From owner-freebsd-security  Thu Nov 26 09:13:37 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id JAA15215
          for freebsd-security-outgoing; Thu, 26 Nov 1998 09:13:37 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from axl.training.iafrica.com (axl.training.iafrica.com [196.31.1.175])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id JAA15203
          for <freebsd-security@freebsd.org>; Thu, 26 Nov 1998 09:13:22 -0800 (PST)
          (envelope-from sheldonh@axl.training.iafrica.com)
Received: from sheldonh (helo=axl.training.iafrica.com)
	by axl.training.iafrica.com with local-esmtp (Exim 2.053 #1)
	id 0zj4xx-0005TD-00; Thu, 26 Nov 1998 19:12:29 +0200
From: Sheldon Hearn <axl@iafrica.com>
To: Christoph Kukulies <kuku@gilberto.physik.RWTH-Aachen.DE>
cc: freebsd-security@FreeBSD.ORG
Subject: Re: cgi-bin/phf* security hole in apache 
In-reply-to: Your message of "Thu, 26 Nov 1998 17:19:08 +0100."
             <199811261619.RAA25745@gilberto.physik.RWTH-Aachen.DE> 
Date: Thu, 26 Nov 1998 19:12:29 +0200
Message-ID: <21030.912100349@axl.training.iafrica.com>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org



On Thu, 26 Nov 1998 17:19:08 +0100, Christoph Kukulies wrote:

> Could someone explain the effect of the 'phf*' security hole
> (severeness) in earlier apache versions?

See the Apache FAQ, question 8.

Ciao,
Sheldon.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message