Helpful Apache Tip
Warren Togami
warren at togami.com
Thu Sep 27 21:47:12 PDT 2001
Slashdot Poster http://slashdot.org/~rayvd/
If you run Apache and hate looking at the hundreds of annoying attacks by
the Code Red and Nimda worms, try adding these to your httpd.conf:
SetEnvIf Request_URI "^/default.ida" attacks # For Code Red
SetEnvIf Request_URI "^/scripts" attacks # For nimda
SetEnvIf Request_URI "^/c/winnt" attacks # ... ditto all the way down
SetEnvIf Request_URI "^/_mem_bin" attacks
SetEnvIf Request_URI "^/_vti_bin" attacks
SetEnvIf Request_URI "^/MSADC" attacks
SetEnvIf Request_URI "^/msadc" attacks
SetEnvIf Request_URI "^/d/winnt" attacks
CustomLog /var/log/access_log combined env=!attacks
CustomLog /var/log/attack_log combined env=attacks
This will dump all the "attacks" into a file called attack_log and leave
your normal logfile clutter free.
More information about the LUAU
mailing list