I think it makes sense to filter these out. They're easy to identify by looking for the .exe extension. I think its less demanding on the server to do a redirect than it is to display an error page and write an entry to the log file. Why should I let my log files fill up w/ garbage? And what better place to redirect them to than M$?
Mike -----Original Message----- From: Cato, Christopher [mailto:[EMAIL PROTECTED]] Sent: Thursday, June 13, 2002 9:11 AM To: 'Tomcat Users List' Subject: RE: Security - Attack a simple purpose - since it's my home machine, i did it just for fun. Since M$ allowed Code Red and similar viruses to thrive on Windows systems, while saying that "Windows is perfectly secure", why not try a redirect to their systems. At least I got a laugh out of it. christopher - a bored guy. > -----Original Message----- > From: Tim Funk [mailto:[EMAIL PROTECTED]] > Sent: den 13 juni 2002 15:04 > To: Tomcat Users List > Subject: Re: Security - Attack > > > Warning: this may start flame war - but its my opinion. > > What is the purpose of detecting and trying to prevent these > attacks? If > someone code reds (or similar) you - they get a 404 error. > Why waste the > extra processing power and extra config maintenance on > something that > does "no harm". When the next type of attack comes out - should the > config be changed to address that? Its a waste of time. > > -Tim > > Jim Urban wrote: > >>create a bunch of mod_rewrite filters (in httpd.conf - for > Apache) that > > > > redirects > > > >>all those requests to www.microsoft.com > > > > Can you provide an example? > > > > Jim > > > > > -- > To unsubscribe, e-mail: > <mailto:[EMAIL PROTECTED]> > For additional commands, e-mail: > <mailto:[EMAIL PROTECTED]> > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
