Jim McNeely <mailto:[EMAIL PROTECTED]> on Thursday, July 24, 2003 1:57 PM said:
> If you have to move to Windows, at least use Apache. I note in my > server access logs on my Windows test machine that people are trying > to hack in every day and I have a very obscure site just to test my > own clients' web apps. It always looks like some kind of super long > url trying to do some kind of vbscript or something. Most likely no one is specifically targeting your machine. Everyone gets these requests every day. What's happening is that lots of IIS computers are still infected with Nimda, Code Red, and SQL Server worms. Those computers have programs on them that send out their mailicious URL's to random IP addresses in hopes that one of those IP addresses will be home to an unpatched IIS server. If you ever use IIS you can get a tool (free) from MS called URLScan. It's sort of like mod_rewrite in that it rejects all those strange requests before they even get to IIS. Good tool. It's meant to only allow well formed, valid http requests. hth, Chris. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
