Grave apache dos possible through byterange requests

Hi, it is possible to dos a actual squeeze-apache2 with easy to forge rage-requests: http://lists.grok.org.uk/pipermail/full-disclosure/2011-August/082299.html Apache-devs are working on a solution: http://www.gossamer-threads.com/lists/apache/dev/401638 But because the situation seems serious

Re: [SECURITY] [DSA 2267-1] perl security update

Wolfgang Jeltsch wrote, On 08/23/2011 09:43 AM: > is there any way to find out which Debian packages use Perl’s Safe > module? What damage could a local attacker have caused by exploiting the > Safe modules’s security flaw? Wolfgang, # Debian Package File Search $ dpfs() { lynx -dump -nolist -wi

Re: [SECURITY] [DSA 2267-1] perl security update

Am Freitag, den 01.07.2011, 19:52 +0200 schrieb Moritz Muehlenhoff: > - - > Debian Security Advisory DSA-2267-1 secur...@debian.org > http://www.debian.org/security/Moritz Muehlenhoff >