I have doubts that the viruses will follow the redirect. I prefer to to answer with a 400/403/406 (still will be logged) or 204 (No log entry).
I also have doubts that this is legal, so be carefull what you do. > -----Ursprüngliche Nachricht----- > Von: Cato, Christopher [mailto:[EMAIL PROTECTED]] > Gesendet: Donnerstag, 13. Juni 2002 13:38 > An: 'Tomcat Users List' > Betreff: RE: Security - Attack > > > You should do what I did. For Code Red and similar exploits, > create a bunch of mod_rewrite filters (in httpd.conf - for Apache) > that redirects all those requests to www.microsoft.com instead. > After all, they ARE responsible, aren't they? :) > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>