Quoth Guy Cohen: > Hello, > > I'm trying to discarded all those annoying windows unicode breakin attempts, > iptables -A INPUT -j REJECT -p tcp --dport 80 -m string --string "cmd.exe"
Since as of iptables v1.2.6a I can find no such match rule or option, I assume you have developed it yourself. If I am mistaken, please indicate which version of iptables you are using. > (timeout) the apache logs gets an entry like: > skript.kid.com - - [06/Aug/2002:14:02:04 +0300] "-" 408 - If so, you seem to be letting SOMETHING through - enough to form a TCP connection (i.e. SYN, SYN+ACK). Could you send tcodump? Marc ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
