How about configuring Apache to disregard (and not log) any URL longer than a predefined length? Also, what are "those long url attacks", I haven't heard of them.
--As for the rest, it is mine.
I'll have to look into that 'disregard and not log' setup, sounds like it could be fun...
A long url attack is just a buffer overflow attack. The attacker (or, more commonly, the attacker's bot) sends a request for some huge length that some webservers can't handle, with the end set to some specific binary data, which is supposed to go straight into memory (since the vulnerable webservers just keep writing past their url buffer).
Daniel T. Staal
--------------------------------------------------------------- This email copyright the author. Unless otherwise noted, you are expressly allowed to retransmit, quote, or otherwise use the contents for non-commercial purposes. This copyright will expire 5 years after the author's death, or in 30 years, whichever is longer, unless such a period is in excess of local copyright law. ---------------------------------------------------------------
