|
>At the same time, there are servers more >vulnerable and less vulnerable to >malicious attacks. Oh so true! >I've never heard of a successful buffer >overrun attack on the IBM HTTP server. I was hit by one, sort of. When I first started with the web, my Classic HTTP server would crash intermittently and I could not figure it out. I put on the latest PTFs and so forth. I simply attributed the failures to some web thing I didn't know about yet. One day whilst looking through the logs I noticed that the last access was one of the popular Windows attacks. I finally put one and one together (I AM a beginner in this stuff!) and found that each crash had the same pattern. Attack then server stops responding. I don't remember the attack, nor the version of the HTTP server, but crashing the program is Not a Good Thing. This is not the same thing as taking over a server, but if some goofball chops my HTTP server down over a weekend, I'm not going to be happy. Nor are the people who depend on that server. --buck
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.