2011
09.17
09.17
RefRef was supposed to be the new DDOS tool, it just look like a scam especially when the developer was begging for contribution to buy a NAS… After weeks of pre pre pre teasers, and lame youtube videos, the “tool” required a SQLi to work and use a simple benchmark function in mysql. The language used was supposed to be in javascript as described by the developer , and it’s in fact perl.
Just add to this to your htaccess to protect your server:
RewriteCond %{QUERY_STRING} (;|<|>|’|”|\)|%0A|%0D|%22|%27|%3C|%3E|%00).*(/\*|union|select|insert|cast|set|declare|drop|update|md5|benchmark) [NC,OR]
et voila!
Actually it will protect against SQLi and the benchmark function used by RefRef.