httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "KoAps" <ko...@g3k.cc>
Subject Re: Blocking those IIS virus hits
Date Wed, 26 Jun 2002 18:06:54 GMT
Yup

Get a Cisco Router like a 2621 and Use it's Application Layer Based
Filtering to filter out cmd.exe, or winnt, or porn, or anything thing you
want it to match in a packet. It will never even reach the web server. You
could probably do it with a Firewall of some sort, but I think it's cleaner
and better to just do it at the Gateway and never have the packets even
enter in to your networks.

I did this exact thing to keep Code Red and Nimba out.

----------
-L8rs
KoAps

----- Original Message -----
From: "Sam Smith" <apachesam@itab.com>
To: <users@httpd.apache.org>
Sent: Wednesday, June 26, 2002 10:50 AM
Subject: Blocking those IIS virus hits


>
>
> Can anything be done to block these?
>
> 64.163.235.74 - - [17/May/2002:00:21:31 -0700] "GET
> /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 311
>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message