[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: nimda
i used the same on my servers worked wonders!, although used the first
line only.
On Sat, 22 Sep 2001, Joseph Begumisa wrote:
> I got this off the isp-linux list. It apparently seems to work.
> It causes the infected machine to be redirected back upon itself. In the
> past hour i have seen the attacks reduced to almost none.
>
> RedirectMatch (.*)\cmd.exe$ http://127.0.0.1
> RedirectMatch (.*)\default.ida$ http://127.0.0.1
> RedirectMatch (.*)\root.exe$ http://127.0.0.1
>
> Stick it in the server directory container in httpd.conf/apache.conf
> Restart apache
>
>
> Joseph.
>
>
>
>
>
>
>
> -----
> This is the afnog mailing list, managed by Majordomo 1.94.4
>
> To send a message to this list, e-mail afnog at afnog.org
> To send a request to majordomo, e-mail majordomo at afnog.org and put
> your request in the body of the message (i.e use "help" for help)
>
> This list is maintained by owner-afnog at afnog.org
>
-----
This is the afnog mailing list, managed by Majordomo 1.94.4
To send a message to this list, e-mail afnog at afnog.org
To send a request to majordomo, e-mail majordomo at afnog.org and put
your request in the body of the message (i.e use "help" for help)
This list is maintained by owner-afnog at afnog.org
- References:
- nimda
- From: Joseph Begumisa <begj at eahd.or.ug>