[Dshield] how to take down a 'bot-net' ?

Johannes Ullrich jullrich at euclidian.com
Sun Oct 6 02:41:38 GMT 2002


> I would
> suggest you to disable SSL on your server, or upgrade to the newest
> version of mod_ssl (get it at http://www.apache.org).

they have to update the openssl library, which is used by mod_ssl
but not part of it.

The problem is that openssl ('cryptlib') is used by a lot of different
programs, which are all more or less vulnerable. Apache/mod_ssl is
just the most common, remote exploitable, use of openssl.


-- 
--------------------------------------------------------------------
jullrich at euclidian.com             Collaborative Intrusion Detection
                                         join http://www.dshield.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://www.dshield.org/pipermail/list/attachments/20021005/12c0b3e2/attachment.bin


More information about the list mailing list