Re: access_log?

Subject: Re: access_log?
From: Nathan A. McQuillen (nm@steaky.dhs.org)
Date: Wed Jan 23 2002 - 13:21:31 MST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Timothy A. Seufert: "Re: Darwin-->Linux, Linux-->Darwin"
• Previous message: Shawn Dunn: "Re: access_log?"
• In reply to: Shawn Dunn: "Re: access_log?"
• Next in thread: Jon: "Re: access_log?"
• Reply: Nathan A. McQuillen: "Re: access_log?"

I built a little script that grabs nimda/codered requests and adds a deny
rule for those hosts. It's everything but elegant, but works for me. Of
course, it also makes darn sure that nobody running an infected host can
see your machine, which rules out half the cable modem users in north
america... ;) It's a variant on the good old default.ida as php log script
trick, so requires adding a bit to your apache conf script and all that.

anyhow. write to me at nm@steaky.dhs.org if you want the code etc.

- n2

• Next message: Timothy A. Seufert: "Re: Darwin-->Linux, Linux-->Darwin"
• Previous message: Shawn Dunn: "Re: access_log?"
• In reply to: Shawn Dunn: "Re: access_log?"
• Next in thread: Jon: "Re: access_log?"
• Reply: Nathan A. McQuillen: "Re: access_log?"

This archive was generated by hypermail 2a24 : Wed Jan 23 2002 - 13:35:56 MST