------------ Jim Dukarm: -----------------
>> at IIS weaknesses and common security lapses.  I want to discourage
>> these idiotic attempts, and my latest effort is to try to "swallow"
>> these requests and not respond to them.  I figure that no response at
>> all will be more of a deterrent than a "page not found" response.

------------ A.M. Kuchling: -----------------
> Most of those requests will be coming from worms running on infected
> machines, and I doubt those worms are coded carefully enough to notice.

Yes, an ISP I talked to pointed out that most of this activity is
driven by worms. My first attempt at dealing with this problem was to
respond with a redirect to www.yahoo.com after a 10-second delay, but
this actually seemed to stimulate some of the "scanning" computers to
try more often. Maybe not responding at all will cause them to go away.

------------ Jim Dukarm: -----------------
>> Is this the right way to go about ignoring undesired requests?

------------ A.M. Kuchling: -----------------
> Your approach certainly seems reasonable and looks correct.  You might want
> to record it in the Wiki (www.quixote.ca/qx/).

After a couple of days of operation, quite a few bad requests have
been rejected, and normal operations have not been affected, so I
guess it works. I will go ahead and post it.

Thanks for the comments.

Jim Dukarm
DELTA-X RESEARCH
Victoria BC Canada