From owner-freebsd-isp Sat Mar 2 19:33:58 2002 Delivered-To: freebsd-isp@freebsd.org Received: from darkstar.buckhorn.net (lfkn-adsl-dhcp-net1-142.txucom.net [207.70.145.142]) by hub.freebsd.org (Postfix) with ESMTP id 40C4737B41B for ; Sat, 2 Mar 2002 19:33:54 -0800 (PST) Received: from uudet.org (localhost.buckhorn.net [127.0.0.1]) by darkstar.buckhorn.net (Postfix) with ESMTP id ADF256EBB6 for ; Sat, 2 Mar 2002 21:34:18 -0600 (CST) Message-ID: <3C8199BA.9010609@uudet.org> Date: Sat, 02 Mar 2002 21:34:18 -0600 From: Bob Martin User-Agent: Mozilla/5.0 (X11; U; Linux i386; en-US; rv:0.9.4) Gecko/20011126 Netscape6/6.2.1 X-Accept-Language: en-us MIME-Version: 1.0 Cc: isp@freebsd.org Subject: Re: HEADS UP: Security Alert For Apache / PHP Webservers References: <07cb01c1bfa6$d1c99550$3531000a@shaw.ca> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org I always go to the source. There is a PHP vuneralability for PHP. The solution/patches are on the PHP site, as well as at CERT. The fastest way to work around is to disable file uploads in PHP.INI, or go to the latest stable version. Bob Martin Laurence Brockman wrote: > Just another heads up as well. > > Lately on a lot of security lists there is a lot of dis-information being > posted. On Security Focus lists there have even been "exploits" posted that > in reality are trojans that will open up a root shell on unsuspecting users. > > So far I have seen these so called advisories (Or really rumours of > vulnerabilities) for Apache, SSH2 (Later versions), BIND and SNMPD (UCD-SNMP > ver 4.2.2 I think, or ver 4.2.1). Now the SNMPD advisory is real, but the > exploits that have been released aren't. > > So again, be careful with what you believe and run from these lists (As you > should always be)... > > See the following from Blue Boar of the Vuln-Dev list > http://online.securityfocus.com/archive/82/258445 > > Thanks, > Laurence > > ----- Original Message ----- > From: "Van Beerschoten, Stephan" > To: ; ; > Sent: Wednesday, February 27, 2002 7:14 AM > Subject: FW: HEADS UP: Security Alert For Apache / PHP Webservers > > > >>I usually don't mail from my corporate account, but this needs some fast >>fixing on almost all FreeBSD/apache/php servers. >> >>-Stephan >> >> > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-isp" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message