On Fri, Mar 12, 2004 at 01:19:04PM +0100, Boyle Owen wrote: > Greetings, > > Does the DoS vulnerability reported in > http://secunia.com/advisories/11092/ affect the mod_ssl-2.8.16-1.3.29 > codebase? > All the filtering stuff in mod_ssl was new in the Apache 2 version and didn't turn up until after the code was imported. http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/ssl/ssl_engine_io.c?r1=1.88&r2=1.89
vh Mads Toftum -- `Darn it, who spiked my coffee with water?!' - lwall ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
