[CentOS] Apache warns Web server admins of DoS attack tool
Always Learning
centos at u61.u22.net
Fri Aug 26 11:32:00 UTC 2011
On Fri, 2011-08-26 at 08:13 +0200, Simon Matter wrote:
> Attached is what I've put into /etc/httpd/conf.d/CVE-2011-3192.conf and
> I'll just remove it after the coming update is done.
> At least killapache.pl doesn't kill anymore.
>
> Works for me, YMMW.
<IfModule mod_setenvif.c>
SetEnvIf Range (,.*?){5,} bad-range=1
RequestHeader unset Range
</IfModule>
Very useful. Thanks Simon.
I found the Range temporary solution stopped the loading of a MySQL
table vua PHPmyAdmin,
--
With best regards,
Paul.
England,
EU.
More information about the CentOS
mailing list