Re: iptables anti-nimda anyone?

From: Devdas Bhagat (devdas@worldgatein.net)
Date: 09/21/01

Previous message: Bjørn Ruberg: "Re: iptables anti-nimda anyone?"
In reply to: Konrad Michels: "iptables anti-nimda anyone?"
Next in thread: Hasnain Atique: "Re: iptables anti-nimda anyone?"
Next in thread: Sven Michels: "Re: iptables anti-nimda anyone?"
Reply: Hasnain Atique: "Re: iptables anti-nimda anyone?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Devdas Bhagat <devdas@worldgatein.net>
To: Konrad Michels <konrad@overnetdata.com>, focus-linux@securityfocus.com
Subject: Re: iptables anti-nimda anyone?
Date: Fri, 21 Sep 2001 14:03:39 +0530
Message-Id: <01092114044206.02609@office.interoffice>

On Wed, 19 Sep 2001, Konrad Michels spewed into the ether:
> Hi everyone
> I don't suppose one of our iptables gurus out there has an iptables rule
> to filter out this damn nimda thing? I'm really annoyed about it
> filling up my apache logz and would love to drop the packets 'ere they
> get to the apache server . . .
nimda makes legitimate http requests. You need a proxy (as an
application layer firewall) in front of your machine to deny those
requests.

Devdas Bhagat

--
Vegeterians beware!  You are what you eat.

Previous message: Bjørn Ruberg: "Re: iptables anti-nimda anyone?"
In reply to: Konrad Michels: "iptables anti-nimda anyone?"
Next in thread: Hasnain Atique: "Re: iptables anti-nimda anyone?"
Next in thread: Sven Michels: "Re: iptables anti-nimda anyone?"
Reply: Hasnain Atique: "Re: iptables anti-nimda anyone?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Blocking Code Red/Nimda with iptables?
... Sean Malone wrote: ... > Isn't there a way to block Code Red and/or Nimda using an iptables patch? ...
(comp.os.linux.security)
Re: Black Hole / Sink Hole Routing
... > helpfull to drop all packets that contain NIMDA, NACHI, etc ... > Is it possible to do the same action by using IPTABLES? ... You could mark the packets, then use iproute to route them to a dummy ...
(comp.os.linux.networking)
Re: Black Hole / Sink Hole Routing
... >> helpfull to drop all packets that contain NIMDA, NACHI, etc ... >> Is it possible to do the same action by using IPTABLES? ... > You could mark the packets, then use iproute to route them to a dummy ...
(comp.os.linux.networking)
Re: iptables anti-nimda anyone?
... Subject: iptables anti-nimda anyone? ... > I don't suppose one of our iptables gurus out there has an iptables rule ... > filling up my apache logz and would love to drop the packets 'ere they ... i'd love to set up a rule that automatically drops nimda ...
(Focus-Linux)
Re: NAT to a broadcast addess using iptables?
... iptables gurus are!) ... so you're looking for iptables gurus... ... broadcast or unicast address. ... So the input routing algorithm receives a packet with a broadcast destination address, but it won't forward such packets. ...
(comp.os.linux.networking)