![Apache Today [Your Apache News Source]](/pics/at_logo.png) 
 
| Apache Project |
| PHP Server Side Scripting |
| The Java Apache Project |
| Apache-Related Projects |
| The Apache Software Foundation |
| Apache XML Project |
| Apache Module Registry |
| The Apache FAQ |
| The Jakarta Project |
| Apache-Perl Integration Project |
| ApacheCon |
|
|
| |
internet.com
Internet News
Internet Investing
Internet Technology
Windows Internet Tech.
Linux/Open Source
Web Developer
ECommerce/Marketing
ISP Resources
ASP Resources
Wireless Internet
Downloads
Internet Resources
Internet Lists
International
EarthWeb
Career Resources
Search internet.com
Advertising Info
Corporate Info
|
|
ONLamp: Apache::CodeRed
Aug 17, 2001, 17 :19 UTC (1 Talkback[s]) (3699 reads) (Other stories by Reuven M. Lerner)
|
"My own server wasn't vulnerable to these attacks, because it runs Apache and Linux. But Code Red 2 didn't check a server's identity when launching an attack; it sent the dangerous HTTP request to anyone who would listen, betting on the large number of IIS servers on the Internet. While I didn't have to worry about infection, I felt like I should do something to let people know that their computers had been infected.
My solution was to write a small module for mod_perl, originally called "CodeRed" and eventually renamed Apache::CodeRed. The module's job is to intercept any request for /default.ida, determine the host name of the HTTP client, and send a warning e-mail message to the administrator of that client."
Complete Story
|
|
