[private_ale]

Just a reminder to anyone who runs their own server, you should subscribe to seclists.

Redhat (CentOS, Scientific, Fedora) based servers will want to add this here: /etc/httpd/conf.d/

For example: /etc/httpd/conf.d/CVE-2011-3192.conf

Block Disabled:      (Update License Status)
Suspended or Unlicensed Members Cannot View Code.

Afterwards restart Apache to apply the changes: service httpd restart

Debian (Ubuntu) based servers will want to add it here: /etc/apache2/conf.d/

For example: /etc/apache2/conf.d/CVE-2011-3192.conf

Block Disabled:      (Update License Status)
Suspended or Unlicensed Members Cannot View Code.

Afterwards restart Apache to apply the changes: service apache2 restart

This is actually the second advisory they sent out this week after the original CVE-2011-3192. Since this affects ALL Apache installations and an official update has not yet been made available, it is suggested to apply this temp patch.

Block Disabled:      (Update License Status)
Suspended or Unlicensed Members Cannot View Code.

If you run an alternate webserver, this does not concern you.