Apache Flaw Allows Internal Network Access

angry tapir writes "A yet-to-be-patched flaw discovered in the Apache HTTP server allows attackers to access protected resources on the internal network if some rewrite rules are not defined properly. The vulnerability affects Apache installations that operate in reverse proxy mode, a type of configuration used for load balancing, caching and other operations that involve the distribution of resources over multiple servers."

bug confirmed on slashdot.org server

[Anonymous Coward]

it allowed me to get frist post

Re:Garbage in,

[Anonymous Coward]

Apache is garbage! Upgrade to IIS!

Linux security flaw discovered

[xyph0r]

If you set the root password to 'password' and allow root login via ssh, attackers could compromise your system.

Re:Linux security flaw discovered

[Anonymous Coward]

If you set the root password to 'password' and allow root login via ssh, attackers could compromise your system.

Wooot? Thank God I used 'root' as my root password then ;)