Mercurial > syslog2iptables
comparison syslog2iptables.conf.httpd @ 61:d80641be405b stable-1-0-15
add script to build syslog2iptables.conf
| author | Carl Byington <carl@five-ten-sg.com> |
|---|---|
| date | Sat, 04 Oct 2014 10:01:32 -0700 |
| parents | |
| children | cc01f2caff37 |
comparison
equal
deleted
inserted
replaced
| 60:a20b31625b44 | 61:d80641be405b |
|---|---|
| 1 pattern "(.*) - - .* /cgi-bin" { | |
| 2 index 1; // zero based | |
| 3 bucket 400; | |
| 4 message "apache cgi-bin reference"; | |
| 5 }; | |
| 6 pattern "(.*) - - .*/index2.php" { | |
| 7 index 1; // zero based | |
| 8 bucket 400; | |
| 9 message "apache index2.php reference"; | |
| 10 }; | |
| 11 pattern "(.*) - - .*/main.php" { | |
| 12 index 1; // zero based | |
| 13 bucket 400; | |
| 14 message "apache main.php reference"; | |
| 15 }; | |
| 16 pattern "(.*) - - .*/awstats.pl" { | |
| 17 index 1; // zero based | |
| 18 bucket 400; | |
| 19 message "apache awstats.pl reference"; | |
| 20 }; | |
| 21 pattern "(.*) - - .*/xmlrpc" { | |
| 22 index 1; // zero based | |
| 23 bucket 400; | |
| 24 message "apache xmlrpc reference"; | |
| 25 }; | |
| 26 pattern "(.*) - - .*/adxmlrpc" { | |
| 27 index 1; // zero based | |
| 28 bucket 400; | |
| 29 message "apache adxmlrpc reference"; | |
| 30 }; | |
| 31 pattern "(.*) - - .*/includes/general.js" { | |
| 32 index 1; // zero based | |
| 33 bucket 400; | |
| 34 message "apache general.js reference"; | |
| 35 }; | |
| 36 pattern "(.*) - - .*/Admin/" { | |
| 37 index 1; // zero based | |
| 38 bucket 400; | |
| 39 message "apache phpMyAdmin reference"; | |
| 40 }; | |
| 41 pattern "(.*) - - .*/MyAdmin/" { | |
| 42 index 1; // zero based | |
| 43 bucket 400; | |
| 44 message "apache phpMyAdmin reference"; | |
| 45 }; | |
| 46 pattern "(.*) - - .*/phpMyAdmin/" { | |
| 47 index 1; // zero based | |
| 48 bucket 400; | |
| 49 message "apache phpMyAdmin reference"; | |
| 50 }; | |
| 51 pattern "(.*) - - .*/user/soapCaller" { | |
| 52 index 1; // zero based | |
| 53 bucket 400; | |
| 54 message "apache soapCaller reference"; | |
| 55 }; | |
| 56 pattern "(.*) - - .*POST /contact.php" { | |
| 57 index 1; // zero based | |
| 58 bucket 400; | |
| 59 message "apache contact.php post"; | |
| 60 }; | |
| 61 pattern "(.*) - - .*/crossdomain.xml" { | |
| 62 index 1; // zero based | |
| 63 bucket 400; | |
| 64 message "apache crossdomain.xml reference"; | |
| 65 }; | |
| 66 pattern "(.*) - - .*/cart/" { | |
| 67 index 1; // zero based | |
| 68 bucket 400; | |
| 69 message "apache cart reference"; | |
| 70 }; | |
| 71 pattern "(.*) - - .*/zen/" { | |
| 72 index 1; // zero based | |
| 73 bucket 400; | |
| 74 message "apache zen reference"; | |
| 75 }; | |
| 76 pattern "(.*) - - .*/zencart/" { | |
| 77 index 1; // zero based | |
| 78 bucket 400; | |
| 79 message "apache zencart reference"; | |
| 80 }; | |
| 81 pattern "(.*) - - .*\(\) *\{'" { | |
| 82 index 1; // zero based | |
| 83 bucket 400; | |
| 84 message "apache shellshocked attempt"; | |
| 85 }; |