> -----Original Message-----
> From: Tim [mailto:[EMAIL PROTECTED]]
> Sent: Monday, August 13, 2001 9:38 AM
> To: Mark Lo
> Cc: php general
> Subject: Re: [PHP] new one is it ??
>
>
> Boy that looks familiar...my (apache) logs are full of 'em.
>
> I wonder if we can make a PHP script called default.ida that
> sends back a big chunk of data and causes the worm to get a
> buffer overflow? :) :)
I rather liked this approach that I saw posted in another list:
http://www.klippan.seths.se/default.phps
(Does some hostname/whois lookups on the infected server and attempts to
email some people who might be able to do something about it.)
---
Mark Roedel | "Blessed is he who has learned to laugh
Systems Programmer | at himself, for he shall never cease
LeTourneau University | to be entertained."
Longview, Texas, USA | -- John Powell
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]