Re: apache - bots

To: Robert Ruzbacky <robr@mikka.net.au>, Debian Security <debian-security@lists.debian.org>
Subject: Re: apache - bots
From: Vinai Kopp <vinai@home-in-the.net>
Date: Tue, 04 Dec 2001 13:46:07 +0100
Message-id: <[🔎] 45010000.1007469967@bi152>
In-reply-to: <[🔎] 3C0DA1CE.F11F9B60@mikka.net.au>
References: <[🔎] 3C0DA1CE.F11F9B60@mikka.net.au>

I created a php 404 Error page, where I list the fingerprints of the wormsI know.If I find one of them is causing the request, I let the script simply dieso I don't waste any more bandwidth then neccessary on these anoyingcreatures.

I thought about blocking IP's involved but the sources of the requestschange too often.


HTH,

Vinai

--On Dienstag, Dezember 04, 2001 23:25:50 -0500 Robert Ruzbacky<robr@mikka.net.au> wrote:

Is there any docs / FAQs on apache  re: stopping bots accessing it.  At
the moment, one of the worms keeps trying to access
/winnt/system32/cmd.exe even though it doesn't exist on debian (or
unixfor that matter).

I suppose it's a waste of bandwidth as it keeps cropping up every few
minutes..other than that, it doesn't seem to affect the system.

Robert..



--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact
listmaster@lists.debian.org

Reply to:

References:
- apache - bots
  - From: Robert Ruzbacky <robr@mikka.net.au>

Prev by Date: Re: Squid security
Next by Date: RE: Squid security
Previous by thread: apache - bots
Next by thread: Re: apache - bots
Index(es):
- Date
- Thread