[users@httpd] Injecting content on the fly at the server.

Got a better idea on how to do this? Academic environment. When employees (professors) retire, we commonly leave their personal web pages (e.g. ~user) in place, and they commonly continue to have access to our Unix machines. Management (The Boss) has decreed that "all such pages shall be wrapp

Re: [users@httpd] Update on mod_setenvif exploit CVE-2011-3607 and CVE-2011-4415

On 12/21/2011 1:18 PM, Pete Houston wrote: On Wed, Dec 21, 2011 at 12:42:02PM -0500, Kevin A. McGrail wrote: Our server is being flagged for PCI non-compliance because of these CVE's but there doesn't appear to be a fix, a workaround or any information I can find. There seem to be 2 obvious wor

Re: [users@httpd] Update on mod_setenvif exploit CVE-2011-3607 and CVE-2011-4415

On Wed, Dec 21, 2011 at 12:42:02PM -0500, Kevin A. McGrail wrote: > Our server is being flagged for PCI non-compliance because of these > CVE's but there doesn't appear to be a fix, a workaround or any > information I can find. There seem to be 2 obvious workarounds: 1. Don't load mod_setenvif. T

Re: [users@httpd] Redirecting suspicious search probes

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 12/19/2011 03:38 PM, James Moe wrote: > > 1. Is this a reasonable way of handling undesirable search probes? > 2. Is there an "include"-style statement for <.htaccess> so I only > need to update a single master redirect list? > No one has an o

[users@httpd] Update on mod_setenvif exploit CVE-2011-3607 and CVE-2011-4415

Good Morning, I was wondering if there was any update on CVE-2011-3607 and CVE-2011-4415 which are bugs in mod_setenvif? Our server is being flagged for PCI non-co

[users@httpd] AUTO: Todd W Stephens is out of the office

I am out of the office until 01/09/2012. I will be checking emails daily and will respond when I can Note: This is an automated response to your message "users Digest 21 Dec 2011 12:07:33 - Issue 4247" sent on 12/21/2011 5:07:33. This is the only notification you will receive while this p

[users@httpd] Re: .htaccess help - restricting access to certain REMOTE_host's and redirecting others to /index.html

On 19 December 2011 14:24, Aaron Gray wrote: > Hi, > > I am really having problems understand and getting .htaccess mod_rewrite's > to work. > > What I want is a site that rewrites any traffic that is not from a set > number of REMOTE_HOST's or in a set of certain files to always be > redirected

[users@httpd] Re: [CASE:90696] users Digest 21 Dec 2011 12:07:33 -0000 Issue 4247

Tom Evans wrote: > Before we get another deluge from this subscribers autoresponder, can > they be unsubscribed? > > Cheers > > Tom > Or you could filter him: Good luck. - The official User-To-User support forum of the Apa

Re: [users@httpd] Re: [CASE:90696] users Digest 21 Dec 2011 12:07:33 -0000 Issue 4247

Before we get another deluge from this subscribers autoresponder, can they be unsubscribed? Cheers Tom On Wed, Dec 21, 2011 at 12:16 PM, Admin Info - PANDI wrote: > Terimakasih atas email anda > Kami akan berikan respon segera. > > Thank you for your email, > We will respond as soon as posible.

[users@httpd] Re: [CASE:90696] users Digest 21 Dec 2011 12:07:33 -0000 Issue 4247

Terimakasih atas email anda Kami akan berikan respon segera. Thank you for your email, We will respond as soon as posible. Pengelola Nama Domain Internet Indonesia Gd. Arthaloka Lt. 11 Jl. Jendral Sudirman Jakarta 10220 Telp : 021- 57939151 Fax  : 02

Re: [users@httpd] RAM problem with apache and PHP on default centos configuration

Thank you all for your hints. The problem was a misconfiguration, and seems to be solved reducing the number of child processes and adjusting MaxRequstPerChild parameter. We will try also with mod_fcgid. Do you know any trade off with respect to mod_php for developers (differences in env variables