Date: Tue, 11 Aug 1998 16:48:38 -0700 (PDT) From: Marc Slemko <marcs@znep.com> To: Andrew McNaughton <andrew@squiz.co.nz> Cc: Brett Glass <brett@lariat.org>, security@FreeBSD.ORG Subject: Re: DOS exploit in Apache Message-ID: <Pine.GSO.4.00.9808111646070.19881-100000@redfish> In-Reply-To: <Pine.BSF.3.96.980812111249.16956B-100000@aniwa.sky>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 12 Aug 1998, Andrew McNaughton wrote: > An unofficial source patch came out on Bugtraq. Can someone point me to > the official one? There is no official patch available at this time. When there is, it will be announced on bugtraq I guess and available at http://www.apache.org/dist/patches/apply_to_1.3.1/ There are some larger issues involved with doing a proper fix and getting a proper fix is more important than getting a release out within hours with a quick patch (which would have been easy to do) then having to deal with any problems with it, and make a new one anyway later. The patch Ben Laurie posted to bugtraq is fine as a temporary patch. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.GSO.4.00.9808111646070.19881-100000>