Apache/mod_ssl Worm
Rick Thomas
yellowdog-general@lists.terrasoftsolutions.com
Tue Sep 17 15:52:01 2002
Is YDL 2.2 vulnerable to the Apache/mod_ssl Worm?
Since the worm propagates by sending source code, it seems that running
on an un-popular processor (PPC) is not the protection that it usually
would be.
It is claimed that "OpenSSL 0.9.6e" provides protection. I just did an
"apt-get upgrade" on my YDL 2.2 system, so it should be up-to-date, yet
I find via "rpm -qi openssl" that it's running "OpenSSL 0.9.6b"
Just a thought...
Rick