Re: [cobalt-users] NIMDA Attacks - Anyway to deny requests?

[Marco Baurdoux <linux@xxxxxxxxxxxxx>]

Hum, knowing the nature of the virus, you'll end up by blocking half off the
internet :-))



le 21.9.2001 0:34, Scott F à scott_falco@xxxxxxxxx a écrit :

>> But the shear volume of requests are so high,
>> that server performance is suffering.  Would
>> denying requests have an affect on server
>> performance, if it's even possible.
>> Any suggestions are appreciated.
> 
> I run the nimda script found on this list, gather up
> the infected IP's, then dropped them into my firewalls
> to deny access. Once you get a good list of the
> several hundred offenders (which tend to be the same
> first bit of your network) and drop them into your
> firewall, they'll stop hammering you since they're
> denied access -it'll cut down on the attempts a great
> deal. I've dropped my loads considerably, but I can
> still tell there's a great deal of sluggish network
> traffic due to this latest M$ cancer..
> 
> Scott
> 
> __________________________________________________
> Terrorist Attacks on U.S. - How can you help?
> Donate cash, emergency relief information
> http://dailynews.yahoo.com/fc/US/Emergency_Information/
> 
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users

=======================================================================

Marco Baurdoux
Unix Administrator
Infomaniak Network SA
Avenue de la Praille 26
1227 Carouge
Switzerland
Tel: +41 (0)22 820 35 41
Fax: +41 (0)22 820 35 46
http://web.infomaniak.ch

Linux/Unix is very user friendly,
it's just very picky about who its friends are !!!

=======================================================================