On Mon, 2008-09-22 at 09:15 +1000, Stephen Vaughan wrote: > Try modsecurity, it should block invalid URI > Speaking of which, shouldn't it be re-included in Debian now that the licensing issue[1] is supposed to be over[2]? 1. http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=352344 2. http://blog.modsecurity.org/2008/06/modsecurity-lic.html regards FF