www-apache-bugdb mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From m...@hyperreal.org
Subject Re: general/1605: possible password crack?
Date Mon, 29 Dec 1997 16:37:35 GMT
Synopsis: possible password crack?

State-Changed-From-To: open-closed
State-Changed-By: marc
State-Changed-When: Mon Dec 29 08:37:34 PST 1997
State-Changed-Why:
phf is a common script that had a security hole in it that
allowed anyone to execute arbitrary commands.  It is not
distributed with Apache, but you must have uncommented
a line in your config file designed to redirect such
requests to a script at phf.apache.org that simply logs the
request.


Mime
View raw message