Return-Path: owner-bugtraq@SECURITYFOCUS.COM X-Sender: ryan@mail MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Message-ID: Date: Thu, 1 Jun 2000 17:02:46 -0700 Reply-To: Ryan Russell Sender: Bugtraq List From: Ryan Russell Subject: Re: Remote DoS attack in Real Networks Real Server (Strike #2) vulnerability X-To: bugtraq@securityfocus.com X-cc: labs@ussrback.com To: BUGTRAQ@SECURITYFOCUS.COM I believe I have a temporary workaround. In the rmserver.cfg file, there's a section like this: On my Real server, I've removed this line: I *think* this only has the consequence that people can't pull down file details for audio content for the moment. We can still serve up audio just fine. Ryan