Re^5: Patch an old Perl versionby BrowserUk (Pope)
|on Nov 12, 2013 at 17:56 UTC||Need Help??|
The attack is real and proven.
First: prove it!
But, even if that does happen, to what consequence?
The instance of perl running the cgi script in response to the attacker's request, self terminates. Meaning the attack is over.
The web-server continues to run; new instances of perl are run to handle everyone else's requests.
The total damage done is EXACTLY ZERO. Nada. Zilch.
No DoS; No DDos; No affect on other users; nor the web-site; nor anything permanent.
The attacker's session end's immediately. Big deal?
With the rise and rise of 'Social' network sites: 'Computers are making people easier to use everyday'
Examine what is said, not who speaks -- Silence betokens consent -- Love the truth but pardon error.
"Science is about questioning the status quo. Questioning authority".
In the absence of evidence, opinion is indistinguishable from prejudice.