Online Casinos - Casinomeister Logo Online Casinos - Casinomeister
Results 1 to 1 of 1

Thread: Mod-rewrite security risk

  1. 31st July 2006, 09:25 AM #1
    Chatmaster's Avatar
    Chatmaster
    Chatmaster is offline Dormant account
    Join Date
    Mar 2004
    Location
    South Africa
    Posts
    563
    Thanks
    311
    Thanked 133 Times in 80 Posts
    Rep Power
    0
    Reputation Points: 948

    Mod-rewrite security risk

    Hi everyone

    Saw a thread post from shoemoney today. I do not use PHP so this is purely aimed at people making use of apache hosting should read this as upgrading your servers is a of a high priority in my view.

    http://www.apache.org/dist/httpd/Announcement2.2.html

    Users who do not use, or have not enabled, the Rewrite module mod_rewrite are not affected by this issue. This issue only affects installations using a Rewrite rule with the following characteristics:
    • The RewriteRule allows the attacker to control the initial part of the rewritten URL (for example if the substitution URL starts with $1)
    • The RewriteRule flags do NOT include any of the following flags: Forbidden (F), Gone (G), or NoEscape (NE).

  2. The Following 3 Users Say Thank You to Chatmaster For This Useful Post:

    AussieDave (2nd August 2006), Simmo! (31st July 2006), Webzcas  (1st August 2006)
« Previous Thread | Next Thread »

Similar Threads

  1. any online casino's risk management= a joke
    By cupojoe in forum Online Casinos
    Replies: 3
    Last Post: 21st June 2006, 12:14 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules


Legal Statements and Privacy Policy
Casinomeister.com does not intend for any of the information contained on this website to be used for illegal purposes. You must ensure you meet all age and other regulatory requirements before entering a casino or placing a wager. Online gambling is illegal in many jurisdictions and users should consult legal counsel regarding the legal status of online gambling and gaming in their jurisdictions. The information in this site is for news and entertainment purposes only. Casinomeister.com is an independent directory and information service free of any gaming operator's control. Links to third party websites on Casinomeister.com are provided solely for informative/educational purposes. If you use these links, you leave this Website.

Inactive Reminders By TalkVirginia.net