Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: URGENT Mac OS X apache vulnerable!!

Morten,

You might want to check the serveradmind process to see if that is killing your machine. Open the ProcessViewer application, find serveradmind, select more info, and select Statistics. Watch it and see if it continues to grow in memory allocation. I've had this problem, and eventually the process eats up all the memory and drags the machine down.

The way I finally prevented the problem from happening is by moving all my virtual domains out of the Server Admin application, and putting them in httpd.conf (i.e. not in httpd_macosxserver.conf). I don't know if this is your problem, but it is definitely a bug in the serveradmind process that some people see. I haven't been able to nail down exactly what makes the difference between it showing the memory leak or not.

.phil

Hi all,


I believe we are being attacked but such an exploit. At least I cannot find
any other reason why only one of our servers (running a highly profiled
service) should lock up and become totally unresponsive at irregular
intervals. We can ping the server, but http and other services are
non-responsive. The GUI only yields the spinning color-wheel and we have to
pull the plug on the server and cold-boot. Also, a substantial number of
swapfiles build up in /var/vm.
The server only runs two PHP scripts that use "fsockopen" to communicate
with a remote server - and that's it.

I installed the recent network update today, hoping this would rectify the
situation, but no luck.

On Monday I will start building apache 1.3.26 & PHP 4.1.2...

Cheers,


-Morten

---------------------------------------------------------------
Rayon Interactive AS http://www.rayon.no
Morten Lerskau Rxnseth mailto:email@hidden
Karenslyst Alli 16d Tlf.: (47) 2213 5250
0278 Oslo Fax : (47) 2213 5260
Norway Mob.: (47) 9343 4357

From: Paul Zurek <email@hidden>
Date: Sat, 22 Jun 2002 02:07:57 -0400
To: email@hidden
Subject: Re: URGENT Mac OS X apache vulnerable!!

I am quite concerned that Apple has not said a word about this
vulnerability considering that Apache is installed on every copy of Mac
OS X.

I understand that an updated version is available from Apache, but at
least the major Linux vendors have released patches in their native
package and autoupdate formats.
I find it hard to believe that a company with Apple's resources cannot
dedicate enough manpower to match them. If OS X Server is to be a viable
alternative to Linux, we need as much vendor support as we can get.

If Apple employees are reading this, please take note. We need a patch
from Apple. One that installs painlessly through software update.

Paul

Paul Zurek
email@hidden
_______________________________________________
macos-x-server mailing list | email@hidden
> Help/Unsubscribe/Archives:
> http://www.lists.apple.com/mailman/listinfo/macos-x-server
> Do not post admin requests to the list. They will be ignored.
_______________________________________________
macos-x-server mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/macos-x-server
Do not post admin requests to the list. They will be ignored.
_______________________________________________
macos-x-server mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/macos-x-server
Do not post admin requests to the list. They will be ignored.
References: 
 >Re: URGENT Mac OS X apache vulnerable!! (From: Morten Ronseth <email@hidden>)



Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.