On 26/09/2014 03:19 PM, Gary Stainburn wrote:
Is there any way to detect an attack within Apache and block it?
I'm thinking of a rule or something to check the user-agent or equiv
before
calling the CGI or PHP etc.
I'm looking to protect some old servers where BASH updates won't be
forthcoming
(I know the answer is to upgrade the servers, but these aren't my
servers and
it ain't my call)
Hi,
you can try mod_security, for example check this:
http://www.zdnet.com/shellshock-how-to-protect-your-unix-linux-and-mac-servers-7000034072/
There are also other links in Google as well.
Regards,
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
