Hi all,
We are working on a security problem of an asp (iss server) website that is really bogus and vulnerable. But the site is really important so we need it to be up an running. The long term soluntion is to migrate the applicacion to a cms and be aware of the security problems.
The short term solution is to mirror the site to static html on a server running linux (CentOS). For this we want to use wget and we try the following:
Code:
wget --mirror --convert-links --backup-converted --html-extension -o logfile http://10.4.1.110:81/somedir
After downloading about 4 MB the download it get stuck on a specific file:
Code:
Falta la fecha de la última modificación -- marcas de tiempo apagadas.
--02:00:02-- http://10.4.1.110:81/xxxm/xxxx.asp?id=221
Reusing existing connection to 10.4.1.110:81.
Petición HTTP enviada, esperando respuesta... 200 OK
Longitud: 21264 (21K) [text/html]
Saving to: `10.4.1.110:81/xxxxx/xxxxx.asp?id=221.html'
0K .......... ..........
And it would be a hours until the file is download. If the file is
page is downloded directly using
http://10.4.1.110:81/xxxxx/xxxx.asp?id=221
The file is downloaded with no problem. So my hypothesis is that the
MS Internet Informatation service is bloking me because wget is doing
to many http requests at the time that it may be seen as an DoS
attack. Is this reasoning right?
If it is right, how can I keeping mirrorin the files with wget and not
being seen as attacker? The other solution is to configure ISS, but i
gues this is no something you can help me on this list.
Hope you can help,