[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Trojan found on Linux server

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Trojan found on Linux server
From: Niek <niek@xxxxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 03 Jan 2006 00:09:48 +0100

On 1/2/2006 11:26 PM +0200, GroundZero Security wrote:

if I grep my logs for wget, I see tons of attempts.
you should use mod_security then.


I said 'attempts' :)

It blocks off all those script kidz and worms.
sure a clever person is able to circumvent that too, but
most of such scans are made by kids and worms so
just configure mod_security for apache :-)


Thanks for the tip though.

Regards,
Niek
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] Trojan found on Linux server
  - From: Gaddis, Jeremy L.
- Re: [Full-disclosure] Trojan found on Linux server
  - From: Niek
- Re: [Full-disclosure] Trojan found on Linux server
  - From: GroundZero Security

Prev by Date: Re: [Full-disclosure] Trojan found on Linux server
Next by Date: Re: [Full-disclosure] Antitoxin for "SQL Injection" (?)
Previous by thread: Re: [Full-disclosure] Trojan found on Linux server
Next by thread: [Full-disclosure] Re: Trojan found on Linux server
Index(es):
- Date
- Thread