[Phpwm] Apache DoS vulnerability

Jon Spriggs jon at sprig.gs
Fri Aug 26 08:15:25 UTC 2011


If you're loading the headers module, why not put that into
/etc/apache2/mods-available/headers.conf and then run the a2enmod
headers?

I'll be adding a note to that effect on that blog post.

Regards,
--
Jon "The Nice Guy" Spriggs

On 26 August 2011 09:06, David Goodwin <david at codepoets.co.uk> wrote:
>
> On 25 Aug 2011, at 14:48, Reuben Pearse wrote:
>
>> Was the fix the Mez implemented the one that is detailed here?
>>
>> http://www.edwiget.name/2011/08/quick-fix-for-apache-cve-2011-3192/#more-179
>
>
> I've done :
>
> a2enmod headers
> echo "RequestHeader unset Range " >> /etc/apache2/apache2.conf
> apache2ctl restart
>
> (On Debian based servers)
>
> David.
> _______________________________________________
> Phpwm mailing list
> Website : http://www.phpwm.org
> Twitter : http://www.twitter.com/phpwm
> Facebook: http://www.facebook.com/group.php?gid=2361609907
>
> Post to list: Phpwm at mailman.lug.org.uk
> Archive etc : https://mailman.lug.org.uk/mailman/listinfo/phpwm
>



More information about the Phpwm mailing list