Mailing List Archive
tlug.jp
Mailing List
tlug archive
tlug Mailing List Archive
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Blocking unknown and unclear bots
- Date: Wed, 10 Mar 2010 12:00:40 +0900
- From: Edward Middleton <edward.middleton@example.com>
- Subject: Re: [tlug] Blocking unknown and unclear bots
- References: <4B834398.8030609@example.com> <4B834BCA.80401@example.com> <20100223043730.GC30350@example.com> <20100223075335.150caaa1.gstewart@example.com> <20100223083539.GE9231@example.com> <871vgcgrvm.fsf@example.com> <4B8474AF.6030106@example.com>
- User-agent: Thunderbird 2.0.0.23 (X11/20100228)
eredicatorx@example.com wrote: > On 02/23/2010 07:37 PM, Stephen J. Turnbull wrote: > >> Curt Sampson writes: >> >> > I don't understand. So if a "good" bot and a "bad" bot swop IP >> > addresses, you start blocking the (presumably ex-) "good" bot, and now >> > allow the (presumably ex-) "bad" bot? >> > > How would one sensor a bot based on these kind of queries it makes? > > A brief example is all I am looking for. Frequently Drupal becomes > vulnerable to Cross Site Scripting attacks, and if I found a bot that > was searching for that, how would I stop, delay or other wise thwart > their evil. > Use a web application firewall WAF like mod_security[1][2]. Edward 1. http://tlug.jp/wiki/Meetings:2008:09#.3C.3C_Presentation_.281.29_.3E.3E 2. http://www.modsecurity.org/
- Prev by Date: Re: [tlug] Appropriate permissions for cron job PHP script
- Next by Date: Re: [tlug] Appropriate permissions for cron job PHP script [SOLVED]
- Previous by thread: Re: [tlug] Appropriate permissions for cron job PHP script [SOLVED]
- Next by thread: [tlug] [announcement] 2010-03-13 TLUG Open Space Technical meeting / VP Election
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |