On Wednesday 31 December 2003 12:03 CET Gerard Lled� wrote: > On 05:18 Wed 31 Dec , Aaron Walker wrote: > > 218.145.25.11 - - [28/Dec/2003:19:40:17 -0500] "GET > > /scripts/nsiislog.dll HTTP/1.0" 404 286 "-" "-" > > I have thousand of those messages, unfortunately, it's usual :(
Once upon a time I got really annoyed by the messages in my error log an put the following into .htaccess: | RewriteEngine on | RewriteRule ^scripts/ \ | http://%{REMOTE_ADDR}%{REQUEST_URI} [R=301,NC] | RewriteRule ^[c-z]/winnt/ \ | http://%{REMOTE_ADDR}%{REQUEST_URI} [R=301,NC] | RewriteRule ^_(vti|mem)_bin/ \ | http://%{REMOTE_ADDR}%{REQUEST_URI} [R=301,NC] | RewriteRule ^MS(Office|ADC)/ \ | http://%{REMOTE_ADDR}%{REQUEST_URI} [R=301,NC] | RewriteRule ^[a-z-]+/FormMail.(cgi|pl) \ | http://%{REMOTE_ADDR}%{REQUEST_URI} [R=301,NC] I guess those exploits don't really care where they're forwarded to, but if they do they will attack themself :) Cheers, Malte -- [SGT] Simon G. Tatham: "How to Report Bugs Effectively" <http://www.chiark.greenend.org.uk/~sgtatham/bugs.html> [ESR] Eric S. Raymond: "How To Ask Questions The Smart Way" <http://www.catb.org/~esr/faqs/smart-questions.html> -- [EMAIL PROTECTED] mailing list
