how to deal with possible exploit in Apache