[l008com]

My Apache error log is filling up real fast! Its already at 1.5 Mb and its not that old. They are all requests to cmd.exe and root.exe. How can I stop this? I don't want these error to be logged, and I don't want attempts to load said files to even be attempted, i want an instant denial, so as to not waste my comptuers time. And what i think would be even nicer would be if I could somehow automatically block or even hack-back these assholes. Assuming these are hack attempts.

[Camelot]

These are various Windows hacks from the Nimda and CodeRed worms scanning for vulnerable Windows systems.

There are various ways of addressing the problem but none of the simple ones will resolve your primary complaint - namely the log file growth.

By default Apache is configured to log every request either in the access log or in the error log. Most of the simple fixes involve handling the request in some way which simply moves the log entry from the error log to the access log (i.e. you've gone from having an error to handling the request).

The only way to stop them altogether is to block them before they get to your machine.

[l008com]

They're all from similar IPs than me too, but not the same ones all the time so it would be very hard to block/filter these things.

[Camelot]

I'm guessing you're using cable for your internet access. Cable networks are particularly vulnerable to Nimda and CodeRed due to the network architecture (one large subnet covering entire neighborhoods).

If this is the case, you should weigh the chances of there being legitimate traffic to your web server from your neighbors. If you don't think there's much chance of that you can use ipfw (the built-in Mac OS X firewall) to block the traffic.

[taffy]

search for 'nimda apache block' on google. you can set your apache configuration to automatically filter out junk nimda-ish requests. i can't remember the exact instructions but i've seen it before