an site have a hole, named 'Old mod_ssl versions might be susceptible to security flaws'
how to 'use' it? =)
exploit mod_ssl?
-
bad_brain
- Site Owner
- Posts: 11639
- Joined: 06 Apr 2005, 16:00
- 19
- Location: In your eye floaters.
- Contact:
first you need to know the exact version, then check on the well-known sites like packetstormsecurity or milw0rm for an exploit.
but don´t expect to find something like an .exe where you can klick a button, you will most likely have to edit/compile the codes by yourself...some codes may even contain errors which are included to keep skiddies away from using them.
but don´t expect to find something like an .exe where you can klick a button, you will most likely have to edit/compile the codes by yourself...some codes may even contain errors which are included to keep skiddies away from using them.
unfortunately I AM a sk... yet.
but everybody first must be a sk - wrong?
i found the file written in C. i will see what i can do...
may i expect some edification?
this is the server: Apache-AdvancedExtranetServer
/2.0.50 (Mandrakelinux/7.2.101mdk) mod_log_sql
/1.98 mod_auth_external
/2.2.7 auth_radius
/1.7PR1 AuthentiCache
/2.0.6 mod_ssl
/2.0.50 OpenSSL
/0.9.7d PHP
/4.3.8
what means every line?
but everybody first must be a sk - wrong?
i found the file written in C. i will see what i can do...
may i expect some edification?
this is the server: Apache-AdvancedExtranetServer
/2.0.50 (Mandrakelinux/7.2.101mdk) mod_log_sql
/1.98 mod_auth_external
/2.2.7 auth_radius
/1.7PR1 AuthentiCache
/2.0.6 mod_ssl
/2.0.50 OpenSSL
/0.9.7d PHP
/4.3.8
what means every line?
-
CommonStray
- Forum Assassin
- Posts: 1216
- Joined: 20 Aug 2005, 16:00
- 19