IBM HTTP Server

[Paul Rogers <paul.rogers () mis-cds com>]

One of our client's are utilising IBM's HTTP server and Websphere to host
their website and web applications. The IBM HTTP server utilises Apache to
serve web content to users (the version in question is 1.3.12 for Win32). My
query is related to the vulnerabilities associated with the Win32 version of
the Apache webserver. Can the vulnerabilites associated with 1.3.12 Win32
version of Apache be used on an IBM HTTP server; or have IBM modified the
Apache source in anyway to protect against these issues?

Just a thought since there don't seem to be any upgrades to later versions
of Apache Win32 from IBM as yet, although version 1.3.14 is planned for the
next release.

Cheers,

Paul Rogers,
Network Security Analyst.

MIS Corporate Defence Solutions Limited

Tel:            +44 (0)1622 723422 (Direct Line)
                +44 (0)1622 723400 (Switchboard)
Fax:            +44 (0)1622 728580 
Website:        http://www.mis-cds.com/


**********************************************************************
The information contained in this message or any of its attachments may be
privileged and confidential and intended for the exclusive use of the
addressee. If you are not the addressee any disclosure, reproduction,
distribution or other dissemination or use of this communications is
strictly prohibited. 

The views expressed in this e-mail are those of the individual and not
necessarily of MIS Corporate Defence Solutions Ltd. Any prices quoted are
only valid if followed up by a formal written quote.

If you have received this transmission in error, please contact our Security
Manager on 44 (0) 1622 723400.
**********************************************************************