<article>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#article10_03_08_1258200</id>
	<title>Serious Apache Exploit Discovered</title>
	<author>Soulskill</author>
	<datestamp>1268056680000</datestamp>
	<htmltext>bennyboy64 writes <i>"An IT security company <a href="http://www.zdnet.com.au/news/security/soa/Apache-bug-prompts-update-advice/0,130061744,339301617,00.htm">has discovered a serious exploit in Apache's HTTP web server</a>, which could allow a remote attacker to gain complete control of a database. ZDNet reports the vulnerability <a href="http://www.senseofsecurity.com.au/advisories/SOS-10-002">exists in Apache's core mod\_isapi module</a>. By exploiting the module, an attacker could remotely gain system privileges that would compromise data security. Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15, which fixes the exploit."</i>
Note: according to the advisory, this exploit is exclusive to Windows.</htmltext>
<tokenext>bennyboy64 writes " An IT security company has discovered a serious exploit in Apache 's HTTP web server , which could allow a remote attacker to gain complete control of a database .
ZDNet reports the vulnerability exists in Apache 's core mod \ _isapi module .
By exploiting the module , an attacker could remotely gain system privileges that would compromise data security .
Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15 , which fixes the exploit .
" Note : according to the advisory , this exploit is exclusive to Windows .</tokentext>
<sentencetext>bennyboy64 writes "An IT security company has discovered a serious exploit in Apache's HTTP web server, which could allow a remote attacker to gain complete control of a database.
ZDNet reports the vulnerability exists in Apache's core mod\_isapi module.
By exploiting the module, an attacker could remotely gain system privileges that would compromise data security.
Users of Apache 2.2.14 and earlier are advised to upgrade to Apache 2.2.15, which fixes the exploit.
"
Note: according to the advisory, this exploit is exclusive to Windows.</sentencetext>
</article>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402242</id>
	<title>Re:Gain Complete Control</title>
	<author>newdsfornerds</author>
	<datestamp>1268072340000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>Yeah, a tshirt like that is tantamount to tererism these says.

<a href="http://www.syswear.com/sysadmin/shirt/16/in-the-time-it-took-to-read-this-" title="syswear.com" rel="nofollow">http://www.syswear.com/sysadmin/shirt/16/in-the-time-it-took-to-read-this-</a> [syswear.com]</htmltext>
<tokenext>Yeah , a tshirt like that is tantamount to tererism these says .
http : //www.syswear.com/sysadmin/shirt/16/in-the-time-it-took-to-read-this- [ syswear.com ]</tokentext>
<sentencetext>Yeah, a tshirt like that is tantamount to tererism these says.
http://www.syswear.com/sysadmin/shirt/16/in-the-time-it-took-to-read-this- [syswear.com]</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400484</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400346</id>
	<title>Re:Not Apache's problem</title>
	<author>WPIDalamar</author>
	<datestamp>1268062140000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>4</modscore>
	<htmltext><p>The extension module DLL's are third party.</p><p>The core isapi apache module is all apache, and that's where the bug is.</p></htmltext>
<tokenext>The extension module DLL 's are third party.The core isapi apache module is all apache , and that 's where the bug is .</tokentext>
<sentencetext>The extension module DLL's are third party.The core isapi apache module is all apache, and that's where the bug is.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400258</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400118</id>
	<title>Windows only</title>
	<author>Albanach</author>
	<datestamp>1268060640000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>5</modscore>
	<htmltext><p>This would have been useful in the summary. From the linked page:</p><blockquote><div><p>Platform.                      Microsoft Windows</p><p>Details.<br>The Apache HTTP Server, commonly referred to as Apache, is a<br>popular open source web server software. mod\_isapi is a core<br>module of the Apache package that implements the Internet Server<br>extension API. The extension allows Apache to serve Internet<br>Server extensions (ISAPI<nobr> <wbr></nobr>.dll modules) for Microsoft Windows<br>based hosts.</p></div></blockquote><p>While I'm sure it will impact many people, I'd still imagine the majority of Apache users are running it on a platform other than Windows</p></div>
	</htmltext>
<tokenext>This would have been useful in the summary .
From the linked page : Platform .
Microsoft WindowsDetails.The Apache HTTP Server , commonly referred to as Apache , is apopular open source web server software .
mod \ _isapi is a coremodule of the Apache package that implements the Internet Serverextension API .
The extension allows Apache to serve InternetServer extensions ( ISAPI .dll modules ) for Microsoft Windowsbased hosts.While I 'm sure it will impact many people , I 'd still imagine the majority of Apache users are running it on a platform other than Windows</tokentext>
<sentencetext>This would have been useful in the summary.
From the linked page:Platform.
Microsoft WindowsDetails.The Apache HTTP Server, commonly referred to as Apache, is apopular open source web server software.
mod\_isapi is a coremodule of the Apache package that implements the Internet Serverextension API.
The extension allows Apache to serve InternetServer extensions (ISAPI .dll modules) for Microsoft Windowsbased hosts.While I'm sure it will impact many people, I'd still imagine the majority of Apache users are running it on a platform other than Windows
	</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31404048</id>
	<title>Re:Windows only</title>
	<author>julesh</author>
	<datestamp>1268080440000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p>Does anyone else think it ironic that the most severe security error found in Apache for quite a while now is in an IIS compatibility module?</p></htmltext>
<tokenext>Does anyone else think it ironic that the most severe security error found in Apache for quite a while now is in an IIS compatibility module ?</tokentext>
<sentencetext>Does anyone else think it ironic that the most severe security error found in Apache for quite a while now is in an IIS compatibility module?</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400118</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31409090</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Gadget\_Guy</author>
	<datestamp>1268061660000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p><div class="quote"><p>I didn't say they were the first to not follow standards; UNIX was developed in 1969.</p></div><p>Why should Unix have been considered to be the standard? It was just another operating system in competition with the rest. It would have been incredibly arrogant for them at the time to tell the rest of the world that the Unix way was the only way things should be done.</p></div>
	</htmltext>
<tokenext>I did n't say they were the first to not follow standards ; UNIX was developed in 1969.Why should Unix have been considered to be the standard ?
It was just another operating system in competition with the rest .
It would have been incredibly arrogant for them at the time to tell the rest of the world that the Unix way was the only way things should be done .</tokentext>
<sentencetext>I didn't say they were the first to not follow standards; UNIX was developed in 1969.Why should Unix have been considered to be the standard?
It was just another operating system in competition with the rest.
It would have been incredibly arrogant for them at the time to tell the rest of the world that the Unix way was the only way things should be done.
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31405164</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400258</id>
	<title>Not Apache's problem</title>
	<author>Anonymous</author>
	<datestamp>1268061600000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>2</modscore>
	<htmltext><p>http://httpd.apache.org/docs/2.0/mod/mod\_isapi.html</p><p><div class="quote"><p>ISAPI extension modules (.dll files) are written by third parties. The Apache Group does not author these modules, so we provide no support for them. Please contact the ISAPI's author directly if you are experiencing problems running their ISAPI extension. <b>Please do not post such problems to Apache's lists or bug reporting pages</b>.</p></div></div>
	</htmltext>
<tokenext>http : //httpd.apache.org/docs/2.0/mod/mod \ _isapi.htmlISAPI extension modules ( .dll files ) are written by third parties .
The Apache Group does not author these modules , so we provide no support for them .
Please contact the ISAPI 's author directly if you are experiencing problems running their ISAPI extension .
Please do not post such problems to Apache 's lists or bug reporting pages .</tokentext>
<sentencetext>http://httpd.apache.org/docs/2.0/mod/mod\_isapi.htmlISAPI extension modules (.dll files) are written by third parties.
The Apache Group does not author these modules, so we provide no support for them.
Please contact the ISAPI's author directly if you are experiencing problems running their ISAPI extension.
Please do not post such problems to Apache's lists or bug reporting pages.
	</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403492</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Anonymous</author>
	<datestamp>1268077800000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p><i>although I have no idea why you would run Apache on a Windows server.</i></p><p>Because you need to run something that requires Tomcat, and all you have is Windows servers.</p></htmltext>
<tokenext>although I have no idea why you would run Apache on a Windows server.Because you need to run something that requires Tomcat , and all you have is Windows servers .</tokentext>
<sentencetext>although I have no idea why you would run Apache on a Windows server.Because you need to run something that requires Tomcat, and all you have is Windows servers.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400958</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Anonymous</author>
	<datestamp>1268061840000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>4</modscore>
	<htmltext>MS bashing isn't really appropriate here.  The module only runs on Windows (although there were some efforts to make it call out into WINE so you could run ISAPI modules on *NIX), but the vulnerability is entirely Apache's fault.  It isn't doing any privilege separation or exploit mitigation, and it's running code at the highest possible privilege level, which makes this bug into a serious exploit.  The same bug in a module that ran on Linux would result in a remote root exploit.</htmltext>
<tokenext>MS bashing is n't really appropriate here .
The module only runs on Windows ( although there were some efforts to make it call out into WINE so you could run ISAPI modules on * NIX ) , but the vulnerability is entirely Apache 's fault .
It is n't doing any privilege separation or exploit mitigation , and it 's running code at the highest possible privilege level , which makes this bug into a serious exploit .
The same bug in a module that ran on Linux would result in a remote root exploit .</tokentext>
<sentencetext>MS bashing isn't really appropriate here.
The module only runs on Windows (although there were some efforts to make it call out into WINE so you could run ISAPI modules on *NIX), but the vulnerability is entirely Apache's fault.
It isn't doing any privilege separation or exploit mitigation, and it's running code at the highest possible privilege level, which makes this bug into a serious exploit.
The same bug in a module that ran on Linux would result in a remote root exploit.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400762</id>
	<title>But do you really need mod\_isapi</title>
	<author>Lew Perin</author>
	<datestamp>1268064840000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p>Not that I'd discourage anyone from keeping their Apache up-to-date, but I decided to see what would happen if I prevented the Windows Apache on my machine from loading mod\_isapi.  The answer?  Nothing, apparently.  The only thing I really feared was that it might interfere with the Zend debugger, but no, it's fine.</p></htmltext>
<tokenext>Not that I 'd discourage anyone from keeping their Apache up-to-date , but I decided to see what would happen if I prevented the Windows Apache on my machine from loading mod \ _isapi .
The answer ?
Nothing , apparently .
The only thing I really feared was that it might interfere with the Zend debugger , but no , it 's fine .</tokentext>
<sentencetext>Not that I'd discourage anyone from keeping their Apache up-to-date, but I decided to see what would happen if I prevented the Windows Apache on my machine from loading mod\_isapi.
The answer?
Nothing, apparently.
The only thing I really feared was that it might interfere with the Zend debugger, but no, it's fine.</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400536</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>petermgreen</author>
	<datestamp>1268063400000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>3</modscore>
	<htmltext><p>Apache on linux (at least in all the setups i've seen) starts as root so it can bind port 80 but then switches down to a lower privilage user to do the actual serving. Some damage could still be done of course but hopefully it's limited compared to the damage root can do.</p><p>Apache on windows defaults to running as "localsystem" (roughly the windows equivilent of root)</p><p>You can run it as another user but apparently ( <a href="http://httpd.apache.org/docs/2.0/platform/windows.html" title="apache.org">http://httpd.apache.org/docs/2.0/platform/windows.html</a> [apache.org] ) that user has to have "Act as part of the operating system" privilages. MS describes said privilages as "This user right allows a process to impersonate any user without authentication. The process can therefore gain access to the same local resources as that user.".</p><p>So it seems either way to run Apache on windows you have to give it what ammounts to root privilages.</p></htmltext>
<tokenext>Apache on linux ( at least in all the setups i 've seen ) starts as root so it can bind port 80 but then switches down to a lower privilage user to do the actual serving .
Some damage could still be done of course but hopefully it 's limited compared to the damage root can do.Apache on windows defaults to running as " localsystem " ( roughly the windows equivilent of root ) You can run it as another user but apparently ( http : //httpd.apache.org/docs/2.0/platform/windows.html [ apache.org ] ) that user has to have " Act as part of the operating system " privilages .
MS describes said privilages as " This user right allows a process to impersonate any user without authentication .
The process can therefore gain access to the same local resources as that user .
" .So it seems either way to run Apache on windows you have to give it what ammounts to root privilages .</tokentext>
<sentencetext>Apache on linux (at least in all the setups i've seen) starts as root so it can bind port 80 but then switches down to a lower privilage user to do the actual serving.
Some damage could still be done of course but hopefully it's limited compared to the damage root can do.Apache on windows defaults to running as "localsystem" (roughly the windows equivilent of root)You can run it as another user but apparently ( http://httpd.apache.org/docs/2.0/platform/windows.html [apache.org] ) that user has to have "Act as part of the operating system" privilages.
MS describes said privilages as "This user right allows a process to impersonate any user without authentication.
The process can therefore gain access to the same local resources as that user.
".So it seems either way to run Apache on windows you have to give it what ammounts to root privilages.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403590</id>
	<title>Binaries Removed?</title>
	<author>griffeymac</author>
	<datestamp>1268078280000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>So I went to download the new 2.2.15 win32 binary and it appears to have been taken down?

<a href="http://www.apache.org/dist/httpd/binaries/win32/" title="apache.org" rel="nofollow">http://www.apache.org/dist/httpd/binaries/win32/</a> [apache.org]

Or am I missing something?</htmltext>
<tokenext>So I went to download the new 2.2.15 win32 binary and it appears to have been taken down ?
http : //www.apache.org/dist/httpd/binaries/win32/ [ apache.org ] Or am I missing something ?</tokentext>
<sentencetext>So I went to download the new 2.2.15 win32 binary and it appears to have been taken down?
http://www.apache.org/dist/httpd/binaries/win32/ [apache.org]

Or am I missing something?</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400956</id>
	<title>Re:Gain Complete Control</title>
	<author>srealm</author>
	<datestamp>1268065680000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p>This would work best on assless chaps.</p></htmltext>
<tokenext>This would work best on assless chaps .</tokentext>
<sentencetext>This would work best on assless chaps.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400484</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400224</id>
	<title>Awful summary</title>
	<author>baka\_toroi</author>
	<datestamp>1268061360000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>Perhaps the editor is worried updating his Windows servers.</htmltext>
<tokenext>Perhaps the editor is worried updating his Windows servers .</tokentext>
<sentencetext>Perhaps the editor is worried updating his Windows servers.</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400382</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Anonymous</author>
	<datestamp>1268062320000</datestamp>
	<modclass>None</modclass>
	<modscore>0</modscore>
	<htmltext><p><div class="quote"><p>Amazing; usually we're all about the M$ bashing.</p></div><p>Yeah, but not even Slashdot's rabid MS bashers could spin this story to be Microsoft's fault, so I guess there was no point in mentioning it.</p></div>
	</htmltext>
<tokenext>Amazing ; usually we 're all about the M $ bashing.Yeah , but not even Slashdot 's rabid MS bashers could spin this story to be Microsoft 's fault , so I guess there was no point in mentioning it .</tokentext>
<sentencetext>Amazing; usually we're all about the M$ bashing.Yeah, but not even Slashdot's rabid MS bashers could spin this story to be Microsoft's fault, so I guess there was no point in mentioning it.
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402176</id>
	<title>Re:Windows only</title>
	<author>newdsfornerds</author>
	<datestamp>1268071980000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>HA! Go figure. Whenever the mainstream media reports on a worm/virus/trojan they NEVER mention that it affects only Windows machines. To CNN et al, computer == Windows so why be redundant by mentioning the OS? (J. R. Enduser can't tell MS Office from WinXP anyway.) And prolly MSFT buys lots of ad space at all the major news outlets so there would be pressure not to "emphasize" the affected platform.</htmltext>
<tokenext>HA !
Go figure .
Whenever the mainstream media reports on a worm/virus/trojan they NEVER mention that it affects only Windows machines .
To CNN et al , computer = = Windows so why be redundant by mentioning the OS ?
( J. R. Enduser ca n't tell MS Office from WinXP anyway .
) And prolly MSFT buys lots of ad space at all the major news outlets so there would be pressure not to " emphasize " the affected platform .</tokentext>
<sentencetext>HA!
Go figure.
Whenever the mainstream media reports on a worm/virus/trojan they NEVER mention that it affects only Windows machines.
To CNN et al, computer == Windows so why be redundant by mentioning the OS?
(J. R. Enduser can't tell MS Office from WinXP anyway.
) And prolly MSFT buys lots of ad space at all the major news outlets so there would be pressure not to "emphasize" the affected platform.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400118</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402508</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Anonymous</author>
	<datestamp>1268073360000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p>There is an interesting note at security focus <a href="http://www.securityfocus.com/infocus/1765" title="securityfocus.com">http://www.securityfocus.com/infocus/1765</a> [securityfocus.com] about how IIS is implemented securely by requiring kernel dll's to perform the heavy lifting.   Kernel dll's, from what I understand, setup a shared state [ie. lump of memory ] between the application and the kernel for the given API.</p><p>After the foreplay is over, the application's privilege is lowered, however it still has that lump of shared memory that the kernel will rely on.   It seems from the parent article about this exploit, that some jump table is being relied upon in the kernel that the app has done a poor job of cleaning up.   Bad app!  Worse Kernel!</p><p>Strangely, security focus seems to think this is an example of least privilege. This interface design is what has made windows so hard to lock down; and is what calls BS on the apologists.   Although UNICES often have glaring holes in, for example, ioctl services, I've never seen one that was stupid as to callback into the application....</p></htmltext>
<tokenext>There is an interesting note at security focus http : //www.securityfocus.com/infocus/1765 [ securityfocus.com ] about how IIS is implemented securely by requiring kernel dll 's to perform the heavy lifting .
Kernel dll 's , from what I understand , setup a shared state [ ie .
lump of memory ] between the application and the kernel for the given API.After the foreplay is over , the application 's privilege is lowered , however it still has that lump of shared memory that the kernel will rely on .
It seems from the parent article about this exploit , that some jump table is being relied upon in the kernel that the app has done a poor job of cleaning up .
Bad app !
Worse Kernel ! Strangely , security focus seems to think this is an example of least privilege .
This interface design is what has made windows so hard to lock down ; and is what calls BS on the apologists .
Although UNICES often have glaring holes in , for example , ioctl services , I 've never seen one that was stupid as to callback into the application... .</tokentext>
<sentencetext>There is an interesting note at security focus http://www.securityfocus.com/infocus/1765 [securityfocus.com] about how IIS is implemented securely by requiring kernel dll's to perform the heavy lifting.
Kernel dll's, from what I understand, setup a shared state [ie.
lump of memory ] between the application and the kernel for the given API.After the foreplay is over, the application's privilege is lowered, however it still has that lump of shared memory that the kernel will rely on.
It seems from the parent article about this exploit, that some jump table is being relied upon in the kernel that the app has done a poor job of cleaning up.
Bad app!
Worse Kernel!Strangely, security focus seems to think this is an example of least privilege.
This interface design is what has made windows so hard to lock down; and is what calls BS on the apologists.
Although UNICES often have glaring holes in, for example, ioctl services, I've never seen one that was stupid as to callback into the application....</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400072</id>
	<title>NO EXPLOIT HERE</title>
	<author>Anonymous</author>
	<datestamp>1268060340000</datestamp>
	<modclass>Troll</modclass>
	<modscore>-1</modscore>
	<htmltext><p>First post fuckers!</p></htmltext>
<tokenext>First post fuckers !</tokentext>
<sentencetext>First post fuckers!</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400372</id>
	<title>You bastards gave me a heart attack!</title>
	<author>Anonymous</author>
	<datestamp>1268062260000</datestamp>
	<modclass>Funny</modclass>
	<modscore>4</modscore>
	<htmltext>I had to read the article to see it was Windows only . . . whew.</htmltext>
<tokenext>I had to read the article to see it was Windows only .
. .
whew .</tokentext>
<sentencetext>I had to read the article to see it was Windows only .
. .
whew.</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31423348</id>
	<title>Re:Windows only exploit</title>
	<author>Anonymous</author>
	<datestamp>1268159940000</datestamp>
	<modclass>None</modclass>
	<modscore>0</modscore>
	<htmltext><p>we have a few in our organisation. Only 3 running ISAPI modules though.</p></htmltext>
<tokenext>we have a few in our organisation .
Only 3 running ISAPI modules though .</tokentext>
<sentencetext>we have a few in our organisation.
Only 3 running ISAPI modules though.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400120</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102</id>
	<title>Note: Apache ON WINDOWS</title>
	<author>Anonymous</author>
	<datestamp>1268060520000</datestamp>
	<modclass>Troll</modclass>
	<modscore>-1</modscore>
	<htmltext>Amazing; usually we're all about the M$ bashing.</htmltext>
<tokenext>Amazing ; usually we 're all about the M $ bashing .</tokentext>
<sentencetext>Amazing; usually we're all about the M$ bashing.</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403754</id>
	<title>Re:It's unanimous!</title>
	<author>noidentity</author>
	<datestamp>1268079060000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><blockquote><div><p>7 out of the first 8 posts agree that this is Windows only.</p></div>
</blockquote><p>Is the 8th one running Wine or something?</p></div>
	</htmltext>
<tokenext>7 out of the first 8 posts agree that this is Windows only .
Is the 8th one running Wine or something ?</tokentext>
<sentencetext>7 out of the first 8 posts agree that this is Windows only.
Is the 8th one running Wine or something?
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400206</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400838</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Malc</author>
	<datestamp>1268065140000</datestamp>
	<modclass>Interestin</modclass>
	<modscore>2</modscore>
	<htmltext><p>Why would Apache run as an Administrator on Windows?  Even IIS doesn't do that these days.</p></htmltext>
<tokenext>Why would Apache run as an Administrator on Windows ?
Even IIS does n't do that these days .</tokentext>
<sentencetext>Why would Apache run as an Administrator on Windows?
Even IIS doesn't do that these days.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400550</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401488</id>
	<title>Definitely emphasize windows-only!</title>
	<author>Teunis</author>
	<datestamp>1268068500000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>I don't know that the bug doesn't exist under linux - but it wouldn't seem to.   Of all the servers I run, 0\% (no variance) run windows.   I read this because the headline was so fearmongering only to realize<nobr> <wbr></nobr>... it didn't matter.<br>Running software under windows these days is an experiment in running software in an unsafe, unreliable and probably infected environment anyway.<br><br>(while I'm still working with about a dozen servers, I'm mostly a computer tech - and that means spending 8+ hours a day clearing viruses off of computers with the occasional bit of repair in between).</htmltext>
<tokenext>I do n't know that the bug does n't exist under linux - but it would n't seem to .
Of all the servers I run , 0 \ % ( no variance ) run windows .
I read this because the headline was so fearmongering only to realize ... it did n't matter.Running software under windows these days is an experiment in running software in an unsafe , unreliable and probably infected environment anyway .
( while I 'm still working with about a dozen servers , I 'm mostly a computer tech - and that means spending 8 + hours a day clearing viruses off of computers with the occasional bit of repair in between ) .</tokentext>
<sentencetext>I don't know that the bug doesn't exist under linux - but it wouldn't seem to.
Of all the servers I run, 0\% (no variance) run windows.
I read this because the headline was so fearmongering only to realize ... it didn't matter.Running software under windows these days is an experiment in running software in an unsafe, unreliable and probably infected environment anyway.
(while I'm still working with about a dozen servers, I'm mostly a computer tech - and that means spending 8+ hours a day clearing viruses off of computers with the occasional bit of repair in between).</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400174</id>
	<title>I was slightly worried, until I read this:</title>
	<author>Anonymous</author>
	<datestamp>1268060940000</datestamp>
	<modclass>Interestin</modclass>
	<modscore>2</modscore>
	<htmltext><p><div class="quote"><p>Platform.                      Microsoft Windows</p></div><p>But is this the final nail in the Apache 1.3 coffin?<br>Now the boss is going to be upset even when you tell them your version is not vulnerable.</p></div>
	</htmltext>
<tokenext>Platform .
Microsoft WindowsBut is this the final nail in the Apache 1.3 coffin ? Now the boss is going to be upset even when you tell them your version is not vulnerable .</tokentext>
<sentencetext>Platform.
Microsoft WindowsBut is this the final nail in the Apache 1.3 coffin?Now the boss is going to be upset even when you tell them your version is not vulnerable.
	</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400890</id>
	<title>Re:Apache on Windows--More common than you think?</title>
	<author>gazbo</author>
	<datestamp>1268065380000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>DEPRECATING.<p>Unless you really meant you have a team of people chipping away at the Windows machines (and advocates) with hammers to accelerate their loss of monetary value?</p></htmltext>
<tokenext>DEPRECATING.Unless you really meant you have a team of people chipping away at the Windows machines ( and advocates ) with hammers to accelerate their loss of monetary value ?</tokentext>
<sentencetext>DEPRECATING.Unless you really meant you have a team of people chipping away at the Windows machines (and advocates) with hammers to accelerate their loss of monetary value?</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400378</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401672</id>
	<title>Where are the binaries with OpenSSL???</title>
	<author>CheckeredFlag</author>
	<datestamp>1268069460000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p>Looks like none of the download mirrors nor the Apache's backup contain the MSI installer that includes OpenSSL.  Where is it?  Only the non-ssl version is available.</p><p>The only exception appears to be the <a href="http://download.filehat.com/apache/httpd/binaries/win32/" title="filehat.com" rel="nofollow">filehat mirror</a> [filehat.com].  There is no pgp signature on apache's main server to verify its integrity either.</p><p>Was it pulled?  Anyone know why it's unavailable?</p></htmltext>
<tokenext>Looks like none of the download mirrors nor the Apache 's backup contain the MSI installer that includes OpenSSL .
Where is it ?
Only the non-ssl version is available.The only exception appears to be the filehat mirror [ filehat.com ] .
There is no pgp signature on apache 's main server to verify its integrity either.Was it pulled ?
Anyone know why it 's unavailable ?</tokentext>
<sentencetext>Looks like none of the download mirrors nor the Apache's backup contain the MSI installer that includes OpenSSL.
Where is it?
Only the non-ssl version is available.The only exception appears to be the filehat mirror [filehat.com].
There is no pgp signature on apache's main server to verify its integrity either.Was it pulled?
Anyone know why it's unavailable?</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402002</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>jim\_v2000</author>
	<datestamp>1268071200000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>Apache doesn't run under the admin account in  Windows unless you've configured it that way.</htmltext>
<tokenext>Apache does n't run under the admin account in Windows unless you 've configured it that way .</tokentext>
<sentencetext>Apache doesn't run under the admin account in  Windows unless you've configured it that way.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400550</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401770</id>
	<title>Amen Brother!</title>
	<author>celtic\_hackr</author>
	<datestamp>1268070000000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>I saw that title and said Holy Crap Now I have to go search for patches pronto!<br>
Can we add a feature to<nobr> <wbr></nobr>/. allowing us annoyed readers to electro-shock the submitters whenever they post such scary headlines?</htmltext>
<tokenext>I saw that title and said Holy Crap Now I have to go search for patches pronto !
Can we add a feature to / .
allowing us annoyed readers to electro-shock the submitters whenever they post such scary headlines ?</tokentext>
<sentencetext>I saw that title and said Holy Crap Now I have to go search for patches pronto!
Can we add a feature to /.
allowing us annoyed readers to electro-shock the submitters whenever they post such scary headlines?</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400372</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31406994</id>
	<title>Re:Update to 2.2.15</title>
	<author>Anonymous</author>
	<datestamp>1268048880000</datestamp>
	<modclass>None</modclass>
	<modscore>0</modscore>
	<htmltext><p>That's okay, it'll crash soon enough.</p></htmltext>
<tokenext>That 's okay , it 'll crash soon enough .</tokentext>
<sentencetext>That's okay, it'll crash soon enough.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400216</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31405164</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>mcgrew</author>
	<datestamp>1268042220000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p><i>Oh dear, you didn't just claim that the forward slash was a standard, did you? MS-DOS 1 used the same conventions as CP/M and VMS for command line arguments</i></p><p>I didn't say they were the first to not follow standards; UNIX was <a href="http://en.wikipedia.org/wiki/Unix" title="wikipedia.org">developed in 1969</a> [wikipedia.org]. CP/M didn't follow the standard before Windows didn't follow the standard, and so did <a href="http://en.wikipedia.org/wiki/OpenVMS#History" title="wikipedia.org">VMS</a> [wikipedia.org]. I did read once that one of the fellows who worked on PC-DOS felt that using the forward slash as a switch was a bad idea, and his bad idea at that. IINM it was DOS 2.something that first had directories, by then it was too late to use the forward slash as a directory separator, since it was already a switch.</p><p><i>Don't ask me to tell you where you set it, because they keep moving around the network configuration with every version of Windows. That really pisses me off.</i></p><p>It's also my biggest pet peeve about Microsoft; they do this with every OS and every app.</p><p>You know what one thing that ignores standards that annoys me the most? Twist ties on bread! Screws go in clockwise, out counterclockwise. Light bulbs, machine bolts, machine nuts, EVERYTHING screws in/on clockwise, and off counterclockwise. Except bread; I think the engineer who designed the machine that twists twist ties on bread was either a former Microsoft employee or had a really twisted sense of humor.</p></htmltext>
<tokenext>Oh dear , you did n't just claim that the forward slash was a standard , did you ?
MS-DOS 1 used the same conventions as CP/M and VMS for command line argumentsI did n't say they were the first to not follow standards ; UNIX was developed in 1969 [ wikipedia.org ] .
CP/M did n't follow the standard before Windows did n't follow the standard , and so did VMS [ wikipedia.org ] .
I did read once that one of the fellows who worked on PC-DOS felt that using the forward slash as a switch was a bad idea , and his bad idea at that .
IINM it was DOS 2.something that first had directories , by then it was too late to use the forward slash as a directory separator , since it was already a switch.Do n't ask me to tell you where you set it , because they keep moving around the network configuration with every version of Windows .
That really pisses me off.It 's also my biggest pet peeve about Microsoft ; they do this with every OS and every app.You know what one thing that ignores standards that annoys me the most ?
Twist ties on bread !
Screws go in clockwise , out counterclockwise .
Light bulbs , machine bolts , machine nuts , EVERYTHING screws in/on clockwise , and off counterclockwise .
Except bread ; I think the engineer who designed the machine that twists twist ties on bread was either a former Microsoft employee or had a really twisted sense of humor .</tokentext>
<sentencetext>Oh dear, you didn't just claim that the forward slash was a standard, did you?
MS-DOS 1 used the same conventions as CP/M and VMS for command line argumentsI didn't say they were the first to not follow standards; UNIX was developed in 1969 [wikipedia.org].
CP/M didn't follow the standard before Windows didn't follow the standard, and so did VMS [wikipedia.org].
I did read once that one of the fellows who worked on PC-DOS felt that using the forward slash as a switch was a bad idea, and his bad idea at that.
IINM it was DOS 2.something that first had directories, by then it was too late to use the forward slash as a directory separator, since it was already a switch.Don't ask me to tell you where you set it, because they keep moving around the network configuration with every version of Windows.
That really pisses me off.It's also my biggest pet peeve about Microsoft; they do this with every OS and every app.You know what one thing that ignores standards that annoys me the most?
Twist ties on bread!
Screws go in clockwise, out counterclockwise.
Light bulbs, machine bolts, machine nuts, EVERYTHING screws in/on clockwise, and off counterclockwise.
Except bread; I think the engineer who designed the machine that twists twist ties on bread was either a former Microsoft employee or had a really twisted sense of humor.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400958</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401760</id>
	<title>Re:Apache on Windows--More common than you think?</title>
	<author>Anonymous</author>
	<datestamp>1268069940000</datestamp>
	<modclass>Troll</modclass>
	<modscore>-1</modscore>
	<htmltext><p>Welcome to Earth!  Your journey from the planet of linux fantasy must have been a long one.  Please, regail us more of this mystical place where zealot sysadmins determine corporate policy and "internal apps" are written presumably were first written in, presumably, php for windows.</p><p>no, seriously. I'd like to know exactly what sort of "company" you think actually your apocryphal scenario would actually apply to?  if it was a company that did anything serious (like a small bank or insurnace company), you'd be out of a job in seconds unless your boss were a complete idiot.  i'm guessing it's either some government back-office where a technology can get away with such incompetence and experimentation or a small software firm where the rest of the guys are savvy enough that it's ok with them.   unless it's running a billion servers like amazon or google or whatever, i have yet to find a serious company for whom the relatively insignificant cost of the operating system on their matters two shits compared the very high costs of user training and retraining, administrator hiring and rehiring, and so forth.</p></htmltext>
<tokenext>Welcome to Earth !
Your journey from the planet of linux fantasy must have been a long one .
Please , regail us more of this mystical place where zealot sysadmins determine corporate policy and " internal apps " are written presumably were first written in , presumably , php for windows.no , seriously .
I 'd like to know exactly what sort of " company " you think actually your apocryphal scenario would actually apply to ?
if it was a company that did anything serious ( like a small bank or insurnace company ) , you 'd be out of a job in seconds unless your boss were a complete idiot .
i 'm guessing it 's either some government back-office where a technology can get away with such incompetence and experimentation or a small software firm where the rest of the guys are savvy enough that it 's ok with them .
unless it 's running a billion servers like amazon or google or whatever , i have yet to find a serious company for whom the relatively insignificant cost of the operating system on their matters two shits compared the very high costs of user training and retraining , administrator hiring and rehiring , and so forth .</tokentext>
<sentencetext>Welcome to Earth!
Your journey from the planet of linux fantasy must have been a long one.
Please, regail us more of this mystical place where zealot sysadmins determine corporate policy and "internal apps" are written presumably were first written in, presumably, php for windows.no, seriously.
I'd like to know exactly what sort of "company" you think actually your apocryphal scenario would actually apply to?
if it was a company that did anything serious (like a small bank or insurnace company), you'd be out of a job in seconds unless your boss were a complete idiot.
i'm guessing it's either some government back-office where a technology can get away with such incompetence and experimentation or a small software firm where the rest of the guys are savvy enough that it's ok with them.
unless it's running a billion servers like amazon or google or whatever, i have yet to find a serious company for whom the relatively insignificant cost of the operating system on their matters two shits compared the very high costs of user training and retraining, administrator hiring and rehiring, and so forth.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400378</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402268</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Anonymous</author>
	<datestamp>1268072460000</datestamp>
	<modclass>Insightful</modclass>
	<modscore>3</modscore>
	<htmltext><p>Apache does not run as Administrator on Windows. I'm afraid it is worse than that, it runs as LocalSystem, which is more analogous to root than Administrator is. Even if you configure the service to run as a different account, it requires the "Log on as a service" and "Act as part of the operating system" privileges. Might as well use LocalSystem.</p></htmltext>
<tokenext>Apache does not run as Administrator on Windows .
I 'm afraid it is worse than that , it runs as LocalSystem , which is more analogous to root than Administrator is .
Even if you configure the service to run as a different account , it requires the " Log on as a service " and " Act as part of the operating system " privileges .
Might as well use LocalSystem .</tokentext>
<sentencetext>Apache does not run as Administrator on Windows.
I'm afraid it is worse than that, it runs as LocalSystem, which is more analogous to root than Administrator is.
Even if you configure the service to run as a different account, it requires the "Log on as a service" and "Act as part of the operating system" privileges.
Might as well use LocalSystem.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400838</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403798</id>
	<title>Re:Always worried about reporting.</title>
	<author>noidentity</author>
	<datestamp>1268079180000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><blockquote><div><p>This just <b>eliminates one less thing</b> for a hacker to figure out.</p></div>
</blockquote><p>Ummm, so it means the hacker has one <i>more</i> thing to figure out? I'm confused.</p></div>
	</htmltext>
<tokenext>This just eliminates one less thing for a hacker to figure out .
Ummm , so it means the hacker has one more thing to figure out ?
I 'm confused .</tokentext>
<sentencetext>This just eliminates one less thing for a hacker to figure out.
Ummm, so it means the hacker has one more thing to figure out?
I'm confused.
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400454</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400150</id>
	<title>The new motto of IIS:</title>
	<author>Anonymous</author>
	<datestamp>1268060820000</datestamp>
	<modclass>Flamebait</modclass>
	<modscore>-1</modscore>
	<htmltext><p>The new motto of IIS: "Security so shit that even open-source implementations of our API will leave your box looking like Goatse."</p></htmltext>
<tokenext>The new motto of IIS : " Security so shit that even open-source implementations of our API will leave your box looking like Goatse .
"</tokentext>
<sentencetext>The new motto of IIS: "Security so shit that even open-source implementations of our API will leave your box looking like Goatse.
"</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400216</id>
	<title>Update to 2.2.15</title>
	<author>Anonymous</author>
	<datestamp>1268061300000</datestamp>
	<modclass>Funny</modclass>
	<modscore>2</modscore>
	<htmltext>But I don't want to restart my Windows<nobr> <wbr></nobr>:\</htmltext>
<tokenext>But I do n't want to restart my Windows : \</tokentext>
<sentencetext>But I don't want to restart my Windows :\</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400206</id>
	<title>It's unanimous!</title>
	<author>ipquickly</author>
	<datestamp>1268061240000</datestamp>
	<modclass>Funny</modclass>
	<modscore>5</modscore>
	<htmltext><p>7 out of the first 8 posts agree that this is Windows only.</p></htmltext>
<tokenext>7 out of the first 8 posts agree that this is Windows only .</tokentext>
<sentencetext>7 out of the first 8 posts agree that this is Windows only.</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400392</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>mcgrew</author>
	<datestamp>1268062440000</datestamp>
	<modclass>Flamebait</modclass>
	<modscore>1</modscore>
	<htmltext><p>Discussing exploits isn't "bashing".</p><p>However, in regards to MS (and we're close to being offtopic here) when was the last time you heard about an Apache vuln? Apache is relatively solid.</p><p>My problems with MS, however, are philosophical. MS seems to revel in giving the finger to standards, from the backslash to everything else. They brag about useability testing, but it almost seems like they take a group of children and mentally handicapped adults and flipping the bird to everyone else. E.g., I bought a netbook last week and tried to get on the internet with it at my favorite bar; the bar's router had something wrong with it and Windows couldn't find the DNS server. There seemed to be no way to tell Windows networking what the server address was. Meanwhile, a woman with an iPhone had no trouble using the wifi there. With earlier versions of Windows I had no trouble specifying a DNS server, and the help system is no help at all.</p><p>If I decide to run a server, it will be Apache on Linux.</p><p>I think it's funny that Apache got its neame from the earlier releases, it was a patchy server. Lots fewer patches these days!</p></htmltext>
<tokenext>Discussing exploits is n't " bashing " .However , in regards to MS ( and we 're close to being offtopic here ) when was the last time you heard about an Apache vuln ?
Apache is relatively solid.My problems with MS , however , are philosophical .
MS seems to revel in giving the finger to standards , from the backslash to everything else .
They brag about useability testing , but it almost seems like they take a group of children and mentally handicapped adults and flipping the bird to everyone else .
E.g. , I bought a netbook last week and tried to get on the internet with it at my favorite bar ; the bar 's router had something wrong with it and Windows could n't find the DNS server .
There seemed to be no way to tell Windows networking what the server address was .
Meanwhile , a woman with an iPhone had no trouble using the wifi there .
With earlier versions of Windows I had no trouble specifying a DNS server , and the help system is no help at all.If I decide to run a server , it will be Apache on Linux.I think it 's funny that Apache got its neame from the earlier releases , it was a patchy server .
Lots fewer patches these days !</tokentext>
<sentencetext>Discussing exploits isn't "bashing".However, in regards to MS (and we're close to being offtopic here) when was the last time you heard about an Apache vuln?
Apache is relatively solid.My problems with MS, however, are philosophical.
MS seems to revel in giving the finger to standards, from the backslash to everything else.
They brag about useability testing, but it almost seems like they take a group of children and mentally handicapped adults and flipping the bird to everyone else.
E.g., I bought a netbook last week and tried to get on the internet with it at my favorite bar; the bar's router had something wrong with it and Windows couldn't find the DNS server.
There seemed to be no way to tell Windows networking what the server address was.
Meanwhile, a woman with an iPhone had no trouble using the wifi there.
With earlier versions of Windows I had no trouble specifying a DNS server, and the help system is no help at all.If I decide to run a server, it will be Apache on Linux.I think it's funny that Apache got its neame from the earlier releases, it was a patchy server.
Lots fewer patches these days!</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402894</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Anonymous</author>
	<datestamp>1268075160000</datestamp>
	<modclass>None</modclass>
	<modscore>0</modscore>
	<htmltext><p><div class="quote"><p>Amazing; usually we're all about the M$ bashing.</p></div><p>No kidding.  Surely there's a way we can tack this on to the "Linux vulnerability" list.  There's no way this can show up against Windows on the latest Secuna list we like to troll with.</p></div>
	</htmltext>
<tokenext>Amazing ; usually we 're all about the M $ bashing.No kidding .
Surely there 's a way we can tack this on to the " Linux vulnerability " list .
There 's no way this can show up against Windows on the latest Secuna list we like to troll with .</tokentext>
<sentencetext>Amazing; usually we're all about the M$ bashing.No kidding.
Surely there's a way we can tack this on to the "Linux vulnerability" list.
There's no way this can show up against Windows on the latest Secuna list we like to troll with.
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401132</id>
	<title>Re:Always worried about reporting.</title>
	<author>Anonymous</author>
	<datestamp>1268066580000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p><div class="quote"><p>Whenever I hear a story about a person\firm reporting security risks, I am reminded of the story of my coworker, and I have heard too many similiar stories.  It has trained to me keep my mouth shut about these problems.</p></div><p>That's really bad. I know it's all too easy to tell someone to change job but that company is dysfunctional and You will do better elsewhere.</p></div>
	</htmltext>
<tokenext>Whenever I hear a story about a person \ firm reporting security risks , I am reminded of the story of my coworker , and I have heard too many similiar stories .
It has trained to me keep my mouth shut about these problems.That 's really bad .
I know it 's all too easy to tell someone to change job but that company is dysfunctional and You will do better elsewhere .</tokentext>
<sentencetext>Whenever I hear a story about a person\firm reporting security risks, I am reminded of the story of my coworker, and I have heard too many similiar stories.
It has trained to me keep my mouth shut about these problems.That's really bad.
I know it's all too easy to tell someone to change job but that company is dysfunctional and You will do better elsewhere.
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400454</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400550</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Anonymous</author>
	<datestamp>1268063520000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>3</modscore>
	<htmltext><p><i>MS bashing isn't really appropriate here.</i></p><p>You must either be new here or have a very short memory.</p><p><i>The same bug in a module that ran on Linux would result in a remote root exploit.</i></p><p>Apache does not normally run as root on Linux. Only on Windows.</p></htmltext>
<tokenext>MS bashing is n't really appropriate here.You must either be new here or have a very short memory.The same bug in a module that ran on Linux would result in a remote root exploit.Apache does not normally run as root on Linux .
Only on Windows .</tokentext>
<sentencetext>MS bashing isn't really appropriate here.You must either be new here or have a very short memory.The same bug in a module that ran on Linux would result in a remote root exploit.Apache does not normally run as root on Linux.
Only on Windows.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401886</id>
	<title>Re:You bastards gave me a heart attack!</title>
	<author>Fujisawa Sensei</author>
	<datestamp>1268070600000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p><div class="quote"><p>I had to read the article to see it was Windows only . . . whew.</p></div><p>I may be a little out of date, but I thought isapi was the IIS interface, meaning it was inherently Windows only. And isapi was mentioned as part of the summary.</p><p>OTOH, at least it means you actually RTFA.</p></div>
	</htmltext>
<tokenext>I had to read the article to see it was Windows only .
. .
whew.I may be a little out of date , but I thought isapi was the IIS interface , meaning it was inherently Windows only .
And isapi was mentioned as part of the summary.OTOH , at least it means you actually RTFA .</tokentext>
<sentencetext>I had to read the article to see it was Windows only .
. .
whew.I may be a little out of date, but I thought isapi was the IIS interface, meaning it was inherently Windows only.
And isapi was mentioned as part of the summary.OTOH, at least it means you actually RTFA.
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400372</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400496</id>
	<title>Re:Not Apache's problem</title>
	<author>florescent\_beige</author>
	<datestamp>1268063100000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>2</modscore>
	<htmltext><p>The problem isn't in the dlls per se, the exploit works by causing mod\_isapi to unload a dll and leave dangling pointers to the api that can be invoked. The fix is an apache.org change to mod\_isapi that prevents such unloading:</p><p> <a href="http://www.apache.org/dist/httpd/CHANGES\_2.2.15" title="apache.org">2.2.15 Release Notes</a> [apache.org] </p><p><div class="quote"><p>Changes with Apache 2.2.15</p><p>*) SECURITY: CVE-2010-0425 (cve.mitre.org)
     mod\_isapi: Do not unload an isapi<nobr> <wbr></nobr>.dll module until the request
     processing is completed, avoiding orphaned callback pointers.
     [Brett Gervasoni brettg senseofsecurity.com, Jeff Trawick]</p></div></div>
	</htmltext>
<tokenext>The problem is n't in the dlls per se , the exploit works by causing mod \ _isapi to unload a dll and leave dangling pointers to the api that can be invoked .
The fix is an apache.org change to mod \ _isapi that prevents such unloading : 2.2.15 Release Notes [ apache.org ] Changes with Apache 2.2.15 * ) SECURITY : CVE-2010-0425 ( cve.mitre.org ) mod \ _isapi : Do not unload an isapi .dll module until the request processing is completed , avoiding orphaned callback pointers .
[ Brett Gervasoni brettg senseofsecurity.com , Jeff Trawick ]</tokentext>
<sentencetext>The problem isn't in the dlls per se, the exploit works by causing mod\_isapi to unload a dll and leave dangling pointers to the api that can be invoked.
The fix is an apache.org change to mod\_isapi that prevents such unloading: 2.2.15 Release Notes [apache.org] Changes with Apache 2.2.15*) SECURITY: CVE-2010-0425 (cve.mitre.org)
     mod\_isapi: Do not unload an isapi .dll module until the request
     processing is completed, avoiding orphaned callback pointers.
[Brett Gervasoni brettg senseofsecurity.com, Jeff Trawick]
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400258</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400418</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Vectormatic</author>
	<datestamp>1268062620000</datestamp>
	<modclass>Interestin</modclass>
	<modscore>2</modscore>
	<htmltext>PFew... for a second i was worried wether my centos VPS with tomcat (apache based, you never know), would be vulnerable to this

Thanks for putting my mind at ease<nobr> <wbr></nobr>:)</htmltext>
<tokenext>PFew... for a second i was worried wether my centos VPS with tomcat ( apache based , you never know ) , would be vulnerable to this Thanks for putting my mind at ease : )</tokentext>
<sentencetext>PFew... for a second i was worried wether my centos VPS with tomcat (apache based, you never know), would be vulnerable to this

Thanks for putting my mind at ease :)</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31411844</id>
	<title>Here's the SSL-enabled 2.2.15 package</title>
	<author>Compact Dick</author>
	<datestamp>1268138700000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>2</modscore>
	<htmltext><p>Apparently, there were regressions with the build.</p><p>Here's <a href="http://httpd.apache.org/dev/dist/httpd-2.2.15-win32-x86-openssl-0.9.8m-r2.msi" title="apache.org" rel="nofollow">revision 2 of Apache 2.2.15 with OpenSSL</a> [apache.org]. Preliminary reports indicate that it works like it should.</p></htmltext>
<tokenext>Apparently , there were regressions with the build.Here 's revision 2 of Apache 2.2.15 with OpenSSL [ apache.org ] .
Preliminary reports indicate that it works like it should .</tokentext>
<sentencetext>Apparently, there were regressions with the build.Here's revision 2 of Apache 2.2.15 with OpenSSL [apache.org].
Preliminary reports indicate that it works like it should.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401672</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400658</id>
	<title>Re:Update to 2.2.15</title>
	<author>Anonymous</author>
	<datestamp>1268064240000</datestamp>
	<modclass>None</modclass>
	<modscore>0</modscore>
	<htmltext><p><i>I don't want to restart my Windows</i></p><p>Not to worry, you can restart My Computer instead!</p></htmltext>
<tokenext>I do n't want to restart my WindowsNot to worry , you can restart My Computer instead !</tokentext>
<sentencetext>I don't want to restart my WindowsNot to worry, you can restart My Computer instead!</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400216</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31405134</id>
	<title>Module enabled by default</title>
	<author>citylivin</author>
	<datestamp>1268042040000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>2</modscore>
	<htmltext><p>If you cant upgrade, simply go into \conf\apache.conf and comment out the line that loads aspi:</p><p>#LoadModule isapi\_module modules/mod\_isapi.so</p><p>restart apache service and you should be good to go.</p><p>And to all those people who are like 'lolz! who runs apache on windows lolz!', i would say plenty of people. Because apache is far far far far far superior to ISS. Hopefully they have done it like me and made a low privilege local user to run it. It takes a bit more work but not much.</p></htmltext>
<tokenext>If you cant upgrade , simply go into \ conf \ apache.conf and comment out the line that loads aspi : # LoadModule isapi \ _module modules/mod \ _isapi.sorestart apache service and you should be good to go.And to all those people who are like 'lolz !
who runs apache on windows lolz !
' , i would say plenty of people .
Because apache is far far far far far superior to ISS .
Hopefully they have done it like me and made a low privilege local user to run it .
It takes a bit more work but not much .</tokentext>
<sentencetext>If you cant upgrade, simply go into \conf\apache.conf and comment out the line that loads aspi:#LoadModule isapi\_module modules/mod\_isapi.sorestart apache service and you should be good to go.And to all those people who are like 'lolz!
who runs apache on windows lolz!
', i would say plenty of people.
Because apache is far far far far far superior to ISS.
Hopefully they have done it like me and made a low privilege local user to run it.
It takes a bit more work but not much.</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400378</id>
	<title>Apache on Windows--More common than you think?</title>
	<author>Anonymous</author>
	<datestamp>1268062320000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>2</modscore>
	<htmltext><p>There are many reasons why I wouldn't deploy a production (i.e. www-facing) webserver of any stripe running on Microsoft Windows, security being a big one of them.[1]</p><p>On the other hand, for some purposes (corporate intranet, for example), Apache on Windows has been a godsend--it's allowed us, for example, to migrate our internal apps to a Free platform gradually, while depreciating our existing Windows machines (and advocates) into oblivion.</p><p>---------------<br>1.  Lots of people do, though.  I'm pretty sure IBM and Oracle Websphere/Weblogic services all use Apache httpd at some level.  Happy patching, boys and girls!</p></htmltext>
<tokenext>There are many reasons why I would n't deploy a production ( i.e .
www-facing ) webserver of any stripe running on Microsoft Windows , security being a big one of them .
[ 1 ] On the other hand , for some purposes ( corporate intranet , for example ) , Apache on Windows has been a godsend--it 's allowed us , for example , to migrate our internal apps to a Free platform gradually , while depreciating our existing Windows machines ( and advocates ) into oblivion.---------------1 .
Lots of people do , though .
I 'm pretty sure IBM and Oracle Websphere/Weblogic services all use Apache httpd at some level .
Happy patching , boys and girls !</tokentext>
<sentencetext>There are many reasons why I wouldn't deploy a production (i.e.
www-facing) webserver of any stripe running on Microsoft Windows, security being a big one of them.
[1]On the other hand, for some purposes (corporate intranet, for example), Apache on Windows has been a godsend--it's allowed us, for example, to migrate our internal apps to a Free platform gradually, while depreciating our existing Windows machines (and advocates) into oblivion.---------------1.
Lots of people do, though.
I'm pretty sure IBM and Oracle Websphere/Weblogic services all use Apache httpd at some level.
Happy patching, boys and girls!</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31404084</id>
	<title>Re:You bastards gave me a heart attack!</title>
	<author>julesh</author>
	<datestamp>1268080560000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p><i>I had to read the article to see it was Windows only . . . whew.</i></p><p>No you didn't.  Even before the update, the summary clearly said it was mod\_isapi that contains the bug, and mod\_isapi is a Windows-only component.</p></htmltext>
<tokenext>I had to read the article to see it was Windows only .
. .
whew.No you did n't .
Even before the update , the summary clearly said it was mod \ _isapi that contains the bug , and mod \ _isapi is a Windows-only component .</tokentext>
<sentencetext>I had to read the article to see it was Windows only .
. .
whew.No you didn't.
Even before the update, the summary clearly said it was mod\_isapi that contains the bug, and mod\_isapi is a Windows-only component.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400372</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402784</id>
	<title>Does this affect me?</title>
	<author>Anonymous</author>
	<datestamp>1268074620000</datestamp>
	<modclass>None</modclass>
	<modscore>0</modscore>
	<htmltext><p>For the lazy admins out there who are running Apache on Windows, does the mere presence of mod\_isapi in the httpd.conf signal a problem or must there be other directives loading a DLL for this to be a problem?</p><p>I'm not lazy, I'm just thrifty with my time.</p></htmltext>
<tokenext>For the lazy admins out there who are running Apache on Windows , does the mere presence of mod \ _isapi in the httpd.conf signal a problem or must there be other directives loading a DLL for this to be a problem ? I 'm not lazy , I 'm just thrifty with my time .</tokentext>
<sentencetext>For the lazy admins out there who are running Apache on Windows, does the mere presence of mod\_isapi in the httpd.conf signal a problem or must there be other directives loading a DLL for this to be a problem?I'm not lazy, I'm just thrifty with my time.</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400302</id>
	<title>Re:It's unanimous!</title>
	<author>rvw</author>
	<datestamp>1268061900000</datestamp>
	<modclass>Funny</modclass>
	<modscore>4</modscore>
	<htmltext><p><div class="quote"><p>7 out of the first 8 posts agree that this is Windows only.</p></div><p>You must be using Windows Calculator!</p></div>
	</htmltext>
<tokenext>7 out of the first 8 posts agree that this is Windows only.You must be using Windows Calculator !</tokentext>
<sentencetext>7 out of the first 8 posts agree that this is Windows only.You must be using Windows Calculator!
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400206</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402498</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Anonymous</author>
	<datestamp>1268073300000</datestamp>
	<modclass>None</modclass>
	<modscore>0</modscore>
	<htmltext><p><div class="quote"><p>when was the last time you heard about an Apache vuln?</p></div><p>You don't hear about them around here, but if you go to Secunia you will see that, in the last six years, Apache vulns have been much more abundant than IIS vulns.</p></div>
	</htmltext>
<tokenext>when was the last time you heard about an Apache vuln ? You do n't hear about them around here , but if you go to Secunia you will see that , in the last six years , Apache vulns have been much more abundant than IIS vulns .</tokentext>
<sentencetext>when was the last time you heard about an Apache vuln?You don't hear about them around here, but if you go to Secunia you will see that, in the last six years, Apache vulns have been much more abundant than IIS vulns.
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400392</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401226</id>
	<title>Re:Apache on Windows--More common than you think?</title>
	<author>Just Some Guy</author>
	<datestamp>1268067120000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p><div class="quote"><p>Unless you really meant you have a team of people chipping away at the Windows machines (and advocates) with hammers to accelerate their loss of monetary value?</p></div><p>How would that decrease their value?</p></div>
	</htmltext>
<tokenext>Unless you really meant you have a team of people chipping away at the Windows machines ( and advocates ) with hammers to accelerate their loss of monetary value ? How would that decrease their value ?</tokentext>
<sentencetext>Unless you really meant you have a team of people chipping away at the Windows machines (and advocates) with hammers to accelerate their loss of monetary value?How would that decrease their value?
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400890</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400120</id>
	<title>Windows only exploit</title>
	<author>Anonymous</author>
	<datestamp>1268060640000</datestamp>
	<modclass>Insightful</modclass>
	<modscore>1</modscore>
	<htmltext><p>Only affects Windows, though.<br>I wonder how many big deployments of Apache+Windows are out there.</p></htmltext>
<tokenext>Only affects Windows , though.I wonder how many big deployments of Apache + Windows are out there .</tokentext>
<sentencetext>Only affects Windows, though.I wonder how many big deployments of Apache+Windows are out there.</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400958</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>Gadget\_Guy</author>
	<datestamp>1268065680000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>3</modscore>
	<htmltext><p><div class="quote"><p>However, in regards to MS (and we're close to being offtopic here) when was the last time you heard about an Apache vuln? Apache is relatively solid</p></div><p>Both Apache and IIS are pretty secure, although I have no idea why you would run Apache on a Windows server.</p><p><div class="quote"><p>My problems with MS, however, are philosophical. MS seems to revel in giving the finger to standards, from the backslash to everything else.</p></div><p>Oh dear, you didn't just claim that the forward slash was a standard, did you? MS-DOS 1 used the same conventions as CP/M and VMS for command line arguments: forward slash. When DOS 2.0 added directories, but they had to use backslash to prevent backwards compatibility problems. They couldn't use the Apple Mac's colon separator because they already used that for drive letters, and nobody wanted to be anything like VMS's square brackets []. (See, there really was no standard)</p><p>However, they did actually implement the paths using both / and \. You could change an environment variable to set the argument prefix. Then you could happily use "cd<nobr> <wbr></nobr>/DOS". Even today, both symbols work. You can try:</p><p> <tt>notepad c:\autoexec.bat<br>notepad c:/autoexec.bat</tt> </p><p>The only time where / doesn't work is when it may be interpreted as a command line option. So "cd<nobr> <wbr></nobr>/Windows" doesn't work, but "cd<nobr> <wbr></nobr>./Windows" does work. The point is that there was no standard for directory separators because every operating system did things their own way. And even if they did differ, there was a valid reason to do so. It was not just "giving the finger to standards". There are examples of them not using standards, like the Outlook-Exchange interface (although they probably would have had to extend the interface to get it to work using the standards so there may have been no point).</p><p>As for your DNS story, of course Windows can set the DNS manually. Don't ask me to tell you where you set it, because they keep moving around the network configuration with every version of Windows. That really pisses me off. Every upgrade of Windows since Windows for Workgroups 3.11 has made networking harder. I don't know why they have to keep fiddling!</p></div>
	</htmltext>
<tokenext>However , in regards to MS ( and we 're close to being offtopic here ) when was the last time you heard about an Apache vuln ?
Apache is relatively solidBoth Apache and IIS are pretty secure , although I have no idea why you would run Apache on a Windows server.My problems with MS , however , are philosophical .
MS seems to revel in giving the finger to standards , from the backslash to everything else.Oh dear , you did n't just claim that the forward slash was a standard , did you ?
MS-DOS 1 used the same conventions as CP/M and VMS for command line arguments : forward slash .
When DOS 2.0 added directories , but they had to use backslash to prevent backwards compatibility problems .
They could n't use the Apple Mac 's colon separator because they already used that for drive letters , and nobody wanted to be anything like VMS 's square brackets [ ] .
( See , there really was no standard ) However , they did actually implement the paths using both / and \ .
You could change an environment variable to set the argument prefix .
Then you could happily use " cd /DOS " .
Even today , both symbols work .
You can try : notepad c : \ autoexec.batnotepad c : /autoexec.bat The only time where / does n't work is when it may be interpreted as a command line option .
So " cd /Windows " does n't work , but " cd ./Windows " does work .
The point is that there was no standard for directory separators because every operating system did things their own way .
And even if they did differ , there was a valid reason to do so .
It was not just " giving the finger to standards " .
There are examples of them not using standards , like the Outlook-Exchange interface ( although they probably would have had to extend the interface to get it to work using the standards so there may have been no point ) .As for your DNS story , of course Windows can set the DNS manually .
Do n't ask me to tell you where you set it , because they keep moving around the network configuration with every version of Windows .
That really pisses me off .
Every upgrade of Windows since Windows for Workgroups 3.11 has made networking harder .
I do n't know why they have to keep fiddling !</tokentext>
<sentencetext>However, in regards to MS (and we're close to being offtopic here) when was the last time you heard about an Apache vuln?
Apache is relatively solidBoth Apache and IIS are pretty secure, although I have no idea why you would run Apache on a Windows server.My problems with MS, however, are philosophical.
MS seems to revel in giving the finger to standards, from the backslash to everything else.Oh dear, you didn't just claim that the forward slash was a standard, did you?
MS-DOS 1 used the same conventions as CP/M and VMS for command line arguments: forward slash.
When DOS 2.0 added directories, but they had to use backslash to prevent backwards compatibility problems.
They couldn't use the Apple Mac's colon separator because they already used that for drive letters, and nobody wanted to be anything like VMS's square brackets [].
(See, there really was no standard)However, they did actually implement the paths using both / and \.
You could change an environment variable to set the argument prefix.
Then you could happily use "cd /DOS".
Even today, both symbols work.
You can try: notepad c:\autoexec.batnotepad c:/autoexec.bat The only time where / doesn't work is when it may be interpreted as a command line option.
So "cd /Windows" doesn't work, but "cd ./Windows" does work.
The point is that there was no standard for directory separators because every operating system did things their own way.
And even if they did differ, there was a valid reason to do so.
It was not just "giving the finger to standards".
There are examples of them not using standards, like the Outlook-Exchange interface (although they probably would have had to extend the interface to get it to work using the standards so there may have been no point).As for your DNS story, of course Windows can set the DNS manually.
Don't ask me to tell you where you set it, because they keep moving around the network configuration with every version of Windows.
That really pisses me off.
Every upgrade of Windows since Windows for Workgroups 3.11 has made networking harder.
I don't know why they have to keep fiddling!
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400392</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403472</id>
	<title>Fault</title>
	<author>gd2shoe</author>
	<datestamp>1268077740000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p><nobr> <wbr></nobr></p><div class="quote"><p>.. but the vulnerability is entirely Apache's fault...</p></div><p>Probably not, actually. From the <a href="http://httpd.apache.org/docs/2.2/mod/mod\_isapi.html" title="apache.org">documentation:</a> [apache.org] </p><p><div class="quote"><p> <strong>Summary</strong> </p><p>This module implements the Internet Server extension API. It allows Internet Server extensions (e.g. ISAPI<nobr> <wbr></nobr>.dll modules) to be served by Apache for Windows, subject to the noted restrictions.</p><p>ISAPI extension modules (.dll files) are written by third parties. The Apache Group does not author these modules, so we provide no support for them. Please contact the ISAPI's author directly if you are experiencing problems running their ISAPI extension. <strong>Please <em>do not</em> post such problems to Apache's lists or bug reporting pages.</strong> </p></div><p>Emphasis <em>theirs</em>.</p></div>
	</htmltext>
<tokenext>.. but the vulnerability is entirely Apache 's fault...Probably not , actually .
From the documentation : [ apache.org ] Summary This module implements the Internet Server extension API .
It allows Internet Server extensions ( e.g .
ISAPI .dll modules ) to be served by Apache for Windows , subject to the noted restrictions.ISAPI extension modules ( .dll files ) are written by third parties .
The Apache Group does not author these modules , so we provide no support for them .
Please contact the ISAPI 's author directly if you are experiencing problems running their ISAPI extension .
Please do not post such problems to Apache 's lists or bug reporting pages .
Emphasis theirs .</tokentext>
<sentencetext> .. but the vulnerability is entirely Apache's fault...Probably not, actually.
From the documentation: [apache.org]  Summary This module implements the Internet Server extension API.
It allows Internet Server extensions (e.g.
ISAPI .dll modules) to be served by Apache for Windows, subject to the noted restrictions.ISAPI extension modules (.dll files) are written by third parties.
The Apache Group does not author these modules, so we provide no support for them.
Please contact the ISAPI's author directly if you are experiencing problems running their ISAPI extension.
Please do not post such problems to Apache's lists or bug reporting pages.
Emphasis theirs.
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400484</id>
	<title>Gain Complete Control</title>
	<author>Anonymous</author>
	<datestamp>1268063040000</datestamp>
	<modclass>Funny</modclass>
	<modscore>5</modscore>
	<htmltext><p>I would really like to make a shirt that says: "This T-shirt has a serious exploit that allows a remote attacker to gain complete control."<br>It should be printed around the bottom hem for maximum effect.<br>Could also work on tighty whiteys.</p><p>I said I'd like to make it, not wear it.<nobr> <wbr></nobr>:-)</p></htmltext>
<tokenext>I would really like to make a shirt that says : " This T-shirt has a serious exploit that allows a remote attacker to gain complete control .
" It should be printed around the bottom hem for maximum effect.Could also work on tighty whiteys.I said I 'd like to make it , not wear it .
: - )</tokentext>
<sentencetext>I would really like to make a shirt that says: "This T-shirt has a serious exploit that allows a remote attacker to gain complete control.
"It should be printed around the bottom hem for maximum effect.Could also work on tighty whiteys.I said I'd like to make it, not wear it.
:-)</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400362</id>
	<title>Re:Not Apache's problem</title>
	<author>LordSnooty</author>
	<datestamp>1268062200000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>Sure, vulnerable DLLs are not Apache's problem, but isn't the vuln here within the mod\_isapi module, which presumably is supplied by Apache?</htmltext>
<tokenext>Sure , vulnerable DLLs are not Apache 's problem , but is n't the vuln here within the mod \ _isapi module , which presumably is supplied by Apache ?</tokentext>
<sentencetext>Sure, vulnerable DLLs are not Apache's problem, but isn't the vuln here within the mod\_isapi module, which presumably is supplied by Apache?</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400258</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400912</id>
	<title>In any apps?</title>
	<author>jbeaupre</author>
	<datestamp>1268065440000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext>Dumb question, but are there any Windows apps that serve pages to a browser front end that might have borrowed the Apache code in question?</htmltext>
<tokenext>Dumb question , but are there any Windows apps that serve pages to a browser front end that might have borrowed the Apache code in question ?</tokentext>
<sentencetext>Dumb question, but are there any Windows apps that serve pages to a browser front end that might have borrowed the Apache code in question?</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400876</id>
	<title>Thanks, jackass.</title>
	<author>CAIMLAS</author>
	<datestamp>1268065320000</datestamp>
	<modclass>Funny</modclass>
	<modscore>2</modscore>
	<htmltext><p>Thanks, jackass. Just what I wanted on a Monday morning: to update a half dozen Internet-facing source-based systems. Of course, it was a false alarm: submitter was too much of a toolbag to mention it was Windows-only.</p><p>(And, it being a Monday morning, I didn't initially notice the mention of mod\_isapi. Of course.)</p></htmltext>
<tokenext>Thanks , jackass .
Just what I wanted on a Monday morning : to update a half dozen Internet-facing source-based systems .
Of course , it was a false alarm : submitter was too much of a toolbag to mention it was Windows-only .
( And , it being a Monday morning , I did n't initially notice the mention of mod \ _isapi .
Of course .
)</tokentext>
<sentencetext>Thanks, jackass.
Just what I wanted on a Monday morning: to update a half dozen Internet-facing source-based systems.
Of course, it was a false alarm: submitter was too much of a toolbag to mention it was Windows-only.
(And, it being a Monday morning, I didn't initially notice the mention of mod\_isapi.
Of course.
)</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401720</id>
	<title>Just on Windows - Whew!</title>
	<author>Anonymous</author>
	<datestamp>1268069700000</datestamp>
	<modclass>Troll</modclass>
	<modscore>-1</modscore>
	<htmltext><p>I was worried, up until it said it was exclusive to Windows! I knew there was a good reason I got off of Windows...</p></htmltext>
<tokenext>I was worried , up until it said it was exclusive to Windows !
I knew there was a good reason I got off of Windows.. .</tokentext>
<sentencetext>I was worried, up until it said it was exclusive to Windows!
I knew there was a good reason I got off of Windows...</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401018</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>1s44c</author>
	<datestamp>1268065980000</datestamp>
	<modclass>None</modclass>
	<modscore>1</modscore>
	<htmltext><p><div class="quote"><p>The same bug in a module that ran on Linux would result in a remote root exploit.</p></div><p>It would not. By default apache runs as root to bind port 80 and/or 443, then it changes to an unprivileged user.</p><p>Why on earth anyone would want to run apache on windows is beyond me but it seems people do.</p></div>
	</htmltext>
<tokenext>The same bug in a module that ran on Linux would result in a remote root exploit.It would not .
By default apache runs as root to bind port 80 and/or 443 , then it changes to an unprivileged user.Why on earth anyone would want to run apache on windows is beyond me but it seems people do .</tokentext>
<sentencetext>The same bug in a module that ran on Linux would result in a remote root exploit.It would not.
By default apache runs as root to bind port 80 and/or 443, then it changes to an unprivileged user.Why on earth anyone would want to run apache on windows is beyond me but it seems people do.
	</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403468</id>
	<title>Re:Note: Apache ON WINDOWS</title>
	<author>man\_of\_mr\_e</author>
	<datestamp>1268077740000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>2</modscore>
	<htmltext><p>IIS, since version 6, has had fewer vulnerabilities than Apache has, however, neither have been particularly holey.</p><p>Are you seriously about the backslash?  Microsoft actually WAS following the standard, the standard being CP/M.</p><p>As for your DNS problems, i've noticed on some firewalls, the IPv6 implementation seems to interfere with things on occasion.  If you disable IPv6, things will work.</p><p>As for manually setting them, it works exactly the same way it always has.</p></htmltext>
<tokenext>IIS , since version 6 , has had fewer vulnerabilities than Apache has , however , neither have been particularly holey.Are you seriously about the backslash ?
Microsoft actually WAS following the standard , the standard being CP/M.As for your DNS problems , i 've noticed on some firewalls , the IPv6 implementation seems to interfere with things on occasion .
If you disable IPv6 , things will work.As for manually setting them , it works exactly the same way it always has .</tokentext>
<sentencetext>IIS, since version 6, has had fewer vulnerabilities than Apache has, however, neither have been particularly holey.Are you seriously about the backslash?
Microsoft actually WAS following the standard, the standard being CP/M.As for your DNS problems, i've noticed on some firewalls, the IPv6 implementation seems to interfere with things on occasion.
If you disable IPv6, things will work.As for manually setting them, it works exactly the same way it always has.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400392</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400106</id>
	<title>Windows?</title>
	<author>jspenguin1</author>
	<datestamp>1268060520000</datestamp>
	<modclass>Insightful</modclass>
	<modscore>2</modscore>
	<htmltext><p>What percentage of Apache hosts run on Windows? I'd guess maybe 10\%, a generous estimate. This isn't something that's going to bring the entire web down. Also, wouldn't you have to enable mod\_isapi manually?</p></htmltext>
<tokenext>What percentage of Apache hosts run on Windows ?
I 'd guess maybe 10 \ % , a generous estimate .
This is n't something that 's going to bring the entire web down .
Also , would n't you have to enable mod \ _isapi manually ?</tokentext>
<sentencetext>What percentage of Apache hosts run on Windows?
I'd guess maybe 10\%, a generous estimate.
This isn't something that's going to bring the entire web down.
Also, wouldn't you have to enable mod\_isapi manually?</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400768</id>
	<title>Re:Update to 2.2.15</title>
	<author>Anonymous</author>
	<datestamp>1268064840000</datestamp>
	<modclass>None</modclass>
	<modscore>0</modscore>
	<htmltext><p>I'd figure that<br>&gt; net stop apache2<br>(or something similar) before updating should do the task.<br>Halt it, update it, then<br>&gt; net start apache2<br>should bring you back up?</p><p>I don't know for sure: I don't use Apache on Windows.</p></htmltext>
<tokenext>I 'd figure that &gt; net stop apache2 ( or something similar ) before updating should do the task.Halt it , update it , then &gt; net start apache2should bring you back up ? I do n't know for sure : I do n't use Apache on Windows .</tokentext>
<sentencetext>I'd figure that&gt; net stop apache2(or something similar) before updating should do the task.Halt it, update it, then&gt; net start apache2should bring you back up?I don't know for sure: I don't use Apache on Windows.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400216</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400646</id>
	<title>ISAPI = Lipstick on Ferrari</title>
	<author>Jonesy69</author>
	<datestamp>1268064120000</datestamp>
	<modclass>Informativ</modclass>
	<modscore>2</modscore>
	<htmltext><p>Play on words here...  Maybe its Lipstick on a pigs platform, as IIS SUCKS balls.</p><p>ISAPI == worthless in the context of using it for Apache.  Most of its 'features' are well implemented in Apache with no need for ISAPI unless you're running very specialized apps that make extensive use of ISAPI.</p><p>
Changing request data (URLs or headers) sent by the client # mod\_rewrite<br>
Controlling which physical file gets mapped to the URL # mod\_rewrite<br>
Controlling the user name and password used with anonymous or basic authentication #.htacess<br>
Modifying or analyzing a request after authentication is complete # mod\_rewrite<br>
Modifying a response going back to the client #mod\_rewrite<br>
Running custom processing on "access denied" responses #mod\_rewrite/mod\_redirect...<br>
Running processing when a request is complete # #/bin/bash-sh-perl-python-etc...<br>
Run processing when a connection with the client is closed # #/bin/bash-sh-perl-python-etc...<br>
Performing special logging or traffic analysis. # tcpdump/webalyzer<br>
Performing custom authentication.  #<nobr> <wbr></nobr>.htaccess/apache.conf/conf.d<br>
Handling encryption and compression.  # mod\_ssl/mod\_gzip</p></htmltext>
<tokenext>Play on words here... Maybe its Lipstick on a pigs platform , as IIS SUCKS balls.ISAPI = = worthless in the context of using it for Apache .
Most of its 'features ' are well implemented in Apache with no need for ISAPI unless you 're running very specialized apps that make extensive use of ISAPI .
Changing request data ( URLs or headers ) sent by the client # mod \ _rewrite Controlling which physical file gets mapped to the URL # mod \ _rewrite Controlling the user name and password used with anonymous or basic authentication # .htacess Modifying or analyzing a request after authentication is complete # mod \ _rewrite Modifying a response going back to the client # mod \ _rewrite Running custom processing on " access denied " responses # mod \ _rewrite/mod \ _redirect.. . Running processing when a request is complete # # /bin/bash-sh-perl-python-etc.. . Run processing when a connection with the client is closed # # /bin/bash-sh-perl-python-etc.. . Performing special logging or traffic analysis .
# tcpdump/webalyzer Performing custom authentication .
# .htaccess/apache.conf/conf.d Handling encryption and compression .
# mod \ _ssl/mod \ _gzip</tokentext>
<sentencetext>Play on words here...  Maybe its Lipstick on a pigs platform, as IIS SUCKS balls.ISAPI == worthless in the context of using it for Apache.
Most of its 'features' are well implemented in Apache with no need for ISAPI unless you're running very specialized apps that make extensive use of ISAPI.
Changing request data (URLs or headers) sent by the client # mod\_rewrite
Controlling which physical file gets mapped to the URL # mod\_rewrite
Controlling the user name and password used with anonymous or basic authentication #.htacess
Modifying or analyzing a request after authentication is complete # mod\_rewrite
Modifying a response going back to the client #mod\_rewrite
Running custom processing on "access denied" responses #mod\_rewrite/mod\_redirect...
Running processing when a request is complete # #/bin/bash-sh-perl-python-etc...
Run processing when a connection with the client is closed # #/bin/bash-sh-perl-python-etc...
Performing special logging or traffic analysis.
# tcpdump/webalyzer
Performing custom authentication.
# .htaccess/apache.conf/conf.d
Handling encryption and compression.
# mod\_ssl/mod\_gzip</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400454</id>
	<title>Always worried about reporting.</title>
	<author>Anonymous</author>
	<datestamp>1268062800000</datestamp>
	<modclass>Interestin</modclass>
	<modscore>3</modscore>
	<htmltext><p>At a place I used to work, one of my coworkers reported a simple potential security problem: the username for the admin account on all our machines is the same as the computer's name.  This just eliminates one less thing for a hacker to figure out.  He was accused of "snooping", whatever that means, and almost lost his job.  The only thing that saved him is a higher-up with a brain.</p><p>Whenever I hear a story about a person\firm reporting security risks, I am reminded of the story of my coworker, and I have heard too many similiar stories.  It has trained to me keep my mouth shut about these problems.</p></htmltext>
<tokenext>At a place I used to work , one of my coworkers reported a simple potential security problem : the username for the admin account on all our machines is the same as the computer 's name .
This just eliminates one less thing for a hacker to figure out .
He was accused of " snooping " , whatever that means , and almost lost his job .
The only thing that saved him is a higher-up with a brain.Whenever I hear a story about a person \ firm reporting security risks , I am reminded of the story of my coworker , and I have heard too many similiar stories .
It has trained to me keep my mouth shut about these problems .</tokentext>
<sentencetext>At a place I used to work, one of my coworkers reported a simple potential security problem: the username for the admin account on all our machines is the same as the computer's name.
This just eliminates one less thing for a hacker to figure out.
He was accused of "snooping", whatever that means, and almost lost his job.
The only thing that saved him is a higher-up with a brain.Whenever I hear a story about a person\firm reporting security risks, I am reminded of the story of my coworker, and I have heard too many similiar stories.
It has trained to me keep my mouth shut about these problems.</sentencetext>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31424442</id>
	<title>Re:Windows?</title>
	<author>Anonymous</author>
	<datestamp>1268220660000</datestamp>
	<modclass>None</modclass>
	<modscore>0</modscore>
	<htmltext><p>You've obviously never worked in a large organisation.</p></htmltext>
<tokenext>You 've obviously never worked in a large organisation .</tokentext>
<sentencetext>You've obviously never worked in a large organisation.</sentencetext>
	<parent>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400106</parent>
</comment>
<comment>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400920</id>
	<title>editor: Change the title, please</title>
	<author>short</author>
	<datestamp>1268065500000</datestamp>
	<modclass>Troll</modclass>
	<modscore>0</modscore>
	<htmltext>Do you chase web hits?  Who cares about Windows, moreover together with Apache httpd?</htmltext>
<tokenext>Do you chase web hits ?
Who cares about Windows , moreover together with Apache httpd ?</tokentext>
<sentencetext>Do you chase web hits?
Who cares about Windows, moreover together with Apache httpd?</sentencetext>
</comment>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_31</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31409090
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31405164
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400958
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400392
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_17</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400302
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400206
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_24</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400768
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400216
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_7</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31423348
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400120
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_14</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400418
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_34</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31406994
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400216
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_29</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400382
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_11</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401760
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400378
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_5</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400536
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_30</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31404084
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400372
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_28</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402508
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_32</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402498
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400392
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_18</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400658
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400216
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_2</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403798
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400454
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_23</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403468
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400392
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_15</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403754
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400206
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_9</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31411844
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401672
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_22</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400956
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400484
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_0</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401886
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400372
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_21</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31424442
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400106
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_12</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401226
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400890
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400378
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_6</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402242
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400484
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_8</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402002
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400550
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_13</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400496
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400258
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_27</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401770
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400372
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_20</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401132
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400454
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_3</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400346
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400258
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_10</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403472
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_33</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402268
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400838
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400550
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_19</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31404048
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400118
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_26</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403492
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400958
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400392
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_4</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400362
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400258
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_25</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402894
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_16</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402176
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400118
</commentlist>
</thread>
<thread>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#thread_10_03_08_1258200_1</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401018
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294
http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
</commentlist>
</thread>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.8</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400378
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401760
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400890
--http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401226
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.6</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400102
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400382
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400294
--http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401018
--http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400550
---http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402002
---http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400838
----http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402268
--http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402508
--http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400536
--http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403472
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402894
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400418
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400392
--http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400958
---http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403492
---http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31405164
----http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31409090
--http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403468
--http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402498
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.9</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401672
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31411844
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.11</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400120
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31423348
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.7</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400454
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401132
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403798
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.4</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400484
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400956
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402242
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.12</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400646
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.5</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400118
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31402176
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31404048
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.2</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400174
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.10</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400206
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400302
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403754
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.13</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31403590
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.0</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400216
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400768
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400658
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31406994
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.14</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400258
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400496
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400346
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400362
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.3</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400372
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401770
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31401886
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31404084
</commentlist>
</conversation>
<conversation>
	<id>http://www.semanticweb.org/ontologies/ConversationInstances.owl#conversation10_03_08_1258200.1</id>
	<commentlist>http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31400106
-http://www.semanticweb.org/ontologies/ConversationInstances.owl#comment10_03_08_1258200.31424442
</commentlist>
</conversation>
