Re: Apache update from SuSE ??

From: Christian Henn (Christian.Henn@mni.fh-giessen.de)
Date: 07/03/02


Date: Wed, 3 Jul 2002 10:19:31 +0200
From: Christian Henn <Christian.Henn@mni.fh-giessen.de>
To: focus-linux@securityfocus.com

Hello,

>
> Is this the right version against the new apache worm ?
> Is this a special SuSE patched version ?

Whenever a service/programm/whatever gets exploited, you can _not_ wait for your distribution to fix it, but have to build your own Package (rpm, deb, depot, pkg, whatever) or just tar xvf ....; ./configure; make ... .

If you're still running SuSE 7 you should consider upgrading the whole operating system, as there was a number of problems with libraries (zlib buffer oflow) as well as the OpenSSH-blues (hexor, x2) everyone is fighting with. As far as I know, the current distribution is SuSE 8.

But whatever, if running public services you have to be fix in terms of upgrading or you might get serious problems because of the masses of script kiddies...

-- 
mfG/regards

Christian Henn

"toute abus sera puni"