in reply to How can I stop webdav exploits from hitting my server?
There is no way for mod_perl or CGI to prevent those requests from reaching the server - by the time they are recognised as being attacks, they have already reached the server.
You could write a simple module that would throw away the requests before Apache logged them. But that would just be hiding, not solving the problem.
You could use iptables or similar built-in firewall to block any requests from the "attacking" IP - but with time that could mean you will have to administer a growing list of IPs that were blocked due to various attacks.
Your best bet is to use the whois information to get the contact info for the system's caretaker (or their provider) and write to them, asking them to take appropriate steps to stop the scanning.
|
---|
Replies are listed 'Best First'. | |
---|---|
Re: Re: How can I stop webdav exploits from hitting my server?
by hsinclai (Deacon) on May 19, 2004 at 01:53 UTC |
In Section
Seekers of Perl Wisdom