> My various web servers suffer regular attacks looking for exploits, the
> current one is looking for php, 100 odd URLs at a time including:
>
> GET //dbadmin/scripts/setup.php
> GET //phpMyAdmin-2.5.5-rc1/scripts/setup.php
> GET //mysqlmanager/scripts/setup.php
> GET /muieblackcat
>
> In my ICS web server, I was wondering what sort of creative response I
> could make to these requests, to annoy or slow down the hackers?
>
> I could leave the connection open without sending a response?
>
> Or send a vast amount of rubbish data in response?
>
> Any other suggestions?
Just delay the answer for a couple second, this will slow down the probing.
--
To unsubscribe or change your settings for TWSocket mailing list
please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket
Visit our website at http://www.overbyte.be
