Re: blocking Code Red

• From: "Jim Harrison" <jim@xxxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Mon, 6 Aug 2001 14:53:20 -0700

It doesn't; not as such.  It simply doesn't recognize it as a valid request
as defined in your publishing rules and refuses it on that basis.

Jim Harrison
MCP(2K), A+, Network+, PCG

----- Original Message -----
From: "Talley, Scott" <stalley@xxxxxxxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Monday, August 06, 2001 2:28 PM
Subject: [isalist] blocking Code Red


http://www.ISAserver.org


Upon examining my ISA logs, I see that it has denied access approx. 20 times
per day to both versions of Code Red queries.  My question is..  how does it
identify this request as malicious?

Thank you,
Scott Talley
The Combined Group

phone:  972.247.2621 x829
fax:    972.247.2622
e-mail: stalley@xxxxxxxxxxxxxxxxx


------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

Other related posts:

• » blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red
• » Re: blocking Code Red

1. Home
2. isalist
3. Archive
4. 08-2001

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---