- Recommend:
- 0 Comments
Site Operators Slow to Patch Apache Servers
Despite warnings of a serious security flaw, many administrators have yet to fix the problem.
Many Web servers running Apache-SSL remain vulnerable to attacks, although a June security alert did prompt administrators to patch standard Apache Web installations, according to a survey released Tuesday.
About 75 percent of Web sites hosted on Apache-SSL servers are vulnerable, as the software has not been upgraded to fix a serious flaw uncovered in June, according to a survey by Web server information firm Netcraft of Bath, England.
Administrators seem to have given priority to patching regular Apache installations, as about half of the 22 million Web sites that rely on Apache are protected through an Apache software upgrade, Netcraft says.
Securing Web Sites
Apache-SSL is a combination of the Apache Web server and OpenSSL security software meant to offer secure Web site connections. Apache-SSL is used for electronic commerce Web sites, for example. Both Apache and OpenSSL are open-source products developed by volunteers.
The Apache Software Foundation, which supports the Apache open-source project, in June advised administrators to upgrade their Apache installations because of a flaw in the way the Web server parses uploaded data, a so-called chunked encoding vulnerability.
The flaw affects all versions of Apache 1.2, versions of Apache 1.3 up to 1.3.24 and versions of Apache 2 up to 2.0.36, according to a statement from the Foundation released on June 20.
Apache is the most used Web server software in the world, with 66 percent of active sites running Apache, according to Netcraft.
Would you recommend this story? YES NO
- Recommend:
- 0 Comments
-
ThinkPad Edge E420 Lenovo Style in an Affordable Package
Buy now direct from Lenovo -
ThinkPad X220 Fast and light, with great input ergonomics and battery life, this powerhouse ultraportable is best-of-breed.
Buy now direct from Lenovo -
ThinkPad X120e One of the best netbooks ever, X120e has the best netbook keyboard ever--nothing else comes close
Buy now direct from Lenovo
-
Geek Alert: Free Development Server Software XAMPP Helps Run Web Sites
-
XAMPP for Windows
-
A Rivalry Emerges As Apache Asserts OpenOffice Plans
- Apache HTTP Server
-
Google Wave Gets a Second Life from Apache
-
Unpatched Apache Reverse Proxy Flaw Allows Access to Internal Network
-
Coming Soon: An 'IBM Edition' of Apache OpenOffice
- 12 Criteria for Selecting the Best ERP System Replacement An ERP system is your information backbone and reaches into all areas of your business and value chain. Replacing it can open unlimited business opportunities. This white paper explains the 12 criteria that allow you to identify and select the solution that will meet these expectations.
- Leveraging Social Computing Technologies for ERP Applications This white paper details how Web 2.0 technologies support business strategies by improving efficiency, productivity, and collaboration.
-
Windows 8 Logo Garners More Brickbats than Bravos
-
Shylock Malware Returns, Refreshed
-
App Store Nears 25 Billion Downloads
-
Bugs & Fixes: Poor Rich Text Format Support in iOS
-
Apple Factories in China Open Doors amid Concerns About Worker Conditions
-
Facebook Integration Seems a Natural Fit for Mountain Lion, iOS
-
Mountain Lion: What You Need to Know
-
Paint With Sound in Browser-Based Auditorium Game
-
The ICade and Atari Arcade Bring Old-School Gaming to the Apple IPad
-
Android Tablet Productivity Pack
-
Indie Kinect Game Turns Your Doodles Into Weapons Of War
-
New Windows 8 Logo is Latest in Beta Buildup
Ad Choices