Hi everyone.
First a little setup hist.
Windows XP Pro box running Apache 2.0.52
connection: DSL modem using linksys router with port 80
forwarding to specific webserver IP.
(Dedicated webserver with non-sensitive data.)
I have defined a <file> </file> entry in the conf file
that blocks exe,com,dll,sys etc file calls.
Site is up and running no problems.
My access log shows scan attempts, and web-dav exploit
attempts. I know everyone gets scan entries.
My Question is this, the majority of these scans come
from Milton,AU. I block the ip (first 3 segements if ip)
but the scans continue. Different IPs but still Milton, AU.
Rather than block the individual ip range, is there any
way to deny access based upon county code ?
I know this would have to include reverse-lookup somehow.
I'm not overly concerned about being hacked,
but if there are some practical measures i can take,
that's what i'm interested in finding out.
Thanks for any comments.
First a little setup hist.
Windows XP Pro box running Apache 2.0.52
connection: DSL modem using linksys router with port 80
forwarding to specific webserver IP.
(Dedicated webserver with non-sensitive data.)
I have defined a <file> </file> entry in the conf file
that blocks exe,com,dll,sys etc file calls.
Site is up and running no problems.
My access log shows scan attempts, and web-dav exploit
attempts. I know everyone gets scan entries.
My Question is this, the majority of these scans come
from Milton,AU. I block the ip (first 3 segements if ip)
but the scans continue. Different IPs but still Milton, AU.
Rather than block the individual ip range, is there any
way to deny access based upon county code ?
I know this would have to include reverse-lookup somehow.
I'm not overly concerned about being hacked,
but if there are some practical measures i can take,
that's what i'm interested in finding out.
Thanks for any comments.