Re: Attempts to POST to web server mail 'cgi's -- MIDRANGE-L

Subject: Re: Attempts to POST to web server mail 'cgi's
From: David Gibbs <david@xxxxxxxxxxxx>
Date: Fri, 16 Jul 2004 14:04:00 -0500
List-archive: <http://archive.midrange.com/midrange-l>
List-help: <mailto:midrange-l-request@midrange.com?subject=help>
List-id: Midrange Systems Technical Discussion <midrange-l.midrange.com>
List-post: <mailto:midrange-l@midrange.com>
List-subscribe: <http://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=subscribe>
List-unsubscribe: <http://lists.midrange.com/mailman/listinfo/midrange-l>, <mailto:midrange-l-request@midrange.com?subject=unsubscribe>

John Myers wrote:

Any suggestions on how to combat this? We can't ban POST transactions because our site has a lot of CGI scripts (none of them mail-related). I guess that we could ban specific POST requests at the firewall level.

Ignore 'em ... if you don't have the page they are looking for, they will just get a 404 error.

They are looking for specific form processors that they know how to exploit. Anything else they ignore.

david

This mailing list archive is Copyright 1997-2026 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.