[ Date Index ][
Thread Index ]
[ <= Previous by date /
thread ]
[ Next by date /
thread => ]
Hi, What distro are you using? There is a slightly different way of starting apache with ssl - 'apachectl startssl' where as the normal http server is started simply with 'apachectl start'. This is all assuming you have mod-ssl and not apachessl. So all you need to do is edit the start up script to start apache without ssl. HTH. Jon Lawrence On Fri, 2002-09-27 at 10:18, jody salt wrote:
Hi there I can't believe it I have been slapped by the slapper worm!! It was only when I found out about it, it was too late. Has any one else had problems with it? It is sort of like the CodeRed virus for linux. (and it is fairly recent) It works by exploiting a buffer overflow, that all apache servers using open ssl are vunerable to (that have not revieved the patch). I did not even realise I had SSL running it is just a default installation. As I don't need it, I need to know how to remove it, what parts of configuration do I need to modify to remove it? -- I don't want to make the same mistake twice. Are they any other exploits I need to know of? (I also use SSH) many thanks Jody Salt __________________________________________________ Do You Yahoo!? Everything you'll ever need on one web page from News and Sport to Email and Music Charts http://uk.my.yahoo.com -- The Mailing List for the Devon & Cornwall LUG Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the message body to unsubscribe.
-- The Mailing List for the Devon & Cornwall LUG Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the message body to unsubscribe.