Security Basics mailing list archives
Re: Apache attacks
From: miguel.dilaj () pharma novartis com
Date: Mon, 31 Jan 2005 12:42:08 +0100
Hi Kenny,
Other than the useful answers you got so far regarding checking your
machine to detect if the xploit was successful or not, I think that no one
answered your question about detection and proactive approach.
You can investigate Snort (www.snort.org) as the NIDS part, and some of
their add-ons (same site) for the proactive side.
Cheers,
Miguel Dilaj (Nekromancer)
Vice-President of IT Security Research, OISSG
Kenny <kenny () codez co uk>
26/01/2005 20:56
To: security-basics () securityfocus com
cc: (bcc: Miguel Dilaj/PH/Novartis)
Subject: Apache attacks
{snip}
Also, has anyone got any scripts that can detect attacks against apache
and ban the ip for a period of time?
{snip}
Current thread:
- Apache attacks Kenny (Jan 27)
- Re: Apache attacks Bernie Johnson (Jan 27)
- Re: Apache attacks Micheal Cottingham (Jan 28)
- Re: Apache attacks bernie (Jan 28)
- Re: Apache attacks KillKenny (Jan 28)
- Re: Apache attacks Dan Margolis (Jan 28)
- Re: Apache attacks Ty Bodell (Jan 31)
- <Possible follow-ups>
- Re: Apache attacks miguel . dilaj (Jan 31)
- Re: Apache attacks Bernie Johnson (Jan 27)