PHP Attacks....
Alexander Dalloz
ad+lists at uni-x.org
Wed Nov 9 19:16:15 UTC 2005
Am Mi, den 09.11.2005 schrieb Matthew Nuzum um 20:02:
> > In light of the recent PHP attacks, I've added as a precautionary
> > measure the mod_security module to my RPM for the httpd (Apache) web
> > server to help secure things more.
> > I haven't experienced the problem; yet, KNOCKING on WOOD LOUDLY. But
> > with the recent spike of activity of this worm, I have to take
> > proactive action.
>
> Which worm is this that you're guarding against? I haven't heard of a new
> worm yet.
http://isc.sans.org/diary.php?storyid=829
It is no new PHP XML vulnerability misused by the attackers, but
activity to find attackable hosts increased badly these days.
Alexander
--
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.35_FC2smp
Serendipity 20:14:46 up 11 days, 18:15, load average: 0.45, 0.31, 0.23
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20051109/cca8143f/attachment.sig>
More information about the fedora-legacy-list
mailing list