• Do not register here on develop.twiki.org, login with your twiki.org account.
• Use View topic Item7848 for generic doc work for TWiki-6.1.1. Use View topic Item7851 for doc work on extensions that are not part of a release. More... Close
• Anything you create or change in standard webs (Main, TWiki, Sandbox etc) will be automatically reverted on every SVN update.
Does this site look broken?. Use the LitterTray web for test cases.

this is a place holder topic for references when posting fixes on SVN.

The description with the attack destription will not be posted until it has been announced to admins.

There is an easy work around both for Cairo and Dakar.

KJL

Solution for the most obvious attack checked in.

SVN 9477 and 9478

(Reverted again, due to dependency on LWP)

CC

Updated work around in twiki_httpd_conf.txt bin/.htaccess.txt

SVN 9523 and 9524

Ready for release.

KJL

ItemTemplate
Summary Denial of Service attack very easy on both Cairo and Dakar
ReportedBy TWiki:Main.KennethLavrsen
Codebase

SVN Range Sun, 19 Mar 2006 build 9373
AppliesTo Engine
Component

Priority Urgent
CurrentState Closed
WaitingFor

Checkins 10510 9477 9478 9509 9511 9517 9523 9524
TargetRelease patch
Edit | Attach | Watch | Print version | History: r7 < r6 < r5 < r4 < r3 | Backlinks | Raw View |  Raw edit | More topic actions
Topic revision: r7 - 2006-04-01 - CrawfordCurrie
 
This site is powered by the TWiki collaboration platform Powered by PerlCopyright © 2008-2021 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback