| Author |
Message |
diabolic.bg
Joined: 30 Nov 2008
Posts: 30
Location: Bulgaria |
|
 A new idea... |
 |
I have a new idea. Can you add some string who can redirect attack vs. attackers host as it made my htaccess?
 |
 |
# Send the attacker BACK to its originating server's IP address.
RewriteRule (.*) ^http://%{REMOTE_ADDR}/$ [R=301,L] |
As say Bulgarian people "with his stones on his head".
P.S. And another (optional) - if it possible, you can add attack counter who place serial number in killed log test for the day. Will be interesting to know many how attacks are stopped per day. 
_________________
Fallout Vault BG | Vault Tec RSS News |
|
| Mon Dec 29, 2008 6:55 am |
   |
|
zaphod
Site Admin
Joined: 28 Jan 2008
Posts: 75
|
|
| |
|
Question is, do we want to send them back? How about send them on to the site we know is allready pwned (where the file includes come from.)
I dunno, could make a mess. Let me think on it.
And the serial counter was allready in the works, but it will be a unique ID #. Not reset every day (For a future log analyser's sake perhaps, but more now for ease of coding).
Zap 
|
|
| Tue Dec 30, 2008 4:50 am |
|
|
diabolic.bg
Joined: 30 Nov 2008
Posts: 30
Location: Bulgaria |
|
| |
|
 |
|
Question is, do we want to send them back? How about send them on to the site we know is allready pwned (where the file includes come from.)
I dunno, could make a mess. Let me think on it. |
Maybe we must think about another "blaster" - some of sort reverse hit. The bad boy must be punish. 
|
|
And the serial counter was allready in the works, but it will be a unique ID #. Not reset every day (For a future log analyser's sake perhaps, but more now for ease of coding).
Zap |
This is not small for now. The all time in the world is ours.
_________________
Fallout Vault BG | Vault Tec RSS News |
|
| Tue Dec 30, 2008 5:11 am |
|
|
zaphod
Site Admin
Joined: 28 Jan 2008
Posts: 75
|
|
| Maybe I'll give users that option... |
|
Then again, maybe I won't.
Sending the EICAR test file back to the remote file include attackers sure is tempting. It really slowed down my attacks for awhile.
But damnit, some punk could take the script and put a real virus in it, and screw up people.
OH it is SO tempting! But I better not.
Zap. 
|
|
| Tue Dec 30, 2008 7:47 am |
|
|
diabolic.bg
Joined: 30 Nov 2008
Posts: 30
Location: Bulgaria |
|
| |
|
|
|
And the serial counter was allready in the works, but it will be a unique ID #. Not reset every day (For a future log analyser's sake perhaps, but more now for ease of coding). |
The day counter can be simple and can be synchronized with local server time, and will reset in 00:00:01 AM. I'm not sure in it but this is only an idea.
_________________
Fallout Vault BG | Vault Tec RSS News |
|
| Tue Dec 30, 2008 9:27 am |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
|
