Всем администраторам web серверов

Небольшое предупреждение

Дата публикации: 17.11.2010 - 13:38

middleman, 16.11.2010 - 22:13

Сегодня в логах своего сервера обнаружил вот такую бяку:

Code

94.76.213.82 - - [16/Nov/2010:19:46:29 +0200] "GET //phpmyadmin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 230
94.76.213.82 - - [16/Nov/2010:19:46:30 +0200] "GET //pma/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 223
94.76.213.82 - - [16/Nov/2010:19:46:30 +0200] "GET //admin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 225
94.76.213.82 - - [16/Nov/2010:19:46:31 +0200] "GET //dbadmin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 227
94.76.213.82 - - [16/Nov/2010:19:46:31 +0200] "GET //mysql/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 225
94.76.213.82 - - [16/Nov/2010:19:46:32 +0200] "GET //php-my-admin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 232
94.76.213.82 - - [16/Nov/2010:19:46:36 +0200] "GET //PHPMYADMIN/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 230
94.76.213.82 - - [16/Nov/2010:19:46:36 +0200] "GET //phpMyAdmin/config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 230
94.76.213.82 - - [16/Nov/2010:19:46:37 +0200] "GET //config/config.inc.php?p=phpinfo(); HTTP/1.1" 404 219
94.76.213.82 - - [16/Nov/2010:19:46:38 +0200] "GET //phppgadmin/config.inc.php?p=phpinfo(); HTTP/1.1" 404 223
94.76.213.82 - - [16/Nov/2010:19:46:38 +0200] "GET //phpmyadmin2/config.inc.php?p=phpinfo(); HTTP/1.1" 404 224
94.76.213.82 - - [16/Nov/2010:19:46:39 +0200] "GET //phpMyAdmin2/config.inc.php?p=phpinfo(); HTTP/1.1" 404 224
94.76.213.82 - - [16/Nov/2010:19:46:39 +0200] "GET //mail/config.inc.php?p=phpinfo(); HTTP/1.1" 404 217
94.76.213.82 - - [16/Nov/2010:19:46:40 +0200] "GET //webmail/config.inc.php?p=phpinfo(); HTTP/1.1" 404 220

Хорошая попытка.
Будьте бдительны и не устанавливаете скрипты управления в папки по умолчанию, потому как что эта гадость будет делать найдя соответствующий скрипт неизвестно, но точно ничего хорошего.

PTyTb, 17.11.2010 - 13:38

Оч.похоже на мой лог..
Такое впечатление, что уроды занимаются перебором возможных директорий

Вот пример, часть (небольшая) запросов с одного IP:

[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/scripts
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/db
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/dbadmin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/myadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/mysql
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/mysqladmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/typo3
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpMyAdmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin1
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin2
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/pma
[Fri Nov 05 08:08:59 2010] [error] [client *.*.*.*] File does not exist: /home/***/web
[Fri Nov 05 07:56:49 2010] [error] [client *.*.*.*] File does not exist: /home/***/www
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/scripts
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/admin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/db
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/dbadmin
[Fri Nov 05 08:08:57 2010] [error] [client *.*.*.*] File does not exist: /home/***/myadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/mysql
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/mysqladmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/typo3
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpMyAdmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin1
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/phpmyadmin2
[Fri Nov 05 08:08:58 2010] [error] [client *.*.*.*] File does not exist: /home/***/pma
[Fri Nov 05 08:08:59 2010] [error] [client *.*.*.*] File does not exist: /home/***/web

версия для печати -> Полная версия