Home Business IT Open Source Apache issues fix for DoS vulnerability

The Apache Software Foundation has issued a new version of its server software to fix a serious denial of service vulnerability.


The fix, for the Apache httpd server, comes five days after the ASF announced the existence of the bug and acknowledged the existence of a remote attack tool in the wild.

The ASF said it would issue a full fix in 48 hours. It was upstaged by the security team at the Debian GNU/Linux project which issued a fix for its users yesterday Australian time.

The bug meant that if a web server running Apache is sent a large number of requests for overlapping byte regions of a single file download, that server would run out of memory and be rendered unable to do its job.

Apache is by far the most widely used web server software, running nearly two-thirds of websites at last count.

WEBINAR 26/27th May

Thinking of deploying Business Intelligence (BI)? So are your competitors.

And the most important, fundamental, tool for delivering your BI information to your users? Dashboards.

THIS IS ONE NOT TO MISS SO REGISTER NOW

DON'T MISS OUT - REGISTER NOW!

FREE WHITEPAPER - RISKS OF MOVING DATABASES TO VMWARE

VMware changed the rules about the server resources required to keep a database responding

It's now more difficult for DBAs to see interaction between the database and server resources

This whitepaper highlights the key differences between performance management between physical and virtual servers, and maps out the five most common trouble spots when moving production databases to VMware

1. Innacurate metrics
2. Dynamic resource allocation
3. No control over Host Resources
4. Limited DBA visibility
5. Mutual ignorance

Don't move your database to VMware before learning about these potential risks, download this FREE Whitepaper now!

DOWNLOAD!

Sam Varghese

website statistics

A professional journalist with decades of experience, Sam for nine years used DOS and then Windows, which led him to start experimenting with GNU/Linux in 1998. Since then he has written widely about the use of both free and open source software, and the people behind the code. His personal blog is titled Irregular Expression.

Connect