Твой софтовый форум > Интернет > Безопасность в сети

Всем администраторам web серверов

,

Небольшое предупреждение

Дата публикации: 17.11.2010 - 13:38
middleman
Сегодня в логах своего сервера обнаружил вот такую бяку:
Code

94.76.213.82 - - [16/Nov/2010:19:46:29 +0200] "GET //phpmyadmin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 230
94.76.213.82 - - [16/Nov/2010:19:46:30 +0200] "GET //pma/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 223
94.76.213.82 - - [16/Nov/2010:19:46:30 +0200] "GET //admin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 225
94.76.213.82 - - [16/Nov/2010:19:46:31 +0200] "GET //dbadmin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 227
94.76.213.82 - - [16/Nov/2010:19:46:31 +0200] "GET //mysql/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 225
94.76.213.82 - - [16/Nov/2010:19:46:32 +0200] "GET //php-my-admin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 232
94.76.213.82 - - [16/Nov/2010:19:46:36 +0200] "GET //PHPMYADMIN/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 230
94.76.213.82 - - [16/Nov/2010:19:46:36 +0200] "GET //phpMyAdmin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 230
94.76.213.82 - - [16/Nov/2010:19:46:37 +0200] "GET //config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 219
94.76.213.82 - - [16/Nov/2010:19:46:38 +0200] "GET //phppgadmin/config.inc.php?p=phpinfo(); HTTP/1.1" 404 223
94.76.213.82 - - [16/Nov/2010:19:46:38 +0200] "GET //phpmyadmin2/config.inc.php?p=phpinfo(); HTTP/1.1" 404 224
94.76.213.82 - - [16/Nov/2010:19:46:39 +0200] "GET //phpMyAdmin2/config.inc.php?p=phpinfo(); HTTP/1.1" 404 224
94.76.213.82 - - [16/Nov/2010:19:46:39 +0200] "GET //mail/config.inc.php?p=phpinfo(); HTTP/1.1" 404 217
94.76.213.82 - - [16/Nov/2010:19:46:40 +0200] "GET //webmail/config.inc.php?p=phpinfo(); HTTP/1.1" 404 220


Хорошая попытка.
Будьте бдительны и не устанавливаете скрипты управления в папки по умолчанию, потому как что эта гадость будет делать найдя соответствующий скрипт неизвестно, но точно ничего хорошего.
PTyTb
Оч.похоже на мой лог..
Такое впечатление, что уроды занимаются перебором возможных директорий mad.gif
Вот пример, часть (небольшая) запросов с одного IP:

[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/scripts
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/db
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/dbadmin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/myadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/mysql
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/mysqladmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/typo3
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpMyAdmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin1
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin2
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/pma
[Fri Nov 05 08:08:59 2010] [error] [client *.*.*.*] File does not exist: /home/***/web
[Fri Nov 05 07:56:49 2010] [error] [client *.*.*.*] File does not exist: /home/***/www
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/scripts
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/db
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/dbadmin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/myadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/mysql
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/mysqladmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/typo3
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpMyAdmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin1
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin2
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/pma
[Fri Nov 05 08:08:59 2010] [error] [client *.*.*.*] File does not exist: /home/***/web

Быстрый ответ:

 Включить смайлики |  Добавить подпись




SoftoRooM.NeT lite версия, полная версия - здесь: Всем администраторам web серверов
SoftoRooM.NeT © 2004-2020