From owner-freebsd-questions@FreeBSD.ORG Thu Apr 8 04:27:33 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4566516A4CE for ; Thu, 8 Apr 2004 04:27:33 -0700 (PDT) Received: from smtp.infracaninophile.co.uk (smtp.infracaninophile.co.uk [81.2.69.218]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5A1EF43D53 for ; Thu, 8 Apr 2004 04:27:32 -0700 (PDT) (envelope-from m.seaman@infracaninophile.co.uk) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost.infracaninophile.co.uk [IPv6:::1])i38BRNDG015636 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 8 Apr 2004 12:27:23 +0100 (BST) (envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk) Received: (from matthew@localhost)id i38BRNMD015635; Thu, 8 Apr 2004 12:27:23 +0100 (BST) (envelope-from matthew) Date: Thu, 8 Apr 2004 12:27:23 +0100 From: Matthew Seaman To: Mark Message-ID: <20040408112723.GE71019@happy-idiot-talk.infracaninophile.co.uk> Mail-Followup-To: Matthew Seaman , Mark , freebsd-questions@freebsd.org References: <200404081050.I38AOWNT082514@asarian-host.net> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="10jrOL3x2xqLmOsH" Content-Disposition: inline In-Reply-To: <200404081050.I38AOWNT082514@asarian-host.net> User-Agent: Mutt/1.5.6i X-Spam-Status: No, hits=-4.8 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=2.63 X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on happy-idiot-talk.infracaninophile.co.uk X-Virus-Scanned: clamd / ClamAV version devel-20040323, clamav-milter version 0.70a cc: freebsd-questions@freebsd.org Subject: Re: Fw: Rewriting long URIs from viruses... shortening log files X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Apr 2004 11:27:33 -0000 --10jrOL3x2xqLmOsH Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Apr 08, 2004 at 10:50:33AM +0000, Mark wrote: > Purl Gurl (in alt.apache.configuration) wrote: >=20 > > tz wrote: > >> Running Apache/1.3.27 (Unix) here. > > > > Excellent. Apache 1.3.27 is the best > > version of all Apache releases. Next > > two, .28 and .29 have some bugs. >=20 > Is this true? I very much doubt it. Since I recently upgraded to 1.3.29 > myself (on FreeBSD 4.9R-p3), it doesn't hurt to ask, though. It's not in agreement with what it says on http://httpd.apache.org/. apache-1.3.29 is a security release, as well as being a bug fix release. The Apache Software Foundation is not shy about admitting mistakes or shortcomings: if they felt that an older release was substantially better for most people to run, that information would be plastered all over their front page. There is a bug to do with mod_usertrack and the CookieName directive which is a current issue in the latest versions of apache. However, it's something that will only affect a few apache users, and there's a simple work-around. It's not so significant they've produced a new release right away, nor is it anything like as important as the buffer overflow fixed with the release of 1.3.29, exploitation of which could allow an attacker to DoS your server or even run arbitrary code upon it. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK --10jrOL3x2xqLmOsH Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFAdTcbdtESqEQa7a0RAj7RAJwOTst4VSsY2dTvy6OYBrn22xbpDQCfR8E4 h1gQWFSFoWEqleJANsKt2w4= =UyiI -----END PGP SIGNATURE----- --10jrOL3x2xqLmOsH--