Zoran Vasiljevic wrote:

On Monday 24 November 2003 16:30, you wrote:


It's not an unknown reason, it's a remote root which you guys already
fixed in 3.4...add the Content-Length check to 4.0 and you should be set.





Ah, *that* is the beast! Thanks for the info! Cheers Zoran





It's quite difficult to exploit - I doubt anyone has been compromised in the wild with this thing, especially those of you running it on Solaris. I could be wrong, and there could be some other thing wrong with your server. Fix the Content-Length and find out! :>

-dave


-- AOLserver - http://www.aolserver.com/

To Remove yourself from this list, simply send an email to <[EMAIL PROTECTED]> with the
body of "SIGNOFF AOLSERVER" in the email message. You can leave the Subject: field of 
your email blank.

Reply via email to