Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: Apache security, found some stuff in my logs |
|
| Author |
|
theboytony
Joined: 01 May 2007
Posts: 2
|
 Posted: Tue 01 May '07 11:53 Post subject: Apache security, found some stuff in my logs |
 |
|
Hi I set apache up on my desktop a few months ago, it is used for hosting my homepage and mainly just for me to mess around with. I have set up a htaccess file in the htdocs folder and currently only me and one my friend have passwords for the site. I was looking through my logs and found some bits that aren't to sure about so i thought i would post on here in the hope someone can have a look and let me know what they mean
| Code: | 202.67.153.219 - - [12/Jan/2007:15:37:41 +0000] "GET /awstats/awstats.pl?configdir=|echo;id%00 HTTP/1.0" 401 401
207.44.246.78 - - [15/Jan/2007:00:03:29 +0000] "GET /osc/admin/file_manager.php HTTP/1.0" 401 401
80.87.128.173 - - [19/Jan/2007:19:26:36 +0000] "GET /cacti/include/config.php HTTP/1.0" 401 401
210.51.23.7 - - [25/Jan/2007:06:53:41 +0000] "GET http://hacker.org.ru/prxjdg.php HTTP/1.0" 401 401
218.189.245.209 - - [02/Feb/2007:21:36:10 +0000] "GET http://www.proxygrade.com/proxygrade.php?hash=C59C2E3FD31372BADD1004781F90050A953698723D3E HTTP/1.1" 401 401
86.54.80.203 - - [09/Feb/2007:20:28:49 +0000] "GET /level/16/exec/-///pwd HTTP/1.0" 401 401 |
these are only a few that i have pulled out, as you can see from the dates they are quite old but untill recently I have been doing other things so my server has been offline, it is now back up again.
Any help would be most appreciated
Thanks |
|
| Back to top |
|
James Blond
Moderator
Joined: 19 Jan 2006
Posts: 7371
Location: Germany, Next to Hamburg
|
| Posted: Tue 01 May '07 14:20 Post subject: |
|
|
| There is nothing you have to worry about. the 401 as Status code means only Authorization Required. So the Client stops to ask ask for a the username and password. The HTTP/1.0 tells me, that it wasn't a normal browser. Because a browser would use HTTP/1.1 |
|
| Back to top |
|
theboytony
Joined: 01 May 2007
Posts: 2
|
| Posted: Tue 01 May '07 15:09 Post subject: |
|
|
| Thanks james |
|
| Back to top |
|
|
|
|
|
|
