Bug#151711: marked as done (RFP: badurl -- Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit))

To: Moritz Muehlenhoff <jmm@inutil.org>
Cc: <wnpp@debian.org>
Subject: Bug#151711: marked as done (RFP: badurl -- Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit))
From: owner@bugs.debian.org (Debian Bug Tracking System)
Date: Tue, 31 Aug 2004 12:03:40 -0700
Message-id: <[🔎] handler.151711.D151711.109397838724548.ackdone@bugs.debian.org>
In-reply-to: <20040831185336.GB2211@informatik.uni-bremen.de>
References: <20040831185336.GB2211@informatik.uni-bremen.de> <Pine.GSO.4.40.0207021456580.20207-100000@mira.cc.umanitoba.ca>

Your message dated Tue, 31 Aug 2004 20:53:36 +0200
with message-id <20040831185336.GB2211@informatik.uni-bremen.de>
and subject line Closing outdated RFPs
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--------------------------------------
Received: (at submit) by bugs.debian.org; 2 Jul 2002 20:01:04 +0000
>From umdanie8@cc.umanitoba.ca Tue Jul 02 15:01:04 2002
Return-path: <umdanie8@cc.umanitoba.ca>
Received: from electra.cc.umanitoba.ca [130.179.16.23] 
	by master.debian.org with esmtp (Exim 3.12 1 (Debian))
	id 17PTpg-00072C-00; Tue, 02 Jul 2002 15:01:04 -0500
Received: from mira.cc.umanitoba.ca (umdanie8@mira.cc.umanitoba.ca [130.179.16.8])
	by electra.cc.umanitoba.ca (8.12.3/8.12.3) with ESMTP id g62K11oA027985
	for <submit@bugs.debian.org>; Tue, 2 Jul 2002 15:01:02 -0500 (CDT)
Received: (from umdanie8@localhost)
	by mira.cc.umanitoba.ca (8.12.0/8.12.0) id g62K11nw021026;
	Tue, 2 Jul 2002 15:01:01 -0500 (CDT)
Date: Tue, 2 Jul 2002 15:01:01 -0500 (CDT)
From: Drew Scott Daniels <umdanie8@cc.UManitoba.CA>
To: submit@bugs.debian.org
Subject: RFP: badurl -- Custom 403, 404's to slow CGI vulnerability scans
 (cgi tarpit)
Message-ID: <Pine.GSO.4.40.0207021456580.20207-100000@mira.cc.umanitoba.ca>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-DCC-UofM-Metrics: electra 1032; Body=1 Fuz1=1 Fuz2=1
Delivered-To: submit@bugs.debian.org

Subject: RFP: badurl -- Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit)
Package: wnpp
Version: N/A; reported 2002-07-02
Severity: wishlist

* Package name    : badurl
  Version         : 0.0.0-2000-11-08
  Upstream Author : hlein@progressive-comp.com
* URL             : http://www.theaimsgroup.com/~hlein/haqs/
* License         : GPL
  Description     : Custom 403, 404's to slow CGI vulnerability scans (cgi tarpit)

(Include the long description here.)
"badurl, a proof-of-concept perl script to be installed as a custom
403, 404 handler on webservers to DoS CGI-vulnerability-scanners and
annoy script kiddies. Contains anti-self-DoS code to prevent this
being used by an attacker to DoS the webserver. Should be run under
mod_perl and Apache::Registry, but will work as a regular perl script
as well."

For those who are interested, there are other security patches available
from this author. I would like to see most of them Debian (at least as
RFP's).

     Drew Daniels


---------------------------------------
Received: (at 151711-done) by bugs.debian.org; 31 Aug 2004 18:53:07 +0000
>From jmm@inutil.org Tue Aug 31 11:53:07 2004
Return-path: <jmm@inutil.org>
Received: from (vserver151.vserver151.serverflex.de) [193.22.164.111] 
	by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
	id 1C2Dkh-0006NP-00; Tue, 31 Aug 2004 11:53:07 -0700
Received: from pd9589a37.dip.t-dialin.net ([217.88.154.55] helo=legolas)
	by vserver151.vserver151.serverflex.de with asmtp (TLS-1.0:RSA_ARCFOUR_SHA:16)
	(Exim 4.34)
	id 1C2Dkg-0002P1-0V; Tue, 31 Aug 2004 20:53:06 +0200
Received: from jmm by legolas with local (Exim 4.34)
	id 1C2DlA-0000Zx-Hb; Tue, 31 Aug 2004 20:53:36 +0200
Date: Tue, 31 Aug 2004 20:53:36 +0200
To: 148855-done@bugs.debian.org, 151027-done@bugs.debian.org,
	151353-done@bugs.debian.org, 151711-done@bugs.debian.org,
	152506-done@bugs.debian.org
Message-ID: <20040831185336.GB2211@informatik.uni-bremen.de>
Mime-Version: 1.0
Content-Disposition: inline
User-Agent: Mutt/1.5.6+20040818i
From: Moritz Muehlenhoff <jmm@inutil.org>
X-SA-Exim-Connect-IP: 217.88.154.55
X-SA-Exim-Mail-From: jmm@inutil.org
Subject: Closing outdated RFPs
Content-Type: text/plain; charset=us-ascii
X-SA-Exim-Version: 4.0 (built Sat, 24 Apr 2004 12:31:30 +0200)
X-SA-Exim-Scanned: Yes (on vserver151.vserver151.serverflex.de)
Delivered-To: 151711-done@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2004_03_25 
	(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-2.5 required=4.0 tests=BAYES_00,SUSPICIOUS_RECIPS 
	autolearn=no version=2.60-bugs.debian.org_2004_03_25
X-Spam-Level: 
X-CrossAssassin-Score: 49

This RFP has been closed as it is very old and the requested program
isn't even under active maintenance since at least two years. If the
program is really important to you, please revive it upstream first.

Cheers,
        Moritz

Reply to:

Prev by Date: Bug#152506: marked as done (RFP: afd -- Automatic File Distributor)
Next by Date: Bug#151353: marked as done (RFP: gppp -- a PPP setup program.)
Previous by thread: Bug#152506: marked as done (RFP: afd -- Automatic File Distributor)
Next by thread: Bug#151353: marked as done (RFP: gppp -- a PPP setup program.)
Index(es):
- Date
- Thread