On Wed, Mar 12, 2008 at 07:55:36AM +0900, Wilson Bilkovich wrote:
[snip]
> The securityfocus link above appears to say that ONLY DOS-like systems
> are affected, not the reverse, as you indicate.
> Am I reading it incorrectly?
 
No, it was my mistake. The application that tripped the Nessus alarm used to
be hosted by Webrick but is now hosted by what turns out to be a vulnerable
version of Mongrel. Upgrading the Mongrel fixes the issue.

-- 
Jos Backus
jos at catnook.com