Berkeley CSUA MOTD:Entry 25251
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2025/05/25 [General] UID:1000 Activity:popular
5/25    

2002/7/1-2 [Computer/SW/OS/FreeBSD, Computer/SW/WWW/Server] UID:25251 Activity:very high
7/1     Silly observation: An internet worm that runs on Apache servers on
        FreeBSD is running amuck.  We run apache (older version) on FreeBSD
        on soda.  Shouldn't this be fixed ASAP?

        11:54am eric@soda ~ > /usr/local/apache/bin/httpd -v
        Server version: Apache/1.3.12 (Unix)
        Server built:   Sep 15 2000 17:35:27

        -eric
        \_ Indeed.  Mail root.
          \_ This is a 2 week old issue.  That's why it's in the motd.
             \_ And yet still no one has mailed root.
                \_ so let's see: either no one on root reads the motd, or
                   slashdot, or bugtraq, or comp.security.unix, or any of
                   the dozens of other places they might have heard about this
                   hole, or...they don't give a shit.  Do you really think
                   mail to root will make a difference?  Occam's Razor.  -tom
                   \_ They upgraded OpenSSH to version 3.4 recently, so they
                      must have been reading something to find out that
                      there is a problem with openssh. It is surprising that
                      apache went without being upgraded for so long..
                      \_ *Someone* on the motd said a day or two ago that this
                         was only a DoS attack and we should not worry our
                         pretty little heads about it.  *cough*  *ahem*
                         \_ What DoS attack? Real remote exploits for apache
                            on *BSD have already been posted and there are
                            apache worms speading on the net. Would you feel
                            good if script kiddiez got a shell on soda, even
                            if it is running as "nobody"?
                            \_ No I would not, but *other people* around here
                               who think they're a lot smarter and a lot more
                               talented than they are (they're certainly loud)
                               were claiming a day or two ago that this is just
                               a DoS and not a real exploit and we should all
                               just relax.  Fortunately these really smart and
                               talented people usually sign their posts so we
                               will all eventually learn to ignore their tech
                               info and advice.
                \_ csua have been rooted already.
                   \_ all your httpd are belong to us.
2025/05/25 [General] UID:1000 Activity:popular
5/25    

You may also be interested in these entries...
2010/4/19-5/10 [Computer/SW/Security, Computer/SW/WWW/Server] UID:53791 Activity:nil
4/18    http://Apache.org hacked:
        http://www.theinquirer.net/inquirer/news/1601103/apache-hacked
	...
2010/4/22-5/10 [Computer/SW/Languages/Misc] UID:53797 Activity:nil
4/22    In Linux is there an easy way to rename the scripts in /etc/rc?.d ?
        For example I want to set all the /etc/rc?.d/S91apache to S100apache
        so that it'll run the ramdisk BEFORE going to apache.
        \_ Sure, just move them.
           \_ I mean is there a script that will rename all of them
              for me? Like: setrc apache2 0 0 1 1 1 1
	...
2010/1/22-30 [Computer/HW/Laptop, Computer/SW/OS/OsX] UID:53655 Activity:high
1/22    looking to buy a new development laptop
        needs ssdrive, >6 hr possible batt life, and runs linux reasonably
        Anyone have a recommendation? Thx.
        \_ thinkpad t23 w ssdrive and battery inplace of drive bay
        \_ Ever wondered what RICHARD STALLMAN uses for a laptop?  Well,
           wonder no more!
	...
2010/1/12-29 [Computer/SW/Apps/Media] UID:53627 Activity:kinda low
1/12    How do I get a job NOT related to internet DNS social network cloud
        twitter GOOG EC2 amazon API ???
        \_ A CS job not related to API?
        \_ Chip design, or maybe software that does chip design. What is
           your major? How about game developer?
        \_ DNS? DNS? What era ado you live in? I agree that social network
	...
2009/12/7-2010/1/3 [Computer/HW/Memory, Computer/HW] UID:53574 Activity:nil
12/7    How many TCP retransmits are too many? Here is what I get:
            3594143433 segments received
            3760174421 segments send out
            3801829561 segments retransmited
        \_ rephrase. you can never have too much money. or too little.
           what is, is.
	...
2009/5/7-14 [Computer/SW/WWW/Server] UID:52963 Activity:nil
5/7     I am trying to reproduce a customer bug where their apache header
        has the content-encoding as the last line in the header.
        My test platform is running apache2.2 on ubuntu. Is there a way
        to do this ?i I have already read the apache 2.0 docs and
        I dont see anything obvious ? page is txt/html
	...
2009/3/8-17 [Computer/SW/Unix] UID:52685 Activity:kinda low
3/8     I'm reading about an old exploit where someone used a buffer overflow
        in a printer daemon to get "daemon privileges," which allowed them
        to use another exploit on the mail delivery program to get root.  I'm
        not sure what daemon privileges are.  Is there some set of priveleges
        that most daemons run on that is higher than user but lower than root?
        What are they?  I've never heard this before.
	...
2008/10/14-20 [Computer/SW/Languages/Misc, Computer/SW/Languages/Web] UID:51527 Activity:nil
10/14   2 apache 2.0.52 servers running on Linux boxes.  Identical httpd.conf
        files (except for ServerName).  But on one, if a CGI script takes
        longer than 300 seconds, it times out.  The other, not.  Why is that?
        \_ Perhaps network equipment configuration. Or try comparing settings
           in /proc/sys/net.
           \_ I ran /sbin/sysctl -a | grep tcp, all settings are the same.
	...
2008/9/3 [Computer/SW/Unix] UID:51030 Activity:nil
9/3     Okay, my sed and awk skills are obviously not up to par here.
        I want to only see the "500's" in my apache error log, how do I
        do that? I want to see the whole line, not just the 500 error code.
        Never mind, grep " 500 " is close enough.
	...