httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bill Parker" <dogb...@netnevada.net>
Subject [users@httpd] Apache and AWstats exploit
Date Tue, 22 Mar 2005 04:14:12 GMT
Hi All,

    In reading the list, I have noticed that people have been talking about the AWstats exploit.
 I had AWstats 6.2 installed (running 6.4 now), but the only people who can get ssh access
to the box are tech types in our office, and I only run the awstats.pl --update and generate
a static HTML page once a day with no links on the page to click on to update statistics remotely.
 Is this something that I should be worried about, or is a static HTML page for AWstats not
expoitable?

Bill
Mime
View raw message