I can't access http://localhost OR http://127.0.0.1 OR
http://computername.
My config file is:
Listen 80
ServerName localhost
UseCanonicalName Off
Any suggestions?
Henrik
...can't find 2.0.39... Is the security problem fixed in 1.3.26?
The securitypatch is this:
A simple one line workaround in the httpd.conf file will close the
vulnerability. Prior to the first 'Alias' or 'Redirect' directive, add
the following directive to the global server configuration:
RedirectMatch 400 "\\\.\."
Henrik
Usually, it means that your Firewall software didn't provide a complete
implementation of the windows sockets layer. Uninstall your broken
firewall and it should work fine.
Bill
http://httpd.apache.org/info/security_bulletin_20020809a.txt
And even then, this is not related to a bug in .40... there were
bugs in .40 that will be fixed in .42 (expected over the weekend.)
But .39 and prior are extremely vulnerable due to the above incident.
Bill
Bill
The recent bugs announced with the release of 2.0.40 never applied
at all to 1.3.26 because the code was organized quite differently.
Next question <grin>: Can I reinstall the software or is there a
workaround I can use?
Cal.
Wow, I pulled out what little hair I had left on this one. Apache
2.0.43 on my Win2k SP3 would -not- run on two separate OS instances on
two separate machines... Brand new installs on each. The culprit:
McAfee VirusScan 7.0. After I removed this, end of problem. I
reinstalled McAfee VirusScan 6.x with current updates and all remains
well. Now, for McAfee to fix their product...
Larry