Nelson's Weblog: tech / Stop logging virus attacks


Mastodon @nelson@tech.lgbt Linkblog Mon 2024-12-02 Niel Locke Threads Won't Take You South of Market Sat 2024-11-30 Bhattacharya Fri 2024-11-29 PiratePx GoatCounter Simple Sabotage Project Plowshare Unix buffering Wed 2024-11-27 Google altering websites Tue 2024-11-26 Sensitive Research Neptyne source StoryGraph update HarmonyOS NEXT Coin-op vendors Sat 2024-11-23 SQLite's Use Of Tcl (2017) Musk brigading government employees Factorio tests Thu 2024-11-21 Zlibrary access Egoless Engineering Wed 2024-11-20 Francis Williams painting Search Archives 2023 12 11 10 09 08 07 06 05 04 03 02 01 2022 12 11 10 09 08 07 06 05 04 03 02 01 2021 12 11 10 09 08 07 06 05 04 03 02 01 2020 12 11 10 09 08 07 06 05 04 03 02 01 2019 12 11 10 09 08 07 06 05 04 03 02 01 2018 12 11 10 09 08 07 06 05 04 03 02 01 2017 12 11 10 09 08 07 06 05 04 03 02 01 2016 12 11 10 09 08 07 06 05 04 03 02 01 2015 12 11 10 09 08 07 06 05 04 03 02 01 2014 12 11 10 09 08 07 06 05 04 03 02 01 2013 12 11 10 09 08 07 06 05 04 03 02 01 2012 12 11 10 09 08 07 06 05 04 03 02 01 2011 12 11 10 09 08 07 06 05 04 03 02 01 2010 12 11 10 09 08 07 06 05 04 03 02 01 2009 12 11 10 09 08 07 06 05 04 03 02 01 2008 12 11 10 09 08 07 06 05 04 03 02 01 2007 12 11 10 09 08 07 06 05 04 03 02 01 2006 12 11 10 09 08 07 06 05 04 03 02 01 2005 12 11 10 09 08 07 06 05 04 03 02 01 2004 12 11 10 09 08 07 06 05 04 03 02 01 2003 12 11 10 09 08 07 06 05 04 03 02 01 2002 12 11 10 09 08 07 06 05 04 03 02 01 2001 12 11 10 09 08 07 One good site MDN Nelson Minar nelson@monkey.org Blog licensed under a Creative Commons License		Stop logging virus attacks My little home Apache server is overwhelmed by log entries from various virus attacks - Nimda, CodeRed, etc. It's tiresome. If you edit Apache's httpd.conf and replace your old CustomLog entry with this stuff, the logs go somewhere else. It looks like the Debian Apache package will even rotate the new file for you, I'll see in a week. SetEnvIf Request_URI (cmd\.exe\|root\.exe\|default\.ida) attack CustomLog /var/log/apache/attack.log combined env=attack CustomLog /var/log/apache/access.log combined env=!attack tech 2001-10-31 08:00 Z Nelson's Weblog • tech → ago, bad, bittorrent, blosxom, dotnet, good, hqnx, iphone, mac, phone, photo, python, webservices