[Gllug] Apache REMOTE ROOT exploit

Bruce Richardson itsbruce at uklinux.net
Sun Jun 23 22:56:56 UTC 2002


On Fri, Jun 21, 2002 at 11:47:28AM +0100, Thom wrote:
> Agreed, but how many distributions _don't_ install apache virtually by
> default? 

Debian, Slackware, Red Hat if you choose the workstation install, same
for Mandrake.

> Any user on dial up is potentially vulnerable to this.

Anybody who doesn't put up at least a simple firewall when they're
connected to the net is just barking.  Even windows users are doing this
these days.

-- 
Bruce

Hummingbirds are the only birds that can fly backwards, apart from
ostriches if you punch them hard enough.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 261 bytes
Desc: not available
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20020623/1198be3b/attachment.pgp>


More information about the GLLUG mailing list