[TriLUG] Log question?
WA Brown
brownwa at ftc-i.net
Wed May 24 19:06:11 EDT 2006
That was an old message board that I tried. Some of the "bots" found it and
took it over with the spam advertising. The part that distresses me is when
it says "Apache configured--resuming normal operations". What was configured
and why? I have disabled that board completely.
WA Brown
----- Original Message -----
From: "Noah Fontes" <impl at cynigram.com>
To: "Triangle Linux Users Group discussion list" <trilug at trilug.org>
Sent: Wednesday, May 24, 2006 5:30 PM
Subject: Re: [TriLUG] Log question?
> Jason wrote:
>> this is someone running a script against your server trying to find
>> vulernerable PHP scripts. in order to plant some script on it..
>>
>> http://www.whoopis.com/howtos/phpbb-viewtopic-hack/
>
> The requests to his site look more like honest mistakes. Maybe something
> stored in Google's (or some other search engine's) cache. Stuff can
> reside there for long after a domain has expired and been purchased again.
>
> I wouldn't worry about it too much, especially if there is no forum
> software running.
>
> --
> Noah Fontes
> Cynigram Network Administrator
> impl at cynigram.com
>
> --
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
>
More information about the TriLUG
mailing list