pgowder
09-24-2001, 03:09 PM
On all the virtual hosts on my raq are thousands of requests for cmd.exe. Is this part of Nimda?
Any idea how to stop it?
Anybody else seeing this?
Any idea how to stop it?
Anybody else seeing this?
 | View Full Version : cmd.exe ffeingol 09-24-2001, 03:13 PM Hello, Yep, that's nimda. I don't think there is any way to block that on a RaQ. On "regular" Red Hat with the righ stuff compiled into the kernel, you can block it with iptables. Frank Fremont Servers 10-04-2001, 03:54 AM Originally posted by ffeingol Hello, Yep, that's nimda. I don't think there is any way to block that on a RaQ. On "regular" Red Hat with the righ stuff compiled into the kernel, you can block it with iptables. Frank ffeingol, I have a RH 7.1. Can you show me how? phpjames 10-04-2001, 05:42 AM I would suggest creating an empty file called default.ida(code red) or cmd.exe(nimda) in the location that it is looking for in your log file. This might help. Please see: http://www.webhostingtalk.com/showthread.php?s=&threadid=21462 Omair Haroon 10-04-2001, 08:59 AM Check out this Page! http://www.webmasterbase.com/article/566 It shows you how to redirect virus attacks! May be that might help a little! - Omair |