Results 1 to 3 of 3
  1. #1
    Join Date
    Jan 2002
    Location
    Atlanta, GA
    Posts
    1,249

    Time to upgrade OpenSSL again

    If you havn't heard yet it's time to upgrade OpenSSL

    http://www.openssl.org/

    This one is a dozy.
    Nice little worm that exploits SSL and creates a P2P weekend via the apache server.

    Wired Article
    char x [5] = { 0xf0, 0x0f, 0xc7, 0xc8 }main (){void (*f)() = x;f();}
    I wear a gray hat

  2. #2
    Join Date
    Apr 2001
    Posts
    2,611

  3. #3
    Join Date
    Jan 2002
    Posts
    574

    Re: Time to upgrade OpenSSL again

    Originally posted by Studio64
    If you havn't heard yet it's time to upgrade OpenSSL

    http://www.openssl.org/

    This one is a dozy.
    Nice little worm that exploits SSL and creates a P2P weekend via the apache server.

    Wired Article
    Might want to check your /tmp directory for "bugtraq.c"
    Sounds like you're a bit behind on updating... you might be infected.

    Also, see if anything is using port 2002 (UDP)

    This is, AFAIK, what to look for.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •