Computerworld

Unprotected Apache server status pages put popular websites at risk

Many Apache Web servers, including those hosting some popular websites, expose information about the internal structure of the sites they host, the IP (Internet Protocol) addresses of their visitors, ...
Threat Post

Apache Server-Status Publicly Viewable on Top Sites

A vast number of websites ranging from obscure to quite popular have left an Apache Web server functionality called server-status enabled and publicly accessible. The care-less implementation of this ...
The Daily Dot

Sensitive information can be revealed from Tor hidden services on Apache

A common configuration mistake in Apache, the most popular Web server software in the world, can allow anyone to look behind the curtains on a hidden server to see everything from total traffic to ...
Ars Technica

Default settings in Apache may decloak Tor hidden services

Websites that rely on the Tor anonymity service to cloak their server address may be leaking their geographic location and other sensitive information thanks to a setting that’s turned on by default ...
Ars Technica

Misconfigured Apache sites expose user passwords, other private data

More than 2,000 websites—some operated by Fortune 500 companies, game sites, and retail outlets—are exposing system status information that can be used by attackers to compromise Web servers or ...
adtmag.com

Apache Synapse Bumped to Top Project Status

The Apache Software Foundation today ratcheted up the project status of its open source Apache Synapse enterprise service bus (ESB) technology. The Foundation established Apache Synapse as a Top-Level ...
ZDNet

Open source SOA infrastructure project CXF elevated to full Apache status

After community incubation and development for nearly two years, the Apache CXF open-source SOA and middleware interoperability framework evolved last week into a full project of the Apache Software ...