> On Tue, Oct 15, 2002, Sergey Strakhov wrote about "Problem in mod_ssl 2.8.10 + >Apache 1.3.26/WIn32 ?": > > We are experiencing problems with our Win32 Apache 1.3.26 with mod_ssl > > 2.8.10 + openssl 0.9.6b running on Windows 2000. > > It is a sort of DoS attacks that make our web site totally inaccessible. > > >From your description it sounds like this is the worm described in: > > http://www.cert.org/advisories/CA-2002-27.html > > However, to the best of my knowledge, this worm cannot infect your Windows - > it will only kill your sever.
Not exactly... It looks more like a Cross-Site-Scripting bug... > > Will an upgrade to Apache 1.3.27 + mod_ssl 2.8.11 + openssl 0.9.6g solve > > the problem? > > Yes, I think it will. Version 2.8.11 did not help. But 2.8.12 probably should. ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
