> if I grep my logs for wget, I see tons of attempts. you should use mod_security then. It blocks off all those script kidz and worms. sure a clever person is able to circumvent that too, but most of such scans are made by kids and worms so just configure mod_security for apache :-)
regards, sk GroundZero Security Research and Software Development http://www.groundzero-security.com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/