On Fri, 2011-08-26 at 08:13 +0200, Simon Matter wrote:
> Attached is what I've put into /etc/httpd/conf.d/CVE-2011-3192.conf and
> I'll just remove it after the coming update is done.
> At least killapache.pl doesn't kill anymore.
>
> Works for me, YMMW.
<IfModule mod_setenvif.c>
SetEnvIf Range (,.*?){5,} bad-range=1
RequestHeader unset Range
</IfModule>
Very useful. Thanks Simon.
I found the Range temporary solution stopped the loading of a MySQL
table vua PHPmyAdmin,
--
With best regards,
Paul.
England,
EU.
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
Re: Apache warns Web server admins of DoS attack tool
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: Apache warns Web server admins of DoS attack tool
- From: Always Learning <centos@xxxxxxxxxxx>
- Date: Fri, 26 Aug 2011 12:32:00 +0100
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <344a542e8a77861c186fe59be728d2df.squirrel@webmail.bi.corp.invoca.ch>
- References:
- Apache warns Web server admins of DoS attack tool
- From: m . roth
- Re: Apache warns Web server admins of DoS attack tool
- From: Always Learning
- Re: Apache warns Web server admins of DoS attack tool
- From: Kenneth Porter
- Re: Apache warns Web server admins of DoS attack tool
- From: Simon Matter
- Apache warns Web server admins of DoS attack tool
- Prev by Date: Re: Apache warns Web server admins of DoS attack tool
- Next by Date: Re: Apache warns Web server admins of DoS attack tool (temp fix update)
- Previous by thread: Re: Apache warns Web server admins of DoS attack tool
- Next by thread: Re: Apache warns Web server admins of DoS attack tool
- Index(es):
 |