Protect you server against RefRef in 1 line

Posted by deepquest on September 17, 2011 – 9:30 pm

RefRef was supposed to be the new DDOS tool, it just look like a scam especially when the developer was begging for contribution to buy a NAS… After weeks of pre pre pre teasers, and lame youtube videos, the “tool” required a SQLi to work and use a simple benchmark function in mysql. The language used was supposed to be in javascript as described by the developer , and it’s in fact perl.

Just add to this to your htaccess to protect your server:

RewriteCond %{QUERY_STRING} (;|<|>|’|”|\)|%0A|%0D|%22|%27|%3C|%3E|%00).*(/\*|union|select|insert|cast|set|declare|drop|update|md5|benchmark) [NC,OR]

et voila!

Tags: ddos, htaccess, refref
This post is under “exploit, Security” and has 1 respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

1 Respond so far- Add one»

1. deepquest Said：
September 17th, 2011 at 9:36 pm
Actually it will protect against SQLi and the benchmark function used by RefRef.

Post a reply

You must be logged in to post a comment.

« Wikileaks: Will Museveni punish Mukula? – Independent.co.ug http://rongwuadang.go.th/PDF/dz.txt »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.