Zamezeni utoku na http

[Martin Tomasek]

On Tue, 21 May 2002 15:42:50 +0200, Martin Duda wrote:

> Ano to mate pravdu, ale pokud se nemylim tak tazatel se chtel zbavit
> hlasek v error_logu a toto je jedna z moznosti. Netvrdim ze nejlepsi.

vsak jo, ja vsechny ty requsty zase presmerovavam na jeden skript z
EarlyBirdu, takze mi to nejde do error logu, ale normalne do access logu.

ten EarlyBird mam trochu upraveny, takze hned nerozesila automaticky maily,
ale to uz je zase o necem jinem.

v principu tam staci dat misto toho early birdu libovolny nic nedelajici
skript.

kousek konfigurace apache:

AddHandler cgi-script .ida                                         
## early bird:                                                                  
ScriptAliasMatch ^/MSADC/root\.exe(.*) /var/www/default.ida$1                   
ScriptAliasMatch ^/MSADC/Admin\.dll(.*) /var/www/default.ida$1                  
ScriptAliasMatch ^/MSADC/httpodbc\.dll(.*) /var/www/default.ida$1               
ScriptAliasMatch ^/scripts/root\.exe(.*) /var/www/default.ida$1                 
ScriptAliasMatch ^/scripts/Admin\.dll(.*) /var/www/default.ida$1                
ScriptAliasMatch ^/scripts/httpodbc\.dll(.*) /var/www/default.ida$1             
ScriptAliasMatch ^/[cd]/winnt/system32/cmd\.exe(.*) /var/www/default.ida$1      
ScriptAliasMatch ^/[cd]/Admin\.dll(.*) /var/www/default.ida$1                   
ScriptAliasMatch ^/[cd]/httpodbc\.dll(.*) /var/www/default.ida$1                
ScriptAliasMatch ^/_mem_bin(/\.\..*) /var/www/default.ida$1                     
ScriptAliasMatch ^/_vti_bin(/\.\..*) /var/www/default.ida$1                     
ScriptAliasMatch ^/msadc(/\.\..*) /var/www/default.ida$1                        
ScriptAliasMatch ^/scripts(/\.\..*) /var/www/default.ida$1                      

-- 
Martin Tomasek, mtd na email.cz
BOFH excuse #404:
Sysadmin accidentally destroyed pager with a large hammer.