Ok... so... It sounds like there is no real problem, any suggestions on
how i might test to make sure i havnt inadvertantly blasted a nasty
security hole in my server?
Jamie
"On two occasions I have been asked [by members of Parliament!], `Pray,
Mr. Babbage, if you put into the machine wrong figures, will the right
answers come out?' I am not able rightly to apprehend the kind of
confusion of ideas that could provoke such a question."
-- Charles Babbage
Jamie Chamoulos
http://jamieweb.dyn.ml.org/
[EMAIL PROTECTED]
On 29 Dec 1997 [EMAIL PROTECTED] wrote:
> Synopsis: possible password crack?
>
> State-Changed-From-To: open-closed
> State-Changed-By: marc
> State-Changed-When: Mon Dec 29 08:37:34 PST 1997
> State-Changed-Why:
> phf is a common script that had a security hole in it that
> allowed anyone to execute arbitrary commands. It is not
> distributed with Apache, but you must have uncommented
> a line in your config file designed to redirect such
> requests to a script at phf.apache.org that simply logs the
> request.
>
