Re: Strange log file entry
by Reywob(at)aol.com
|
| Date: |
Mon, 6 Aug 2001 04:48:35 EDT |
| To: |
hwg-servers(at)hwg.org |
| |
todo: View
Thread,
Original
|
|
In a message dated 8/6/01 9:24:47 AM GMT Daylight Time, fillon(at)webstore.fr
writes:
> you've been hacked ;-))
>
> In fact there is a new exploit on IIS and today people tries this new
> exploit on world wide web
> (last 2 hours I received about 3000 request like this ... but I am under
> linux ... :)))
>
> Hope you are using Linux .... or apaci ...
Linux with Apache ;-)
What worries me is that these entries are showing up on my local web server
(Apache on this computer's hard drive) so obviously when I am connected to
the internet and have my local copy of apache running, it is insecure. Yeeks!
Any ideas how I could secure it? I've thought about installing ZoneAlarm,
but people have reported it ccausing blue creens and oher lovely stuff, so
I'm don't really want to risk it :-(
In case any of you like chasing IP addresses, here's my local log file
entries:
[Sun Aug 05 12:09:52 2001] [error] [client 172.153.223.8] File does not
exist: c:/apache/htdocs/default.ida
[Sun Aug 05 12:24:43 2001] [error] [client 194.106.252.37] File does not
exist: c:/apache/htdocs/default.ida
[Sun Aug 05 14:05:51 2001] [error] [client 194.254.169.116] File does not
exist: c:/apache/htdocs/default.ida
[Sun Aug 05 14:07:41 2001] [error] [client 194.44.236.77] File does not
exist: c:/apache/htdocs/default.ida
[Sun Aug 05 15:41:08 2001] [error] [client 194.185.177.35] File does not
exist: c:/apache/htdocs/default.ida
[Sun Aug 05 20:59:30 2001] [error] [client 194.236.31.208] File does not
exist: c:/apache/htdocs/default.ida
Thanks,
Peter.
HWG: hwg-servers mailing list archives,
maintained by Webmasters @ IWA