> --On Thursday, August 25, 2011 9:09 PM +0100 Always Learning > <centos at u61.u22.net> wrote: > >> The temporary fix is shown on several web sites as this, shown below, >> added to Apache's conf file:- > > I try to minimize changes to main files. Presumably putting that code in a > separate file (eg. conf.d/RangeVulnerabilityWorkaround.conf) should work > equally well? Hi, Attached is what I've put into /etc/httpd/conf.d/CVE-2011-3192.conf and I'll just remove it after the coming update is done. At least killapache.pl doesn't kill anymore. Works for me, YMMW. Simon -------------- next part -------------- A non-text attachment was scrubbed... Name: CVE-2011-3192.conf Type: application/octet-stream Size: 176 bytes Desc: not available URL: <http://lists.centos.org/pipermail/centos/attachments/20110826/df3eea0c/attachment-0005.obj>