Re: [WebDNA] PCI fubar

This WebDNA talk-list message is from

2012


It keeps the original formatting.
numero = 109178
interpreted = N
texte = Robert Minor wrote: > I have a server running apache1.3 and webdna 6.0a. After PCI testing I recieved a series of issues that had to be addressed. I was able to mitigate all of them save 1. > > Apache HTTP Server httpOnly Cookie Information Disclosure > > It seems apache1.3 is vulnerable to this attack and the only way to pass is to upgrade to apache2.2.2. > > So just a few questions. > > Can I run apache2.2 under tiger 10.4? I assume yes. > does the webdna module have to be upgraded? > if so what version? What issues can I expect? > Do I need to just rebuild the server under leopard 10.5--------------------------------------------------------- Hi Bob, There is an apache2x module for PowerPC, if that is what you are getting at. It runs with 6.0a. Donovan Donovan Brooke WebDNA Software Corporation http://www.webdna.us **[Square Bracket Utopia]** Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] PCI fubar (Donovan Brooke 2012)
  2. Re: [WebDNA] PCI fubar (Donovan Brooke 2012)
  3. Re: [WebDNA] PCI fubar (Donovan Brooke 2012)
  4. Re: [WebDNA] PCI fubar (Donovan Brooke 2012)
  5. Re: [WebDNA] PCI fubar (christophe.billiottet@webdna.us 2012)
  6. Re: [WebDNA] PCI fubar (Robert Minor 2012)
  7. [WebDNA] PCI fubar (Robert Minor 2012)
Robert Minor wrote: > I have a server running apache1.3 and webdna 6.0a. After PCI testing I recieved a series of issues that had to be addressed. I was able to mitigate all of them save 1. > > Apache HTTP Server httpOnly Cookie Information Disclosure > > It seems apache1.3 is vulnerable to this attack and the only way to pass is to upgrade to apache2.2.2. > > So just a few questions. > > Can I run apache2.2 under tiger 10.4? I assume yes. > does the webdna module have to be upgraded? > if so what version? What issues can I expect? > Do I need to just rebuild the server under leopard 10.5--------------------------------------------------------- Hi Bob, There is an apache2x module for PowerPC, if that is what you are getting at. It runs with 6.0a. Donovan Donovan Brooke WebDNA Software Corporation http://www.webdna.us **[Square Bracket Utopia]** Donovan Brooke

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

For those of you not on the WebCatalog Beta... (1997) multi-paragraph fields (1997) WebCatalog can't find database (1997) [Webcat 2]Next (1997) [addlineitems] display (1997) [AppendFile] problem (WebCat2b13 Mac .acgi) (1997) Re:[ShowIf] and empty fields (1997) Running _every_ page through WebCat ? (1997) Search results templates (1996) Location of Webcat site in folder hierarchy (1997) Question from a Neebie (2000) Users.db [encrypt seed=????] (1998) Customizing WebDelivery.html (1998) easiest way to check for a non-alphanumeric character? (2000) shipping with weigth (1998) NT Version on IIS 4.0 (1997) Setting up WebCatalog with Retail Pro data (1996) Robots fill event log (1997) Replto in [SendMail] (2000) ThreadMem ignored? (1998)