Joshua Slive wrote: > On 6/26/06, Errol Neal <eneal@xxxxxxxxxxxx> wrote: > >> I've posted my logs to an external URL. >> http://www.dfi-intl.com/~hidden/suspectlogs.txt. >> Essentially, my logs show hits for paths, URLs and files not even hosted >> on my box. Is my redirect too wide open? > > I don't think these logs show anything particularly concerning. Yes, > someone is trying to hack into your server. This happens all the time > to every server on the Internet. But you are just returning redirects > to your other website. I don't see how that could be a problem. To be clear, you are not be singled out as a target. It's more likely that an infected machine is conducting an automated attack sequence by scanning for IPs with a port 80 service, and then trying it's luck. > Joshua. > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP Server Project. > See <URL:http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > > > --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|