Project

General

Profile

Bug #2003

ssl remote crash

Added by nitrox about 11 years ago. Updated about 11 years ago.

Status:
Fixed
Priority:
Urgent
Category:
core
Target version:
ASK QUESTIONS IN Forums:

Description

If your lighttpd accepts ssl connections it it possible to crash it remotely via

echo foobar | openssl s_client -connect yourip:443 -ign_eof


Files

fix-ssl-dos.patch (686 Bytes) fix-ssl-dos.patch stbuehler, 2009-06-10 06:28

Related issues

Has duplicate Bug #1873: a core-bug caused by incomplete https requestFixed2009-01-15Actions
#1

Updated by stbuehler about 11 years ago

#2

Updated by stbuehler about 11 years ago

  • Status changed from New to Fixed
  • % Done changed from 0 to 100

Applied in changeset r2513.

#3

Updated by stbuehler about 11 years ago

This is btw 1.5 only.

Also available in: Atom