 4:32 AM, Karanbir Singh wrote: > On 08/30/2011 11:33 PM, Thomas Harold wrote: >> Someday, perhaps we'll end up back on an authenticated version of NNTP, >> with support for bbcode, images, and the front end reader of your choice... > > Thats quite a good idea - and somethin

Re: [CentOS] Apache warns Web server admins of DoS attack tool

Hi, On 08/31/2011 10:56 AM, Timo Schoeler wrote: > Just released: > https://www.apache.org/dist/httpd/Announcement2.2.html thanks. I guess we should wait on a fix from upstream, make sure its tested etc. If there is interest in doing a local fix/build for c4/5/6 testing repo's, please submit a

Re: [CentOS] Apache warns Web server admins of DoS attack tool

thus Karanbir Singh spake: > On 08/30/2011 11:33 PM, Thomas Harold wrote: >> Someday, perhaps we'll end up back on an authenticated version of NNTP, >> with support for bbcode, images, and the front end reader of your choice... > > Thats quite a good idea - and something that we explored at length

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 08/30/2011 11:33 PM, Thomas Harold wrote: > Someday, perhaps we'll end up back on an authenticated version of NNTP, > with support for bbcode, images, and the front end reader of your choice... Thats quite a good idea - and something that we explored at length when looking for a replacement so

Re: [CentOS] Apache warns Web server admins of DoS attack tool

m.r...@5-cent.us said the following on 25/08/11 18:33: > Anyone have any idea how soon RHEL and CentOS will be releasing the patch > package? Apparently Apache just released a patch: https://www.apache.org/dist/httpd/Announcement2.2.html Source: http://nakedsecurity.sophos.com/2011/08/31/apache-2

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 8/25/2011 7:05 PM, Always Learning wrote: > > On Thu, 2011-08-25 at 14:36 -0700, John R Pierce wrote: > >> On 08/25/11 1:45 PM, Always Learning wrote: >>> I have broken-up the very large conf file (/etc/httpd/conf/httpd.conf) >>> into 3 main parts. Part 1 is left in situ. Parts 2 and 3 are locat

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 8/28/2011 12:37 PM, Les Mikesell wrote: > On Sun, Aug 28, 2011 at 10:20 AM, Keith Roberts wrote: >>> The CentOS Forums are a very very good resource for many people and the >>> people spending time managing and posting there are doing a very good >>> job. I'm guessing you were unable to get val

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Mon, Aug 29, 2011 at 6:38 PM, Scott Robbins wrote: > >> The first look isn't promising - there is only a small amount of text >> displayed and clicking through to get the rest doesn't recognize >> mobile browsers so you always have to zoom in for a reasonable font >> size when using the phone a

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Mon, Aug 29, 2011 at 03:11:31PM -0500, Les Mikesell wrote: > On Mon, Aug 29, 2011 at 10:53 AM, Les Mikesell wrote: > > The first look isn't promising - there is only a small amount of text > displayed and clicking through to get the rest doesn't recognize > mobile browsers so you always have t

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 29/08/11 21:11, Les Mikesell wrote: > > Clicking on the first one of those gave me a 'you do not have > permission to access this forum' error, which might mean someone > removed it after the rss entry was picked up, but still not a great > user experience. > Yes, that was spam and was removed

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Mon, Aug 29, 2011 at 10:53 AM, Les Mikesell wrote: >>> So, if the forums provide a usable rss feed, reading >>> them shouldn't be that bad, even though you have to follow the links >>> to read longer messages and reply. >> >> If the forums have useful RSS feeds, yeah, that would work.  I use K

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Mon, Aug 29, 2011 at 10:21 AM, Lamar Owen wrote: > On Sunday, August 28, 2011 06:47:08 PM Les Mikesell wrote: >> So, if the forums provide a usable rss feed, reading >> them shouldn't be that bad, even though you have to follow the links >> to read longer messages and reply. > > If the forums h

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Sunday, August 28, 2011 06:47:08 PM Les Mikesell wrote: > So, if the forums provide a usable rss feed, reading > them shouldn't be that bad, even though you have to follow the links > to read longer messages and reply. If the forums have useful RSS feeds, yeah, that would work. I use Kontac

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Sun, Aug 28, 2011 at 12:13 PM, Always Learning wrote: > > On Sun, 2011-08-28 at 11:37 -0500, Les Mikesell wrote: >> The problem with forums is that if you have more than a couple of >> interests you kill the whole day bouncing around in a web browser >> logging into them and figuring out their

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Sun, 2011-08-28 at 11:37 -0500, Les Mikesell wrote: > The problem with forums is that if you have more than a couple of > interests you kill the whole day bouncing around in a web browser > logging into them and figuring out their user interface differences. > Could the rss feed be made a littl

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Sun, Aug 28, 2011 at 10:20 AM, Keith Roberts wrote: >> The CentOS Forums are a very very good resource for many people and the >> people spending time managing and posting there are doing a very good >> job. I'm guessing you were unable to get value from the forums since >> your expectations an

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Sun, 28 Aug 2011, Karanbir Singh wrote: > To: CentOS mailing list > From: Karanbir Singh > Subject: Re: [CentOS] Apache warns Web server admins of DoS attack tool > > On 08/26/2011 09:01 AM, Rudi Ahlers wrote: >> The CentOS forum is pretty useless IMO > > The Ce

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Sun, Aug 28, 2011 at 6:01 AM, Karanbir Singh wrote: > On 08/26/2011 09:01 AM, Rudi Ahlers wrote: >> The CentOS forum is pretty useless IMO > > The CentOS Forums are a very very good resource for many people and the > people spending time managing and posting there are doing a very good > job. I

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 08/26/2011 09:01 AM, Rudi Ahlers wrote: > The CentOS forum is pretty useless IMO The CentOS Forums are a very very good resource for many people and the people spending time managing and posting there are doing a very good job. I'm guessing you were unable to get value from the forums since

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 08/26/11 3:42 PM, Always Learning wrote: >> they still push z/OS (the descendent of OS/370) > Whatever happened to IBM 360 and OS/360 ? circa 1970, virtual memory hardware was added and it became the System/370, and the various flavors of OS/360 became OS/VS1, OS/VS2, which became MVS, which

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 15:38 -0700, John R Pierce wrote: > they still push z/OS (the descendent of OS/370) Whatever happened to IBM 360 and OS/360 ? Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 08/26/11 2:16 PM, m.r...@5-cent.us wrote: > And, of course, IBM really, *really wants folks to use Linux. I mean, if > *you* were Big Blue, would you want to support, uh, > sys38/4000/RISC6000/AIX/"DOS/VSE/SP/ years)>/MVS/zOS... or just Linux? (You've grown your business, and need a > bigger ma

Re: [CentOS] Apache warns Web server admins of DoS attack tool

Always Learning wrote: > On Fri, 2011-08-26 at 16:12 -0400, m.r...@5-cent.us wrote: > >> Right. And you have a 100% confidence level that it will a) *always* be >> up to date, b) available, and c) actually readable > > I've always been praised for my good documentation. > >>

Re: [CentOS] Apache warns Web server admins of DoS attack tool

Always Learning wrote: > On Fri, 2011-08-26 at 15:25 -0400, John Hinton wrote: >> On 8/26/2011 3:02 PM, Always Learning wrote: > I only wish I have come to Linux years ago. It is so refreshingly nice. > Everything a real operating system should be and reminiscent of the once > great Mainframes. Y

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 16:12 -0400, m.r...@5-cent.us wrote: > Right. And you have a 100% confidence level that it will a) *always* be up > to date, b) available, and c) actually readable I've always been praised for my good documentation. >

Re: [CentOS] Apache warns Web server admins of DoS attack tool

Always Learning wrote: > > On Fri, 2011-08-26 at 14:19 -0400, m.r...@5-cent.us wrote: > >> If you and the rest of your >> team go out to lunch, and are killed by food poisoning, or an >> out-of-control senior citizen, anyone walking in will take a good bit >> longer to find where all versions of *N

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 15:25 -0400, John Hinton wrote: > On 8/26/2011 3:02 PM, Always Learning wrote: > >> Oh, and php *certainly* requires configuration. > > Can't remember what I changed in /etc if I changed it. > It should be there in your documentation... ;) LOL!!! Me? My > documentation is i

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 8/26/2011 3:02 PM, Always Learning wrote: >> Oh, and php *certainly* requires configuration. > Can't remember what I changed in /etc if I changed it. It should be there in your documentation... ;) LOL!!! Me? My documentation is in my head... 'burned' into my brain, from following upstream's su

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 15:13 -0400, Lamar Owen wrote: > And it IS the standard way of doing what you're saying is the way you > do things. Thanks. Have a nice weekend. Paul. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/li

Re: [CentOS] Apache warns Web server admins of DoS attack tool

Forget it. He won't listen and will continue to further his nonsensical methods of configuration with silly justifications that don't hold up. Please, just let him be "right" so he'll stop needing to get the last word in all the time and perhaps this thread can die.

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Friday, August 26, 2011 03:02:06 PM Always Learning wrote: > On Fri, 2011-08-26 at 14:19 -0400, m.r...@5-cent.us wrote: > > And you *are* customizing /etc/httpd/conf/httpd.conf. > We have D-O-C-U-M-E-N-T-A-T-I-O-N which remains behind we we go home, go > to lunch and go on holiday. > > I stay

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 14:19 -0400, m.r...@5-cent.us wrote: > If you and the rest of your > team go out to lunch, and are killed by food poisoning, or an > out-of-control senior citizen, anyone walking in will take a good bit > longer to find where all versions of *Nix normally put their configura

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 14:34 -0400, John Hinton wrote: > OK, so you have just chosen to put your vhost confs in an alternate > directory. There are sound reasons for doing that, like ease of backups > and dumb minded restores that any low level tech could do. Thank you. > To suggest others fol

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 8/26/2011 1:18 PM, Always Learning wrote: > Are you running two include lines in httpd.conf? One for > /data/apache/custom and one for /etc/httpd/conf.d? Or maybe doing a ln > from conf.d to custom? > /etc/httpd/conf/httpd.conf has:- > > 112: Include conf.d/*.conf > > 126: User apache > 127: Gro

Re: [CentOS] Apache warns Web server admins of DoS attack tool

Always Learning wrote: > > On Fri, 2011-08-26 at 13:37 -0400, m.r...@5-cent.us wrote: > >> Paul, you've completely missed what John was asking: what qualifies as >> o/s, and what qualifies as third party, or whatever? Which is apache, or >> php, or gcc, or tomcat5? Certainly, tomcat and httpd get f

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 08/26/11 11:00 AM, Always Learning wrote: > Those who like dumping everything in one large text file can. I was > speaking to a sys admin this week who has only 1,200 virtual hosts in > the main Apache file. which part of /etc/httpd/conf.d/*.conf are you missing? Each vhost gets its OWN conf

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, Aug 26, 2011 at 1:00 PM, Always Learning wrote: > > Putting virtual hosts, including those with sub-domains, in a individual > 'domain name' text file ensures for us smooth running. No one has suggested otherwise. The question is, what do you gain by putting this file in a place where no

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 13:37 -0400, m.r...@5-cent.us wrote: > Paul, you've completely missed what John was asking: what qualifies as > o/s, and what qualifies as third party, or whatever? Which is apache, or > php, or gcc, or tomcat5? Certainly, tomcat and httpd get fired off by root > at system b

Re: [CentOS] Apache warns Web server admins of DoS attack tool

Always Learning wrote: > > On Fri, 2011-08-26 at 12:47 -0400, John Hinton wrote: > >> OK, so if you do an install of squirrelmail from a repo, is that >> operating system or customization? Where does squirrelmail.conf wind >> up? > > We do not use Squirrelmail. Paul, you've completely missed what

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 12:47 -0400, John Hinton wrote: > OK, so if you do an install of squirrelmail from a repo, is that > operating system or customization? Where does squirrelmail.conf wind > up? We do not use Squirrelmail. > Are you running two include lines in httpd.conf? One for > /data

Re: [CentOS] Apache warns Web server admins of DoS attack tool

Always Learning wrote: > > On Fri, 2011-08-26 at 11:46 -0500, Les Mikesell wrote: > >> But there is nothing related in those two statements. It would be >> equally true if you put your customizations in differently named files >> under /etc/httpd/conf.d and in directories under /var/www/html. Th

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Aug 26, 2011, at 8:37 AM, Always Learning wrote: > > On Fri, 2011-08-26 at 10:59 -0400, John Hinton wrote: > >> To me, the use of this includes directory is simply >> good practice for multiple reasons. On this list, teaching best >> 'standard' practices is a good idea. Who is going t

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 11:46 -0500, Les Mikesell wrote: > But there is nothing related in those two statements. It would be > equally true if you put your customizations in differently named files > under /etc/httpd/conf.d and in directories under /var/www/html. The > difference is that anyone

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 8/26/2011 12:30 PM, Always Learning wrote: > On Fri, 2011-08-26 at 11:22 -0500, Les Mikesell wrote: > >> But, can you still 'yum install' any/all of the large number of >> packaged web applications from the base and 3rd party repos that will >> drop additional files into conf.d and expect a cer

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, Aug 26, 2011 at 11:30 AM, Always Learning wrote: > >> But, can you still 'yum install' any/all of the large number of >> packaged web applications from the base and 3rd party repos  that will >> drop additional files into conf.d and expect a certain base setup? > > Definitely. That is esse

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 8/26/2011 12:13 PM, Always Learning wrote: > Les, > > There are no /home directories on our servers. > > Data we create which is NOT essential for the operating system to > function is usually not in an operating system directory. > > 'yum update' still works successfully. > > Paul. > All good

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 11:22 -0500, Les Mikesell wrote: > But, can you still 'yum install' any/all of the large number of > packaged web applications from the base and 3rd party repos that will > drop additional files into conf.d and expect a certain base setup? Definitely. That is essential. No

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, Aug 26, 2011 at 11:13 AM, Always Learning wrote: > > Les, > > There are no /home directories on our servers. I thought you were trying to give general advice - or that what you posted might be taken that way. > Data we create which is NOT essential for the operating system to > function

Re: [CentOS] Apache warns Web server admins of DoS attack tool

Les, There are no /home directories on our servers. Data we create which is NOT essential for the operating system to function is usually not in an operating system directory. 'yum update' still works successfully. Paul. ___ CentOS mailing list Ce

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, Aug 26, 2011 at 10:37 AM, Always Learning wrote: > > Apache creates a default set-up. Default for those who need something > which 'works out of the box'. 'Apache' is infinitely configurable. It is the upstream/Centos distribution that provides a working base configuration that is also t

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 10:59 -0400, John Hinton wrote: > To me, the use of this includes directory is simply > good practice for multiple reasons. On this list, teaching best > 'standard' practices is a good idea. Who is going to think to tell > someone to go look in /data/config/apache fo

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 8/26/2011 7:27 AM, Always Learning wrote: > On Thu, 2011-08-25 at 22:56 -0700, John R Pierce wrote: > >> by putting all your site specific configurations in various >> .conf files in the conf.d directory, your stuff is portable, and can >> be rpm deployed on any el system without complications.

Re: [CentOS] Apache warns Web server admins of DoS attack tool

>>> --On Thursday, August 25, 2011 9:09 PM +0100 Always Learning >>> wrote: >>> The temporary fix is shown on several web sites as this, shown below, added to Apache's conf file:- >>> >>> I try to minimize changes to main files. Presumably putting that code >>> in >>> a >>> separate file

Re: [CentOS] Apache warns Web server admins of DoS attack tool (temp fix update)

On Thursday 25 Aug 2011, Colin Coles wrote: > > There are some work-around suggestions here: > http://lwn.net/Articles/456268/ This has now been updated as original work-around was incomplete: http://lists.grok.org.uk/pipermail/full-disclosure/2011-August/082427.html __

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, 2011-08-26 at 08:13 +0200, Simon Matter wrote: > Attached is what I've put into /etc/httpd/conf.d/CVE-2011-3192.conf and > I'll just remove it after the coming update is done. > At least killapache.pl doesn't kill anymore. > > Works for me, YMMW. SetEnvIf Range (,.*

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Thu, 2011-08-25 at 22:56 -0700, John R Pierce wrote: > by putting all your site specific configurations in various > .conf files in the conf.d directory, your stuff is portable, and can > be rpm deployed on any el system without complications. That is exactly the flexibility I have when I pu

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Fri, Aug 26, 2011 at 9:45 AM, Kenneth Porter wrote: > I don't see any mention of this in the CentOS announcements forum. I'd > consider dropping the mailing list and switching to forums if this kind of > warning appeared there. > > >

Re: [CentOS] Apache warns Web server admins of DoS attack tool

I don't see any mention of this in the CentOS announcements forum. I'd consider dropping the mailing list and switching to forums if this kind of warning appeared there. ___ CentOS mailing l

Re: [CentOS] Apache warns Web server admins of DoS attack tool

>> --On Thursday, August 25, 2011 9:09 PM +0100 Always Learning >> wrote: >> >>> The temporary fix is shown on several web sites as this, shown below, >>> added to Apache's conf file:- >> >> I try to minimize changes to main files. Presumably putting that code in >> a >> separate file (eg. conf.d/

Re: [CentOS] Apache warns Web server admins of DoS attack tool

> --On Thursday, August 25, 2011 9:09 PM +0100 Always Learning > wrote: > >> The temporary fix is shown on several web sites as this, shown below, >> added to Apache's conf file:- > > I try to minimize changes to main files. Presumably putting that code in a > separate file (eg. conf.d/RangeVulner

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 08/25/11 10:48 PM, Emmanuel Noobadmin wrote: > I think you're misunderstanding John there? Rather than suggesting > using a single large httpd.conf file, he seems to be just pointing > out that the default config already includes any *.conf files inside > the conf.d directory so you could just

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 8/26/11, Always Learning wrote: > > On Thu, 2011-08-25 at 14:36 -0700, John R Pierce wrote: >> the existing EL httpd.conf includes /etc/httpd/conf.d/*.conf and any >> changes are expected to be made there rather than editing the stock file. > > Hi John, > > No Centos updates are likely to inte

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Thu, 2011-08-25 at 14:36 -0700, John R Pierce wrote: > On 08/25/11 1:45 PM, Always Learning wrote: > > I have broken-up the very large conf file (/etc/httpd/conf/httpd.conf) > > into 3 main parts. Part 1 is left in situ. Parts 2 and 3 are located > > elsewhere. > the existing EL httpd.conf in

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 08/25/11 1:45 PM, Always Learning wrote: > I have broken-up the very large conf file (/etc/httpd/conf/httpd.conf) > into 3 main parts. Part 1 is left in situ. Parts 2 and 3 are located > elsewhere. the existing EL httpd.conf includes /etc/httpd/conf.d/*.conf and any changes are expected to be

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Thu, 25 Aug 2011, Always Learning wrote: > To: CentOS mailing list > From: Always Learning > Subject: Re: [CentOS] Apache warns Web server admins of DoS attack tool > > > On Thu, 2011-08-25 at 13:31 -0700, Kenneth Porter wrote: > >> --On Thursday, August 25

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Thu, 2011-08-25 at 13:31 -0700, Kenneth Porter wrote: > --On Thursday, August 25, 2011 9:09 PM +0100 Always Learning > wrote: > > > The temporary fix is shown on several web sites as this, shown below, > > added to Apache's conf file:- > I try to minimize changes to main files. Presumably

Re: [CentOS] Apache warns Web server admins of DoS attack tool

--On Thursday, August 25, 2011 9:09 PM +0100 Always Learning wrote: > The temporary fix is shown on several web sites as this, shown below, > added to Apache's conf file:- I try to minimize changes to main files. Presumably putting that code in a separate file (eg. conf.d/RangeVulnerabilityWor

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Thu, 2011-08-25 at 12:33 -0400, m.r...@5-cent.us wrote: > Anyone have any idea how soon RHEL and CentOS will be releasing the patch > package? > > Excerpt: > Computerworld - Developers of the Apache open-source project today > warned users of the popular Web server software that a denial-of-se

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On Thursday 25 Aug 2011, m.r...@5-cent.us wrote: > Anyone have any idea how soon RHEL and CentOS will be releasing the patch > package? > > Excerpt: > Computerworld - Developers of the Apache open-source project today > warned users of the popular Web server software that a denial-of-service > (Do

Re: [CentOS] Apache warns Web server admins of DoS attack tool

On 08/25/2011 05:33 PM, m.r...@5-cent.us wrote: > Anyone have any idea how soon RHEL and CentOS will be releasing the patch > package? keep an eye on this : https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3192#c5 - KB ___ CentOS mailing list CentOS

[CentOS] Apache warns Web server admins of DoS attack tool

Anyone have any idea how soon RHEL and CentOS will be releasing the patch package? Excerpt: Computerworld - Developers of the Apache open-source project today warned users of the popular Web server software that a denial-of-service (DoS) tool is circulating that exploits a bug in the program. The