[nSLUG] dll hijacking remedies create pain for POSIX OS's

George N. White III gnwiii at gmail.com
Thu Sep 2 10:16:50 ADT 2010


Those who use linux in large enterprises are likely to find that some
of the measures being implemented to prevent dll hijacking break svn.

<http://m.zdnet.com/blog/security/details-emerge-on-new-dll-load-hijacking-windows-attack-vector/7204>
"Blocking the PROPFIND HTTP method should be enough to prevent this
exploit and ones similar to it from working."

The article neglects to mention that blocking PROPFIND also prevents
some legitimate internet uses!


For about a week, our Mac OS X systems have, not surprisingly, had
problems with svn:
$ /opt/local/bin/svn up
svn: PROPFIND of '/repository/macports/trunk/dports': Could not read
status line: Connection reset by peer (http://svn.macports.org)

-- 
George N. White III <aa056 at chebucto.ns.ca>
Head of St. Margarets Bay, Nova Scotia



More information about the nSLUG mailing list