Craig Jansen wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Mon, 06 Aug 2001 19:10, you wrote:
>
>
>>I seem to be getting a kind of web exploit in my server. I have noticed
>>this in error_log since two days ago (I'll past just a little bit of the
>>file, of course):
>>What do you recommend me to do? Just ignore it, and go on with my life? :).
>>
>
> See the "Red Worm" thread in the Archives of the mailing list or if you have
> them in your Inbox.
MY bad!
I posted the message BEFORE I read all the seawolf messages from 3 days
ago. Results? Well, it was obviously a very already-commented issue.
Sorry for repeating.
Anyway, getting back to my original question.
What do all of you do about it? Block the IPs? Call the cops? Cry? Just
erase excesive long logs? Any other suggestion? :). I'll go for the
ignore one, I think... as long as my 2 gb /var partition doesn't get
full ;).
Thanks for your response.
Alex.
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
