Apache HTTP Server Byte Range DoS

Legacy Uncategorised
1

After a Nessus scan of our network it returned the following.

“Apache HTTP Server Byte Range DoS” - High
"SSL Certificate signed with an unknown Certificate Authority" - Medium

I know you can’t do anything about the latter but my guess is that apache needs to be updated. This isn’t an issue really but it was something I thought you should probably know about. Since it’s only internal we just marked it as irrelevant as continued on our merry way.

2

Thanks for the update Ben. The first one is strange since I don’t embed Apache or do anything with it. Perhaps it doesn’t like the WCF HTTP listener.

The second one is actually a security feature, which I’ll blog about soon.

Are either of these going to prevent you from being able to use Octopus?

Sent from my Windows Phone