Project

General

Profile

Actions
Copy link

Bug #2003

closed

ssl remote crash

Added by nitrox over 15 years ago. Updated over 15 years ago.

Status:
Fixed
Priority:
Urgent
Category:
core
Target version:
1.5.0
ASK QUESTIONS IN Forums:

Description

If your lighttpd accepts ssl connections it it possible to crash it remotely via

echo foobar | openssl s_client -connect yourip:443 -ign_eof

Files

fix-ssl-dos.patch (686 Bytes) fix-ssl-dos.patch stbuehler, 2009-06-10 06:28

Related issues 1 (0 open1 closed)

Has duplicate Bug #1873: a core-bug caused by incomplete https requestFixed2009-01-15Actions
Actions
Copy link
 #1

Updated by stbuehler over 15 years ago

Actions
Copy link
 #2

Updated by stbuehler over 15 years ago

  • Status changed from New to Fixed
  • % Done changed from 0 to 100

Applied in changeset r2513.

Actions
Copy link
 #3

Updated by stbuehler over 15 years ago

This is btw 1.5 only.

Actions
Copy link

Also available in: Atom