[REBOL] Re: MX records, and that code red stuff
From: brett:codeconscious at: 11-Aug-2001 23:16
Hi Mat,
I've no idea about MX stuff...
> On another note, there's probably a few webmasters here. I was looking
> through my logs and found a lot of those malformed requests which are
> the Code Red worm attacks. They wont be getting anywhere on my Xitami
> web server though :)
I don't run a webserver but I have noticed an increasing number of these
malformed requests in my website logs.
> I decided to do something nice and write a script which scans through
> the logs, collects all the unique ips and then uses the 'net send
> <message>' command - figuring that most of those boxes have little or
> no security so that's likely to get through.
I was also contemplating informing the victims, but I figured I'd have to
try to work out email addresses from IP numbers.
Can you explain what you mean about the "net send command" - is this Windows
specific or something else...
> 507 messages delivered. The message told them they were infected with
> code red blah blah, how they got this message and my e-mail address.
>
> I got quite a lot of appreciative e-mail in return. It might be
> something you guys could consider?
Yep considering it depending on feasibility (as above).
Regards,
Brett.