Question about codered worm
Andrew Bartlett
abartlet at pcug.org.au
Fri Aug 17 08:00:46 EST 2001
Mark Purcell wrote:
>
> On Thu, Aug 16, 2001 at 01:34:16AM +1000, Drake Diedrich wrote:
> > Alternatively, there's the Vigilante project:
> > http://www.dynwebdev.com/codered/ I have to admit being tempted, but I'm not
> > running Java just to do this, and who can be bothered going to court to save
> > the Internet.
>
> What about adding something like this to your Apache config:
>
> # Redirect allows you to tell clients about documents which used to exist in
> # Format: Redirect fakename url
> RedirectMatch /default.ida* http://www.dasbistro.com/default.ida
>
> Mark
Just remember that CodeRed doens't follow redirects, it just sets up a
connection and shoves the expoit down the pipe. If it was intelligent
enough to do that it would also check the server banner first...
Andrew Bartlett
--
Andrew Bartlett
abartlet at pcug.org.au
abartlet at samba.org
More information about the linux
mailing list