Apache::Earlybird - Responds to worm attacks with e-mail warnings
Make sure your Apache is compiled with mod_perl and put the following in your httpd.conf: PerlModule Apache::Earlybird <LocationMatch "/(root|cmd)\.exe"> SetHandler perl-script PerlHandler Apache::Earlybird </LocationMatch> <Location /default.ida> SetHandler perl-script PerlHandler Apache::Earlybird </Location>
The Earlybird gets the worm. This Perl module should be invoked whenever IIS worms attack. We don't have to worry about such attacks on Apache servers on Unix or Linux, but we can be good Internet citizens and spare ourselves and others the log clutter and lost bandwidth by notifying webmasters or ISPs of infected machines.
You may distribute this module under the same license as Perl itself.
Ronald Florence <ron@18james.com> Portions of the code are adapted from Apache::CodeRed by Reuven M. Lerner <reuven@lerner.co.il> and Apache::MSIISprobe by Nick Tonkin <nick@tonkinresolutions.com>.
mod_perl.
To install Apache::Earlybird, copy and paste the appropriate command in to your terminal.
cpanm
cpanm Apache::Earlybird
CPAN shell
perl -MCPAN -e shell install Apache::Earlybird
For more information on module installation, please visit the detailed CPAN module installation guide.