Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Trojan found on Linux server
From: Niek <niek () asbak coding-slaves com>
Date: Tue, 03 Jan 2006 00:09:48 +0100

On 1/2/2006 11:26 PM +0200, GroundZero Security wrote:
if I grep my logs for wget, I see tons of attempts.

you should use mod_security then.

I said 'attempts' :)

It blocks off all those script kidz and worms.
sure a clever person is able to circumvent that too, but
most of such scans are made by kids and worms so
just configure mod_security for apache :-)

Thanks for the tip though.

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]