Home of a code hacker, not a real hacker.

Powered by Genesis

Finally figured out our curl issue

February 5, 2016 by whit 351 Commenthttps%3A%2F%2Fwhittlecorn.com%2F2016%2F02%2F05%2Ffinally-figured-out-our-curl-issue%2FFinally+figured+out+our+curl+issue2016-02-05+17%3A01%3A51whithttp%3A%2F%2Fwhittlecorn.com%2F%3Fp%3D35

We have spent days working on an issue where when we curl’d our sites we were getting the error SL read: error:00000000:lib(0):func(0):reason(0), errno 104 Cert was ok but Curl could not touch the site… Found out it was due to a misconfiguration in NGINX. For you that care and find this, to fix make sure […]

Filed Under: nginx, Server Tagged With: curl, ssl

A possible fix for CVE-2000-0649 in NGINX

February 3, 2016 by whit 281 Commenthttps%3A%2F%2Fwhittlecorn.com%2F2016%2F02%2F03%2Fa-possible-fix-for-cve-2000-0649-in-nginx%2FA+possible+fix+for+CVE-2000-0649+in+NGINX2016-02-03+16%3A14%3A40whithttp%3A%2F%2Fwhittlecorn.com%2F%3Fp%3D28

We have been working on shoring up our servers for a specific client.  Their latest scan showed an issue with CVE-2000-0649 “Web Server Internal IP Address/Internal Network Name Disclosure Vulnerability” We looked and looked and there is not documentation to fix the issue. We could replicated it using https://www.exploit-db.com/exploits/20096/ After days of trying to figure it out we finally […]

Filed Under: nginx, Server