Those of you who are running Squid as a reverse proxy infront of
Apache servers may be interested to know that there now exists a
small patch to Squid to work around the Apache chunked encoding
remote exploit issue.
The Apache chunked encoding issue can be exploited even if you run a
Squid reverse proxy infront of your Apache servers, even if most if
not all published exploits will fail unless modified to account for
Squid.
The now published Squid patch strengthens Squids HTTP protocol
verification and makes Squid correctly drops any attempts to send
transfer-encoded requests via Squid.
The patch can be found from
http://www.squid-cache.org/Versions/v2/2.4/bugs/.
Regards
Henrik Nordström
MARA Systems AB, Sweden
Received on Mon Jun 24 2002 - 00:41:41 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:08:46 MST