Anyone attacked by JaMaYcKa?

ramprage · Jan 3, 2007

My mod_security ruleset for managed clients covers these type of attacks.

swampy · Mar 21, 2007

Hi if anyone is running joomla or mambo this rule stopps most if not all attacks against mambo and joomla as far as i know joomla and mambo do not use this request in any url so i have added it to my modsec rules and it gets all of the attacks against my server about 300 aday from compromised scripts

SecFilter "mosConfig_"

hope this helps

swampy

Adrnalnrsh · Mar 21, 2007

PPNSteve said:
anyone have a good rule or 2 to add to the mod_security config?

I use this one.

http://hostmerit.com/modsec.user.conf

ramprage · Mar 21, 2007

celliott said:
One of my servers got attacked through OpenSSL I think as it was running 0.9.7a and since cPanel reports it as the latest version I never thought to update it..

Updated to 0.9.8d now and cleared up the mess he made. Seems good now.

What OS are you using? Red Hat applies its own patches so the versions get fudged in between what openssl.org has listed.

WireNine · Mar 21, 2007

ramprage said:
My mod_security ruleset for managed clients covers these type of attacks.

Where is your mod_security ruleset?

Thread starter	Similar threads	Forum	Replies	Date
	Anyone seen this httpd error before?	General Discussion	2	Aug 7, 2015
	Anyone successfully running Joomla?	General Discussion	4	Apr 1, 2015
	Anyone having issues with apache 2.4 thinking about upgrading.	General Discussion	1	Mar 17, 2015
G	Anyone installed Google Sitemap Generator ??	General Discussion	1	Sep 20, 2013
	Anyone Using onAPP?	General Discussion	1	Sep 16, 2013

Search

Search

Anyone attacked by JaMaYcKa?

ramprage

Well-Known Member

swampy

Well-Known Member

Adrnalnrsh

Well-Known Member

ramprage

Well-Known Member

WireNine

Well-Known Member