tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ralph Einfeldt" <ralph.einfe...@uptime-isc.de>
Subject AW: Security - Attack
Date Thu, 13 Jun 2002 12:00:51 GMT
I have doubts that the viruses will follow the redirect.

I prefer to to answer with a 400/403/406 (still will be logged)
or 204 (No log entry).

I also have doubts that this is legal, so be carefull what you do.

> -----Urspr√ľngliche Nachricht-----
> Von: Cato, Christopher [mailto:ccato@rational.com]
> Gesendet: Donnerstag, 13. Juni 2002 13:38
> An: 'Tomcat Users List'
> Betreff: RE: Security - Attack
> 
> 
> You should do what I did. For Code Red and similar exploits, 
> create a bunch of mod_rewrite filters (in httpd.conf - for Apache) 
> that redirects all those requests to www.microsoft.com instead. 
> After all, they ARE responsible, aren't they? :)
> 

--
To unsubscribe, e-mail:   <mailto:tomcat-user-unsubscribe@jakarta.apache.org>
For additional commands, e-mail: <mailto:tomcat-user-help@jakarta.apache.org>


Mime
View raw message