I apologize, I stand corrected. :) I would still suggest being that Nimda was quite lethal (especially to large hosting providers), that you put an Alert link on the front of the site..
----- Original Message -----
From: charles woolverton
Sent: Saturday, June 29, 2002 1:21 PM
Subject: NEW FBSD Virus - Effects Apache Server Chunk encoding - ALERT
I did not see an advisory on your site, but as of June 16, 2002, there was an "Apache HTTP Server chunk encoding stack overflow" discovered. I have not been able to find this on Apache's website either. However, there has been sevreal reports to securityfocus.org about Apache chunk encoding issues.
It appears that a new Worm has been identified by the Symantec staff that targets FreeBSD systems via this Apache exploitable issue.
Please see: Symantec's 'FreeBSD.Scalper.Worm' advisory - 06/28/2002
Please see: Symantec's Apache HTTP Server chunk encoding stack overfow advisory 06/17/2002
Please see: Securityfocus advisories- 06/17/2002 - 06/28/2002
apache-worm.c - Supposedly the source code is available here
Apache worm in the wild post
CAN-2002-0392 - Apache Chunked-Encoding Corruption Vulnerability
Apache goes berserk - May be related (What you may receive if being attacked)
I don't know if you put many security alerts on your site, however I'd ask that you do place this one on. At my company we have been encouraging our larger Managed Hosting customers to use FreeBSD. However, being that most people that are / may be familiar with any nix flavor don't use Symantec's website, and it's sad to say "Don't keep up with security alerts", I would suggest putting something on the frontpage of FreeBSD.org. Especially after what happened many times before with Windows and Nimda/varients.