Mailing Lists: Apple Mailing Lists
Image of Mac OS face in stamp
 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: URGENT Mac OS X apache vulnerable!!

Hi all,


I believe we are being attacked but such an exploit. At least I cannot find
any other reason why only one of our servers (running a highly profiled
service) should lock up and become totally unresponsive at irregular
intervals. We can ping the server, but http and other services are
non-responsive. The GUI only yields the spinning color-wheel and we have to
pull the plug on the server and cold-boot. Also, a substantial number of
swapfiles build up in /var/vm.
The server only runs two PHP scripts that use "fsockopen" to communicate
with a remote server - and that's it.

I installed the recent network update today, hoping this would rectify the
situation, but no luck.

On Monday I will start building apache 1.3.26 & PHP 4.1.2...

Cheers,


-Morten

---------------------------------------------------------------
Rayon Interactive AS http://www.rayon.no
Morten Lerskau Rxnseth mailto:email@hidden
Karenslyst Alli 16d Tlf.: (47) 2213 5250
0278 Oslo Fax : (47) 2213 5260
Norway Mob.: (47) 9343 4357

> From: Paul Zurek <email@hidden>
> Date: Sat, 22 Jun 2002 02:07:57 -0400
> To: email@hidden
> Subject: Re: URGENT Mac OS X apache vulnerable!!
>
> I am quite concerned that Apple has not said a word about this
> vulnerability considering that Apache is installed on every copy of Mac
> OS X.
>
> I understand that an updated version is available from Apache, but at
> least the major Linux vendors have released patches in their native
> package and autoupdate formats.
> I find it hard to believe that a company with Apple's resources cannot
> dedicate enough manpower to match them. If OS X Server is to be a viable
> alternative to Linux, we need as much vendor support as we can get.
>
> If Apple employees are reading this, please take note. We need a patch
> from Apple. One that installs painlessly through software update.
>
> Paul
>
> Paul Zurek
> email@hidden
> _______________________________________________
> macos-x-server mailing list | email@hidden
> Help/Unsubscribe/Archives:
> http://www.lists.apple.com/mailman/listinfo/macos-x-server
> Do not post admin requests to the list. They will be ignored.
_______________________________________________
macos-x-server mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/macos-x-server
Do not post admin requests to the list. They will be ignored.
References: 
 >Re: URGENT Mac OS X apache vulnerable!! (From: Paul Zurek <email@hidden>)



Visit the Apple Store online or at retail locations.
1-800-MY-APPLE

Contact Apple | Terms of Use | Privacy Policy

Copyright © 2007 Apple Inc. All rights reserved.