Re: Apache warns Web server admins of DoS attack tool

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]



> --On Thursday, August 25, 2011 9:09 PM +0100 Always Learning
> <centos@xxxxxxxxxxx> wrote:
>
>> The temporary fix is shown on several web sites as this, shown below,
>> added to Apache's conf file:-
>
> I try to minimize changes to main files. Presumably putting that code in a
> separate file (eg. conf.d/RangeVulnerabilityWorkaround.conf) should work
> equally well?

Hi,

Attached is what I've put into /etc/httpd/conf.d/CVE-2011-3192.conf and
I'll just remove it after the coming update is done.
At least killapache.pl doesn't kill anymore.

Works for me, YMMW.

Simon

Attachment: CVE-2011-3192.conf
Description: Binary data

_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos

[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]
  Powered by Linux