[3912] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: extra long URL attack

daemon@ATHENA.MIT.EDU (John Robert LoVerso)
Sat Jan 11 12:20:37 1997

Date: 	Sat, 11 Jan 1997 11:52:05 -0500
Reply-To: John Robert LoVerso <john@loverso.southborough.ma.us>
From: John Robert LoVerso <john@loverso.southborough.ma.us>
X-To:         strick -- henry strickland <strick@versant.com>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To:  Message from strick -- henry strickland <strick@versant.com>
              <199701110643.WAA11911@gwarn.versant.com> .

> but this extra long URL to my site running
>        Server version Stronghold/1.3 Ben-SSL/1.3 Apache/1.1.1.
> will show you the raw contents of the top directory

You're was the only server (that I tried) that this worked on.  In particular,
it does not work against Apache/1.2bX sites, including:

        Server: Stronghold/2.0b1 Apache/1.2b2

John


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[3912] in bugtraq

Re: extra long URL attack

daemon@ATHENA.MIT.EDU (John Robert LoVerso)Sat Jan 11 12:20:37 1997

daemon@ATHENA.MIT.EDU (John Robert LoVerso)
Sat Jan 11 12:20:37 1997