Thank you!
Will file one shortly.
On Mon, Jun 29, 2009 at 9:24 PM, Eric Covener wrote:
> On Tue, Jun 30, 2009 at 12:10 AM, Toadie wrote:
>> Hello,
>>
>> I think we may have discovered an issue with mod_proxy that 'could' be
>> used as an exploit to render an Apache server useless.
>
> report vi
William A. Rowe, Jr. wrote:
However it requires to be statically compiled so it
can survive the child death.
*That's* the reason for static?!? See mod_aspdotnet and several
others for how to pin a particular .so module for the lifetime of
the process, instead of per-restart.
Why can't we m
On Tue, Jun 30, 2009 at 12:10 AM, Toadie wrote:
> Hello,
>
> I think we may have discovered an issue with mod_proxy that 'could' be
> used as an exploit to render an Apache server useless.
report via email to secur...@apache.org ( more detail at
http://www.apache.org/security/ )
--
Eric Covener
Hello,
I think we may have discovered an issue with mod_proxy that 'could' be
used as an exploit to render an Apache server useless. I normally
report more benign bugs via the normal bug reporting interface.
However, this one bug is quite easy to create an exploit for so I am
looking for guidance
Hi Mladen Turk,
Thank you very much. I roughly gone throug the mod_watchdog. I create my
background thread inside the balancer_init method at mod_proxy_balancer
module. But after finished the execution of balancer_init method my thread
also terminate automatically. Do you or any body have idea
Mladen Turk wrote:
>
> Take a look at trunk's mod_watchdog.
> It should compile with 2.2 without a problem.
> However it requires to be statically compiled so it
> can survive the child death.
*That's* the reason for static?!? See mod_aspdotnet and several
others for how to pin a particular .so
h iroshan wrote:
Hi All
Actually I need *to* modify *Apache* and *run* one custom background
*thread*. In addition, my custom modules have *to* be able *to* access
the shared memory and it should be done through the background *thread*.
Did anybody do this before? Is *there* an example I can u
Hi All
Actually I need *to* modify *Apache* and *run* one custom background *thread
*. In addition, my custom modules have *to* be able *to* access the shared
memory and it should be done through the background *thread*. Did anybody do
this before? Is *there* an example I can use as a starting poi
Hi Mladen Turk,
Thank you .In Apache 2.2.x trunk there is no such a module mod_watchdog. Is
this is from later version?. Can I compile this in DSO mode with
mod_proxy_balancer.?
Help me
Iroshan.
> Take a look at trunk's mod_watchdog.
> It should compile with 2.2 without a problem.
> Howeve
On Jun 23, 2009, at 8:39 PM, Akins, Brian wrote:
On 6/23/09 12:48 AM, "Paul Querna" wrote:
Mitagation is the wrong approach.
We all know our architecture is wrong.
Another heretical suggestion:
Lighttpd and nginx are both release under BSD-like licenses.
Hear me out.
I've actually been
On Jun 24, 2009, at 5:18 AM, Joe Orton wrote:
Regardless, the only thing I've ever wanted to see changed in the
server
which would somewhat mitigate this type of attack is to have coarser
granularity on timeouts, e.g. per-request-read, rather than simply
per-IO-operation.
++1. Timeout woul
On Jun 25, 2009, at 11:12 AM, William A. Rowe, Jr. wrote:
Nick Kew wrote:
Is this worth hacking up, or more trouble than it saves?
It already lives in /repos/asf/httpd/mod_ftp/trunk/modules/ftp/ ...
see the http://httpd.apache.org/mod_ftp/mod/mod_ftp.html#ftplimitloginip
docs. It would be
On Jun 24, 2009, at 8:54 AM, jean-frederic clere wrote:
Paul Querna wrote:
On Tue, Jun 23, 2009 at 5:35 AM, jean-frederic clere> wrote:
Hi,
I plan to use slotmem (additionally to the actual file based
logic) in the
heartbeat logic.
HeartbeatStorage mem:logs/hb.dat (slotmem and key/save use
h iroshan wrote:
Hi All,
I want to open a port to communicate my Apache hhtpd (2.2) with small
software run on a separate machine .Without affecting the httpd how can
i create a new thread to listen to that software.
Also I want to start this thread when the mod_proxy_balancer is
initialize
Hi All,
I want to open a port to communicate my Apache hhtpd (2.2) with small
software run on a separate machine .Without affecting the httpd how can i
create a new thread to listen to that software.
Also I want to start this thread when the mod_proxy_balancer is initialize
its balancer members(b
many thanks it is working.
Graham Dumpleton-2 wrote:
>
> 2009/6/29 Yahav :
>>
>> i would like to set the httpd instance to run as standard linux daemon.
>> the
>> daemon should be controlled by the init daemon. the problem is that the
>> apachectl that runs the httpd is starting the main server
many thanks
Graham Dumpleton-2 wrote:
>
> 2009/6/29 Yahav :
>>
>> i would like to set the httpd instance to run as standard linux daemon.
>> the
>> daemon should be controlled by the init daemon. the problem is that the
>> apachectl that runs the httpd is starting the main server process then
>>
2009/6/29 Yahav :
>
> i would like to set the httpd instance to run as standard linux daemon. the
> daemon should be controlled by the init daemon. the problem is that the
> apachectl that runs the httpd is starting the main server process then
> forking N StarServers and return 0 or something else
i would like to set the httpd instance to run as standard linux daemon. the
daemon should be controlled by the init daemon. the problem is that the
apachectl that runs the httpd is starting the main server process then
forking N StarServers and return 0 or something else. I would like it to be
han
19 matches
Mail list logo