Full Disclosure mailing list archives

OpenSSL problem: what about apache2 binaries?

From: full-disclosure () lists netsys com (Dr. Peter Bieringer)
Date: Fri, 02 Aug 2002 14:46:09 +0200

Hi,

--On Mittwoch, 31. Juli 2002 08:50 +0200 Peter Bieringer <pb () bieringer de>
wrote:

sorry, no announcement, but a (perhaps important) question:

does anyone know whether mod_ssl (used with Apache 1.3) is also
vulnerable. Currently, last version seen on their webpage is 2.8.10
(24 June 2002).


Next question: what about the apache2 binaries (especially for Windows)?

Apache2 has built-in SSL capability, I think (but not tested) also in the
Windows binary. If yes, which SSL code is used here?

Latest available is 2.0.39 from 18-Jun-2002
http://www.apache.org/dist/httpd/binaries/win32/

Thank you very much for more information,

        Peter

Current thread:

OpenSSL problem: what about apache2 binaries? Dr. Peter Bieringer (Aug 02)
- <Possible follow-ups>
- OpenSSL problem: what about apache2 binaries? Dr. Peter Bieringer (Aug 05)