Bug#151711: RFP: badurl -- Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit)
Subject: RFP: badurl -- Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit)
Package: wnpp
Version: N/A; reported 2002-07-02
Severity: wishlist
* Package name : badurl
Version : 0.0.0-2000-11-08
Upstream Author : hlein@progressive-comp.com
* URL : http://www.theaimsgroup.com/~hlein/haqs/
* License : GPL
Description : Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit)
(Include the long description here.)
"badurl, a proof-of-concept perl script to be installed as a custom
403, 404 handler on webservers to DoS CGI-vulnerability-scanners and
annoy script kiddies. Contains anti-self-DoS code to prevent this
being used by an attacker to DoS the webserver. Should be run under
mod_perl and Apache::Registry, but will work as a regular perl script
as well."
For those who are interested, there are other security patches available
from this author. I would like to see most of them Debian (at least as
RFP's).
Drew Daniels
--
To UNSUBSCRIBE, email to debian-wnpp-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: