php pack() security update
Benjamin J. Weiss
benjamin at birdvet.org
Mon Dec 20 20:51:36 UTC 2004
Jim van Wel wrote:
>Hi there,
>
>My question is the same. I hear no one here about this matter. Please
>respond!
>
>It's stupid, but the bug is known here right?
>
>
>
<snip>
Until a patch comes out, I'd move/rename /etc/httpd/conf.d/php.conf and
restart the httpd service...thereby removing php capability, but
protecting yourself from compromise. At least until RH releases an update.
Ben
More information about the redhat-list
mailing list