durusmail: quixote-users: Rejecting requests when using Quixote+Medusa
Rejecting requests when using Quixote+Medusa
2003-12-15
Jim Dukarm
2003-12-17
A.M. Kuchling
2003-12-17
Jim Dukarm
2003-12-27
Greg Ward
2003-12-27
Jim Dukarm
Rejecting requests when using Quixote+Medusa
A.M. Kuchling
2003-12-17
On Sun, Dec 14, 2003 at 05:06:51PM -0800, Jim Dukarm wrote:
> at IIS weaknesses and common security lapses.  I want to discourage
> these idiotic attempts, and my latest effort is to try to "swallow"
> these requests and not respond to them.  I figure that no response at
> all will be more of a deterrent than a "page not found" response.

Most of those requests will be coming from worms running on infected
machines, and I doubt those worms are coded carefully enough to notice.  At
best the worm might be tied up for a short time waiting for the request to
time out, but if kids are writing multithreaded worms these days, even that
won't be true.

> Is this the right way to go about ignoring undesired requests?

Your approach certainly seems reasonable and looks correct.  You might want
to record it in the Wiki (www.quixote.ca/qx/).

--amk
reply