|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: httpd log format - access_log filled with crap
From: Sean Brown (sblinux
shaw.ca)
Date: Sun Feb 06 2005 - 17:07:53 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On February 6, 2005 3:34 pm, J Moore wrote:
> On Thu, Feb 03, 2005 at 03:17:43PM -0500, the unit calling itself Daniel
Ouellet wrote:
> > Ben Goren wrote:
> > >>RewriteRule (.*)cmd.exe(.*)$ http://%{REMOTE_ADDR}/ [L,E=nolog:1]
> > >
> > >I've seen some variations on this theme, where the attacker gets
> > >redirected not back to himself but to Microsoft or Symmantec or various
> > >government agencies. Food for thought.
> >
> > Yes and you can do it, but I just consider it border line ethical.
> >
> > I will sure not tell you not to do it however should you fell the urge
> > to do so.
> >
> > You can even send them to the homeland security if you fell you want
> > them to get a quick face change! (:>
> >
> > But sending it back to them was more ethical to me.
> >
> > It is all relative on your point of view!
>
> Daniel, thanks! Using mod-rewrite to send these pesky script kiddies to
> fbi.gov (or equivalent) was suggested some time ago, but yours is the
> first "how-to" I've seen... cool!
>
> As to the ethics, at least here in the USA I don't see an ethics
> conflict at all. Stopping this sort of shit is part of the Government's
> charter... check out the DHS and FBI "mission statements". Even the Dept
> of Commerce has a responsibility to stop business fraud. In my opinion,
> these agencies should appreciate the citizen taxpayers reporting
> attempts to compromise privately-owned assets.
Reporting it perhaps, routing the attack to them however is something I doubt
they would appreciate. All it does is waste your bandwidth and occupy your
system.
Of course that is my opinion, and I am not a US taxpayer. I do see it as
unethical. There are probably many people that agree with one opinion or
another. I am wondering though if this discussion is really on topic for the
list.
>
> The above of course is my point of view, and pertains only to my
> situation inasmuch as I am a US citizen and taxpayer, and would _LOVE_
> to see Congressional hearings on what FBI/DHS/DoC do with their massive
> budgets that is relevant to "average Joe". In other words, if they don't
> like my redirects, then they should use their immense powers to police
> up these script kiddies, and give them public spankings... wooo-hooo!
>
> Power to the People, Baby!
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]