From owner-freebsd-security Tue Jun 18 8:41:57 2002 Delivered-To: freebsd-security@freebsd.org Received: from borja.sarenet.es (borja.sarenet.es [192.148.167.77]) by hub.freebsd.org (Postfix) with ESMTP id 41B9A37B407 for ; Tue, 18 Jun 2002 08:41:49 -0700 (PDT) Received: from borja.sarenet.es (localhost [127.0.0.1]) by borja.sarenet.es (8.12.3/8.12.3) with ESMTP id g5IFflFZ085338 for ; Tue, 18 Jun 2002 17:41:47 +0200 (CEST) (envelope-from borjam@sarenet.es) Content-Type: text/plain; charset="iso-8859-1" From: Borja Marcos Organization: Sarenet S.A. To: security@freebsd.org Subject: Re: Apache issues Date: Tue, 18 Jun 2002 17:41:46 +0200 X-Mailer: KMail [version 1.4] References: <3D0F4DFF.4ABEE1FB@abc.ro> In-Reply-To: <3D0F4DFF.4ABEE1FB@abc.ro> MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Message-Id: <200206181741.46606.borjam@sarenet.es> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tuesday 18 June 2002 17:13, ANdrei wrote: > have a few questions: > > 1) anyone heard anything about a worm/exploit for FreeBSD primarly, and > other systems, taking advantage of the new Apache bug? =09It can be used for a denial of service. Doing some tests, I have seen = httpd=20 processes receiving a SIGBUS and a SIGSEGV. After that, they enter an end= less=20 loop getting 100% CPU. Under other systems, such as Solaris or Linux, the= =20 httpd processes crash. =09Borja. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message