[PLUG] [plhofmei at zionlth.org: Fwd: bugtraq.c httpd apache ssl attack]
Jon Jacob
jon at manymoons.net
Fri Sep 13 21:55:32 UTC 2002
I am not sure that upgrading OpenSSL will make a difference. I am
currently running 0.96-6 which appears to be the latest version.
I also found this on securityfocus.com:
"Wouldn't it be easier to create a blank /tmp/.bugtraq.c file, chmod
000,
owned by root?
On Fri, 13 Sep 2002, The Little Prince wrote:
>
> too easy to chmod 700 gcc to lock it to root?
> obviously not as a TOTAL fix"
So, I created the file as suggested, at least until I upgrade the
system.
More information about the PLUG
mailing list