Update of /export/home/ntop/ntop
In directory jabber:/tmp/cvs-serv11489
Modified Files:
globals.h http.c
Log Message:
Added enhancement to keep nasty guys away.
Everytime a bad URL is requested, ntop records the IP
address which originated the request. ntop will not
respond to future requests from there addresses. The
list of 'nasty addresses' is 3 elements long (elements
are shifted when a new IP is address).
This is not the ultimate solution but it avoid to see
multiple attempts from the same source as the ones below:
15/May/2002 02:51:31 [http.c:1006] ERROR: URL security:
'scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir' rejected
(code=2)(client=61.74.223.14)
15/May/2002 02:51:32 [http.c:877] URL security(2): ERROR: Found % in URL...rejecting
request
15/May/2002 02:51:32 [http.c:1006] ERROR: URL security:
'scripts/..%%35c../winnt/system32/cmd.exe?/c+dir' rejected
(code=2)(client=61.74.223.14)
15/May/2002 02:51:32 [http.c:901] URL security(3): ERROR: Found .. in URL...rejecting
request
15/May/2002 02:51:32 [http.c:1006] ERROR: URL security:
'scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir' rejected
(code=3)(client=61.74.223.14)
15/May/2002 02:51:33 [http.c:901] URL security(3): ERROR: Found .. in URL...rejecting
request
15/May/2002 02:51:33 [http.c:1006] ERROR: URL security:
'scripts/..%252f../winnt/system32/cmd.exe?/c+dir' rejected
(code=3)(client=61.74.223.14)
15/May/2002 05:02:24 [http.c:907] URL security(4): ERROR: Prohibited character(s) [ ]
in URL... rejecting request
_______________________________________________
Ntop-dev mailing list
[EMAIL PROTECTED]
http://listgateway.unipi.it/mailman/listinfo/ntop-dev
