Apache HTTP Server Byte Range DoS

After a Nessus scan of our network it returned the following.

“Apache HTTP Server Byte Range DoS” - High
"SSL Certificate signed with an unknown Certificate Authority" - Medium

I know you can’t do anything about the latter but my guess is that apache needs to be updated. This isn’t an issue really but it was something I thought you should probably know about. Since it’s only internal we just marked it as irrelevant as continued on our merry way.

Thanks for the update Ben. The first one is strange since I don’t embed Apache or do anything with it. Perhaps it doesn’t like the WCF HTTP listener.

The second one is actually a security feature, which I’ll blog about soon.

Are either of these going to prevent you from being able to use Octopus?

Sent from my Windows Phone