Fog Creek Software
Discussion Board




mod rewrite rule

Someone posted this to a newsgroup I'm in.

<IfModule mod_rewrite.c>
  RedirectMatch permanent (.*)cmd.exe(.*)$ http://www.microsoft.com
  RedirectMatch permanent (.*)root.exe(.*)$ http://www.microsoft.com
  RedirectMatch permanent (.*)\/_vti_bin\/(.*)$ http://www.microsoft.com
  RedirectMatch permanent (.*)\/scripts\/\.\.(.*)$ http://www.microsoft.com
  RedirectMatch permanent (.*)\/_mem_bin\/(.*)$ http://www.microsoft.com
  RedirectMatch permanent (.*)\/msadc\/(.*)$ http://www.microsoft.com
  RedirectMatch permanent (.*)\/MSADC\/(.*)$ http://www.microsoft.com
  RedirectMatch permanent (.*)\/c\/winnt\/(.*)$ http://www.microsoft.com
  RedirectMatch permanent (.*)\/d\/winnt\/(.*)$ http://www.microsoft.com
  RedirectMatch permanent (.*)\/x90\/(.*)$ http://www.microsoft.com </IfModule>

sysadmin
Tuesday, August 10, 2004

Funny :D

Li-fan Chen
Tuesday, August 10, 2004

What's it mean?

.
Tuesday, August 10, 2004

If someone is trying to hack an IIS intallation it redirects them to Microsoft.com. 

I always laugh when I see this in my logs.

Lou
Tuesday, August 10, 2004

cmd line scripts that try to hack your site will ignore 302s

Anon
Tuesday, August 10, 2004

What would be funnier would be if you could redirect them back to their own machine. I wonder if you could just stick http://127.0.0.1 in there instead?

brad
Tuesday, August 10, 2004

*  Recent Topics

*  Fog Creek Home