Hosting Provided By

RE: More /sumthin

From: Jonathan A. Zdziarski <jonathan(at)networkdweebs.com>
Date: Wed Feb 26 2003 - 16:14:37 EST

Well whatever bugs this exploits, it seems that from the source code, it is more related to the version of Apache than it is the version of SSL; perhaps something to do with the way they interact. It doesn't even use port 443.

Also being that ./openssl was called and not just plain old openssl, and that -a doesn't appear to be a valid openssl command, it's probably calling a script of sorts and we have no idea what that script does.

> -----Original Message-----
> From: Philipp Hug [mailto:securityfocus@hugit.ch]
> Sent: Wednesday, February 26, 2003 9:23 AM
> To: Sverre H. Huseby; incidents@securityfocus.com

<Pre>Lose another weekend managing your IDS? Take back your personal time.
15-day free trial of StillSecure Border Guard.</Pre> <A href="http://www.securityfocus.com/stillsecure"> http://www.securityfocus.com/stillsecure </A> Received on Wed Feb 26 18:48:52 2003

This message: [ Message body ]
Next message: Mary McAllister: "RE: Weird Windows logon attempts"
Previous message: Philipp Hug: "Re: More /sumthin"
In reply to: Philipp Hug: "Re: More /sumthin"
In reply to NESTING, DAVID M (SBCSI): "RE: Weird apache logs"
Next in thread: D.C. van Moolenbroek: "Re: More /sumthin"
Reply: D.C. van Moolenbroek: "Re: More /sumthin"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:59 EDT