Re: [WebDNA] PCI fubar

This WebDNA talk-list message is from

2012


It keeps the original formatting.
numero = 109178
interpreted = N
texte = Robert Minor wrote: > I have a server running apache1.3 and webdna 6.0a. After PCI testing I recieved a series of issues that had to be addressed. I was able to mitigate all of them save 1. > > Apache HTTP Server httpOnly Cookie Information Disclosure > > It seems apache1.3 is vulnerable to this attack and the only way to pass is to upgrade to apache2.2.2. > > So just a few questions. > > Can I run apache2.2 under tiger 10.4? I assume yes. > does the webdna module have to be upgraded? > if so what version? What issues can I expect? > Do I need to just rebuild the server under leopard 10.5--------------------------------------------------------- Hi Bob, There is an apache2x module for PowerPC, if that is what you are getting at. It runs with 6.0a. Donovan Donovan Brooke WebDNA Software Corporation http://www.webdna.us **[Square Bracket Utopia]** Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] PCI fubar (Donovan Brooke 2012)
  2. Re: [WebDNA] PCI fubar (Donovan Brooke 2012)
  3. Re: [WebDNA] PCI fubar (Donovan Brooke 2012)
  4. Re: [WebDNA] PCI fubar (Donovan Brooke 2012)
  5. Re: [WebDNA] PCI fubar (christophe.billiottet@webdna.us 2012)
  6. Re: [WebDNA] PCI fubar (Robert Minor 2012)
  7. [WebDNA] PCI fubar (Robert Minor 2012)
Robert Minor wrote: > I have a server running apache1.3 and webdna 6.0a. After PCI testing I recieved a series of issues that had to be addressed. I was able to mitigate all of them save 1. > > Apache HTTP Server httpOnly Cookie Information Disclosure > > It seems apache1.3 is vulnerable to this attack and the only way to pass is to upgrade to apache2.2.2. > > So just a few questions. > > Can I run apache2.2 under tiger 10.4? I assume yes. > does the webdna module have to be upgraded? > if so what version? What issues can I expect? > Do I need to just rebuild the server under leopard 10.5--------------------------------------------------------- Hi Bob, There is an apache2x module for PowerPC, if that is what you are getting at. It runs with 6.0a. Donovan Donovan Brooke WebDNA Software Corporation http://www.webdna.us **[Square Bracket Utopia]** Donovan Brooke

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

calculating tax rates, mail order solutions and version 2 (1997) Emailer.Out (1998) user/password validation (1998) Modifying order output (1997) Major Security Hole (1998) [WebDNA] New list (2008) simple answer? [hideif] (1997) Country & Ship-to address & other fields ? (1997) Authenticate (2000) Authorize.net? (2003) Searching a field and returning the highest value (1997) Format of Required fields error message (1997) setting line item numbers (1998) Lineitems [text*] (2004) blank page from template (1997) Validating A Date (2004) [WebDNA] Range calculation w/negative values (2011) Cross OS Compatible HTML emailing (2003) Showif for mulitple variations (1997) WC2b12: Yes, Formulas.db is for real (1997)