navigation bar left navigation bar right

Secunia CSI7
navigation left tab Advisories navigation right tab
navigation left tab Research navigation right tab
navigation left tab Forums navigation right tab
navigation left tab Create Profile navigation right tab
navigation left tab Our Commitment navigation right tab
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Apache again

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Apache Software Foundation
And, this specific program:
Apache HTTP Server 2.2.x

This thread has been marked as locked.
Thad_McIlroy Apache again
Member 2nd Jun, 2011 08:27
Ranking: 0
Posts: 4
User Since: 2nd Jun, 2011
System Score: N/A
Location: US
The replies about Apache server are obscure for me, and all of those threads are locked. I've tried downloading and fixing my installation but this doesn't work. Let me be precise in my questions:

(I'm on Windows 7 with a 6-month old powerful PC.)

1. Is there any reason why a mere mortal who doesn't use any Symantec software NEEDS Apache server?

2. As the Windows uninstaller doesn't see the software, can I just trash it manually?

3. If so, what are all the little bits and pieces that need to be trashed?

4. And, BTW, given Secunia's obsession with this little critter, is the threat one I should be losing any sleep over, i.e. if your reply is as obscure as the previous replies and completely inscrutable to me do I need to hire a technician to rid myself of the Apache warrior?

Thank you.

ddmarshall RE: Apache again
Dedicated Contributor 2nd Jun, 2011 13:26
Score: 1219
Posts: 971
User Since: 8th Nov 2008
System Score: 98%
Location: UK
Last edited on 2nd Jun, 2011 17:28
It would help if you told us where PSI had found it.

To answer your questions.

1. I would be surprised to find Apache running on a home computer. Apache is a webserver. That is, you would only have it if you were running a website actually on your computer, which is a difficult thing to do with the way most ISPs set up home users. It has nothing to do with Symantec, except that Symantec have products which work with Apache.

2. You can just delete the folders.

3. If it's not in Programs and Features, it may have been incorporated into something else you have installed and that could stop working. It can also be installed as a Windows service and if you don't uninstall the service before you delete the files, you will probably see some error messages each time you start Windows.

4. Are you the only person that installs software on this machine? I would be worried if a program popped up on my computer that I knew nothing about. Apache will open a port onto the internet to listen for incoming traffic.
I would get someone technically qualified to look over what you have installed and explain how Apache has got on your system.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+1
-0
Thad_McIlroy RE: Apache again
Member 2nd Jun, 2011 20:31
Score: 0
Posts: 4
User Since: 2nd Jun 2011
System Score: N/A
Location: US
Thank you for the detailed response. Very much appreciated. So I re-launched Secunia (which I must note is excellent software -- except when it starts --seeming-- fussy about Apache).

It's not 2.2. Here's what I get:

Apache Subversion 1.x 1 Insecure 1.6.3.38063 1.6.16.0
Detected Instances:
C:\mozilla-build\svn-win32-1.6.3\bin\svn.exe, version 1.6.3.38063

Latest Version - patching one or more vulnerabilities: 1.6.16.0

The computer arrived last Christmas with the usual junk installed by the vendor. I've installed various bits of this and that, but never consciously Apache. It doesn't show up on the list of "local services".

Thanks.
Was this reply relevant?
+0
-0
ddmarshall RE: Apache again
Dedicated Contributor 2nd Jun, 2011 21:50
Score: 1219
Posts: 971
User Since: 8th Nov 2008
System Score: 98%
Location: UK
Last edited on 2nd Jun, 2011 22:11
Disregard what I said. You have Apache Subversion not Apache Server as I thought.

It is easier to link you to the Wikipedia article about it than to describe what it is.
http://en.wikipedia.org/wiki/Subversion%5f%28softw...


What is the mozilla-build folder? Have you downloaded source code from Mozilla?

Looks like there was a security update for Subversion yesterday:
http://subversion.apache.org/

There are downloads available from here:
http://subversion.apache.org/packages.html#windows

But I can't say which would be suitable for you.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+1
-0
Thad_McIlroy RE: Apache again
Member 2nd Jun, 2011 22:25
Score: 0
Posts: 4
User Since: 2nd Jun 2011
System Score: N/A
Location: US
I just deleted the whole massive folder and its 15,000 or so files. I've no idea how it got installed. Now I will restart my computer which will have a nervous breakdown and I will go and buy a Macintosh and try living in Mac hell for awhile.

Thank you for your help.
Was this reply relevant?
+0
-0

BackpackTheresa

RE: Apache again
[+]
This reply has been deleted
Thad_McIlroy RE: Apache again
Member 3rd Jun, 2011 09:45
Score: 0
Posts: 4
User Since: 2nd Jun 2011
System Score: N/A
Location: US
It worked! How delightfully rare.

I just trashed everything and my computer didn't die.

YET.

Thanks again :-)
Was this reply relevant?
+0
-0
Maurice Joyce RE: Apache again
Handling Contributor 3rd Jun, 2011 10:00
Score: 11865
Posts: 9,101
User Since: 4th Jan 2009
System Score: N/A
Location: UK
Thad,
To prevent U getting any more update emails from tag on posts (I have already deleted an advertising post) U can press the ACCEPT button against any post made by @ddmarshall or I can lock it for U.



--
Maurice

Windows 7 SP1 64 Bit OS
HP Intel Pentium i7
IE 11 for Windows 7 SP1
16GB RAM
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


Secunia is a member of FIRST Secunia is a member of EDUcause Secunia is a member of The Open Group Secunia is a member of FS-ISAC
 
Secunia © 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer
follow Secunia on Facebook follow Secunia on Twitter follow Secunia on LinkedIn follow Secunia on YouTube follow Secunia Xing follow Secunias RSS feed follow Secunia on Google+