Robert - elists wrote: > GET http://scifi.pages.at/myproxies/azenv.php HTTP/1.1 with response code(s) > 404 1 responses I installed fail2ban from rpmforge and created a filter that bans these type of things. Here is my novice attempt at the failregex = <HOST> - - \[.*\] \"GET .*(azenv\.php|adxmlrpc\.php|xmlrpc\.php).*" -- Sincerely, John Thomas