[TriLUG] Log question?

WA Brown brownwa at ftc-i.net
Wed May 24 19:06:11 EDT 2006


That was an old message board that I tried. Some of the "bots" found it and 
took it over with the spam advertising. The part that distresses me is when 
it says "Apache configured--resuming normal operations". What was configured 
and why? I have disabled that board completely.


WA Brown


----- Original Message ----- 
From: "Noah Fontes" <impl at cynigram.com>
To: "Triangle Linux Users Group discussion list" <trilug at trilug.org>
Sent: Wednesday, May 24, 2006 5:30 PM
Subject: Re: [TriLUG] Log question?


> Jason wrote:
>> this is someone running a script against your server trying to find 
>> vulernerable PHP scripts. in order to plant some script on it..
>>
>> http://www.whoopis.com/howtos/phpbb-viewtopic-hack/
>
> The requests to his site look more like honest mistakes. Maybe something
> stored in Google's (or some other search engine's) cache. Stuff can
> reside there for long after a domain has expired and been purchased again.
>
> I wouldn't worry about it too much, especially if there is no forum
> software running.
>
> -- 
> Noah Fontes
> Cynigram Network Administrator
> impl at cynigram.com
>
> -- 
> TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ  : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
> 





More information about the TriLUG mailing list