[Zope] de-worming

Martijn Pieters mj@zope.com
Wed, 3 Oct 2001 01:15:36 -0400


On Tue, Oct 02, 2001 at 09:21:22PM -0700, Jack Coates wrote:
> 
> I've put an object in Zope named default.ida and containing:
> 
> <dtml-call "RESPONSE.redirect('http://127.0.0.1')">
> 
> which seems to have stopped Code Red from being a problem. My next
> question is, how do I block Nimda? I need a wildcard or regexp document
> which will intercept any URL including "cmd.exe" or "root.exe". Any
> ideas?

You could try the Redirector product:

  http://www.zope.org/Members/djay/Redirector1_1

or you could create an Access Rule that sniffs the request before traverse.

-- 
Martijn Pieters
| Software Engineer  mailto:mj@zope.com
| Zope Corporation   http://www.zope.com/
| Creators of Zope   http://www.zope.org/
---------------------------------------------