Date: Thu, 20 Sep 2001 10:46:41 +1200 From: rshea@opendoor.co.nz To: security@FreeBSD.ORG Cc: brett@lariat.org Subject: Re: NIMDA Virus Message-ID: <3BA9C911.18530.49BAA5C@localhost>
next in thread | raw e-mail | index | archive | help
> We just put a log monitor on the Apache server, and are firewalling > anything that sends a request with "cmd.exe" in it. Quite effective. I'd like to do this too. I use IPFW. Can anyone point me at a 'how-to' ? I thought IPFW rules could only be based on IP address or service type ? thanks richard shea. ***************************************************** Open Door Ltd PO Box 119-46 Wellington, NZ PH +64 4 384 7639 FX +64 4 384 7672 ***************************************************** To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3BA9C911.18530.49BAA5C>