Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Oden Eriksson (oden.erikssonkvikkjokk.net)
Date: Wed Oct 03 2001 - 21:09:11 CDT
torsdagen den 4 oktober 2001 03.59 skrev Tzafrir Cohen:
> On Thu, 4 Oct 2001, Oden Eriksson wrote:
> > torsdagen den 4 oktober 2001 02.07 skrev Vincent Danen:
> > > On Thu Oct 04, 2001 at 01:33:17AM +0200, Tzafrir Cohen wrote:
> > > > > 2 questions:
> > > > >
> > > > > 1. How do you try to exploit apache?
> > > >
> > > > See the link that Vincent gave earlier:
> > > > http://www.securityfocus.com/cgi-bin/vulns-item.pl?section=info&id=25
> > > >03
> > > >
> > > > In the "Exploits" sections there are 3 scripts.
> > He he, this was quite funny! my access_log fills up with slashes :)
> Even longer than code red's ...
> Actually, the program I use for statistics (webalizer) was quite annoyed
> of those (claimed they were illegal entries) so I had to remove them :(
Yes I know it's really picky.
I would like to see a modified log module that automatically could block this
shit via ipchains/iptables based on snort rules or something.
-- Oden Eriksson, Jokkmokk, Sweden LM8.1, 2.4.10-1mdksmp, 1:14