[CentOS] Apache warns Web server admins of DoS attack tool

Thu Aug 25 16:49:03 UTC 2011
Colin Coles <colin at wemoto.com>

On Thursday 25 Aug 2011, m.roth at 5-cent.us wrote:
> Anyone have any idea how soon RHEL and CentOS will be releasing the patch
> package?
> 
> Excerpt:
> Computerworld - Developers of the Apache open-source project today
> warned users of the popular Web server software that a denial-of-service
> (DoS) tool is circulating that exploits a bug in the program.
> 
> The tool, called "Apache Killer," showed up last Friday in a post to the
> "Full Disclosure" security mailing list.
> 
> Today, the Apache project acknowledged the vulnerability that the attack
> tool exploits, and said it would release a fix for Apache 2.0 and 2.2 in
> the next 48 hours.
> --- end excerpt ---
> 
> <http://www.computerworld.com/s/article/9219471/Apache_warns_Web_server_adm
> ins_of_DoS_attack_tool>

There are some work-around suggestions here:
http://lwn.net/Articles/456268/