Do you run scripts which are subject to the cross site scripting addressed in
one of the latest CERT's. 1.3.12 addresses this problem.
On Mon, 13 Mar 2000, you wrote:
> If we are using Apache 1.3.9 with the associated mod_ssl, should
> we upgrade to Apache 1.3.12 and the associated mod_ssl per the
> procedure at http://www.modssl.org/example/ ? The fact that
> Apache.org is still running Apache version 1.3.9 on its website
> (which can be confirmed at: http://www.netcraft.com/whats/ ) does
> not instill confidence to do an upgrade. ~
>
> Any opinions from the experienced folks here would be gratefully
> received.
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
--
-Lewis Bergman-
Texas Communications
915-695-6962
4309 Maple St.
Abilene, TX 79602
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
