Slashdot Mirror

← Back to Stories (view on slashdot.org)

Apache Worm in the Wild

Posted by michael on Friday June 28, 2002 @06:00AM from the patchy-server dept.

codewolf writes "It has been reported to bugtraq by Domas Mituzas that a worm that exploits the Apache chunk bug has been found in the wild. Information on the worm can be found here. More information on the Apache bug can be found here, and patches can either be made by modifying your config file or upgrading your Apache version."

5 of 85 comments (clear)

Min score:

Reason:

Sort:

Pooolka? by Anonymous Coward · 2002-06-28 06:15 · Score: -1, Troll

Oh du schöne,
Oh du schöne,
Oh du schöne,
SLASHDOT SUCKS !!
Re:Slashdot by Anonymous Coward · 2002-06-28 06:18 · Score: -1, Troll

/. is run by "CmdrTaco", "Cowboy Neal" and "Typhoid Mary"
I'm sorry by Anonymous Coward · 2002-06-28 06:40 · Score: -1, Troll

you are just wrong. Hackers can't exploit these holes unless they know about them. So if you don't publish their existence, hackers won't know they are there. And even if they found them anyway, we don't want the suits to find out how insecure Apache is so quit publicizing this stuff.
Honestly, how is Open Source going to win if we point out all its flaws?
Better Solution by NotoriousQ · 2002-06-28 09:07 · Score: 2, Troll

For those of you that do not need a web server, turn it off.

--
badness 10000
So are there any better versions of the worm out? by Anonymous Coward · 2002-06-29 01:18 · Score: -1, Troll

It's been a day or so. I've seen the source code for the worm posted twice, along with instructions for an absolute fuckwit in how to compile it, and stupid ass-patch methods to "protect" you from the worm. Has anyone actually managed to change the worm enough to do something interesting? Post a link so we can all play with it now.