I keep getting hit by a site which is probably infected with the Namda worm
or one of those others. I keep seeing connections in my httpd access_log
file, and judging from the requests, it seems to be probing for another
vunerable NT server to attack. I'd like to be able to just slam the door
in that particular IP address' face if possible. Is there anything in a
config file somewhere that can be used to tell Apache to just reject all
connections from a given address? Since it's not going through xinetd, the
hosts.allow file doesn't come in to play... :-)
--Dave
--
David Guntner GEnie: Just say NO!
http://www.akaMail.com/pgpkey/davidg or key server
for PGP Public key
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
