Bug#151711: RFP: badurl -- Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit)

To: submit@bugs.debian.org
Subject: Bug#151711: RFP: badurl -- Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit)
From: Drew Scott Daniels <umdanie8@cc.UManitoba.CA>
Date: Tue, 2 Jul 2002 15:01:01 -0500 (CDT)
Message-id: <[🔎] Pine.GSO.4.40.0207021456580.20207-100000@mira.cc.umanitoba.ca>
Reply-to: Drew Scott Daniels <umdanie8@cc.UManitoba.CA>, 151711@bugs.debian.org

Subject: RFP: badurl -- Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit)
Package: wnpp
Version: N/A; reported 2002-07-02
Severity: wishlist

* Package name    : badurl
  Version         : 0.0.0-2000-11-08
  Upstream Author : hlein@progressive-comp.com
* URL             : http://www.theaimsgroup.com/~hlein/haqs/
* License         : GPL
  Description     : Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit)

(Include the long description here.)
"badurl, a proof-of-concept perl script to be installed as a custom
403, 404 handler on webservers to DoS CGI-vulnerability-scanners and
annoy script kiddies. Contains anti-self-DoS code to prevent this
being used by an attacker to DoS the webserver. Should be run under
mod_perl and Apache::Registry, but will work as a regular perl script
as well."

For those who are interested, there are other security patches available
from this author. I would like to see most of them Debian (at least as
RFP's).

     Drew Daniels



-- 
To UNSUBSCRIBE, email to debian-wnpp-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Prev by Date: Processed: ITP: libapache-mod-acct -- Accounting module for Apache
Next by Date: Bug#79131: Is anyone packaging this?
Previous by thread: Processed: ITP: libapache-mod-acct -- Accounting module for Apache
Next by thread: Bug#79131: Is anyone packaging this?
Index(es):
- Date
- Thread