[Dshield] Does Apache server need patching against CodeRedt? indeed can it?

Peter Street lazerfx at ntlworld.com
Tue Aug 7 13:30:57 GMT 2001


-- Quote --
we are being swamped by CodeRed requests to the server on port 80. Is there
anything I can do to stop them?
-- /Quote

Unfortunately, these requests are simply messages being sent out by other
compromised systems.  There isn't all that much you can do to protect
against these.

-- Quote --
Apache (latest -xx.19) on FreeBSD 2.2.6xxx
-- /Quote --

Apache is invulnerable to CR and CR-II (And any other variants) since it
takes advantage of MS's buggy coding :)

HTH

Peter Street




More information about the list mailing list