sunhux
asked on
Recent Apache V2.4.x vulnerability clarifications
refer to attached:
Q1:
are they affecting Apache httpd (ie web servers) 2.4.x only
& other lower versions (eg: our Solaris 10's Apache/2.0.63
is said to have been patched by our admin but I'm not sure)?
Q2:
So versions 2.4.x running on Windows are not affected?
Q3:
Can point me to where to get the patches for RHEL7/RHEL6
in Red Hat support portal??
advisory1.pdf
advisory2.pdf
Q1:
are they affecting Apache httpd (ie web servers) 2.4.x only
& other lower versions (eg: our Solaris 10's Apache/2.0.63
is said to have been patched by our admin but I'm not sure)?
Q2:
So versions 2.4.x running on Windows are not affected?
Q3:
Can point me to where to get the patches for RHEL7/RHEL6
in Red Hat support portal??
advisory1.pdf
advisory2.pdf
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
yes hesitant as its a major update fr ver 2.0.x to 2.4.x.
btw that link did not explain how to check if MTM is enabled
btw that link did not explain how to check if MTM is enabled
ASKER
and if not used we wud rather uninstall apache package n leave behind Tomcat
Modules are usually in the Apache configuration file, httpd.conf
ASKER
also affects "2.4.17 through 2.4.38 with MPM event, worker or prefork"
only?
How do I check if we have "MPM event, worker or prefork"?