[thelist] speaking of security...

Ken Schaefer ken at adOpenStatic.com
Wed Aug 13 22:03:10 CDT 2003


You don't mention what Webserver software you are using, but most can be
configured to answer on an IP address+port+host-header combination...

Most of these worms will not be able to contact your webserver (well, it
won't reach any of your websites), since they are incapable of looking up
entries in the DNS.

Alterantively, install a firewall. Block requests to port 80 from non-local
(or non-trusted) addresses...

Cheers
Ken

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
From: "jsWalter" <jsWalter at torres.ws>
Subject: [thelist] speaking of security...


: Some amateur has been pounding my server for weeks now...
:
:     GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir
:
: Yes, I'm on a 2k box.
:
: No (thank you!) I'm not running IIS
:
: No, I don't have a scripts directory.
:
: He's calling from...
:
:   68.81.152.244
:   68.166.88.86
:   68.53.166.43
:   68.48.86.25
:   68.71.100.155
:   68.84.216.166
:   68.57.138.92
:
: How can I find out how owns these Blocks so I can slap his butt!
:
: Thanks
:
: Walter
:
: -- 
: * * Please support the community that supports you.  * *
: http://evolt.org/help_support_evolt/
:
: For unsubscribe and other options, including the Tip Harvester
: and archives of thelist go to: http://lists.evolt.org
: Workers of the Web, evolt !



More information about the thelist mailing list