Hello,
a webserver is under attack.
What's required is some kind of filtering software and a firewall that
could do the following:
pass only valid HTTP GET requests and block all other HTTP methods (PUT,
OPTIONS, CONNECT, etc.), possibly validate HTTP GET requests by matching to
local paths;
optionally disable HTTP 1.1 requests;
block excessively long URLs;
have an extensions whitelist/blacklist;
the firewall would have to have an option to auto-ban for flooding, and
restrict the simultaneous number of requests/connections from a single IP.
++++++++++++++++++++++++++++++++++++++++++++++++
Not far from here, by a white sun, behind a green star, lived the
Steelypips, illustrious, industrious, and they hadn't a care: no spats
in their vats, no rules, no schools, no gloom, no evil influence of the
moon, no trouble from matter or antimatter -- for they had a
machine, a dream of a machine, with springs and gears and perfect
in every respect. And they lived with it, and on it, and under it, and
inside it, for it was all they had -- first they saved up all their atoms,
then they put them all together, and if one didn't fit, why they
chipped at it a bit, and everything was just fine...
-- Stanislaw Lem, "Cyberiad"
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
