Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Re: [Full-disclosure] Apache Killer

From: HI-TECH . (isowarez.isowarez.isowarezgooglemail.com)
Date: Wed Aug 24 2011 - 09:10:48 CDT

Hi Michal,
What do you think from where this originated ?
Was you outlining it a while back :)


2011/8/24 Michal Zalewski <lcamtufcoredump.cx>:
>> http://www.gossamer-threads.com/lists/apache/dev/401638
> FWIW, I pointed out the DoS-iness of their Range handling a while ago:
> http://seclists.org/bugtraq/2007/Jan/83
> /mz

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/