View previous topic :: View next topic |
Author |
Message |
kev1952 -
Joined: 08 Sep 2005 Posts: 105 Location: Townsville Australia
|
Posted: Sat Feb 25, 2006 6:36 am Post subject: Log Entry |
|
|
Can anyone shed some light on this one:
Code: | 193.1.178.30 - - [25/Feb/2006:00:35:46 +1000] "GET /faq.php?p=6http://robert.accettura.com/archives/2006/02/16/true-hackers/ HTTP/1.0" 200 13774 | I only want to know if this is a security breach - especially since it returned a "200" code. _________________ Cheers.... Kev
Kev's Place - http://www.kevsplace.com
Powered by Abyss X1. |
|
Back to top |
|
|
aprelium -
Joined: 22 Mar 2002 Posts: 6800
|
Posted: Sat Feb 25, 2006 4:17 pm Post subject: Re: Log Entry |
|
|
kev1952 wrote: | Can anyone shed some light on this one:
Code: | 193.1.178.30 - - [25/Feb/2006:00:35:46 +1000] "GET /faq.php?p=6http://robert.accettura.com/archives/2006/02/16/true-hackers/ HTTP/1.0" 200 13774 | I only want to know if this is a security breach - especially since it returned a "200" code. |
If you have a file faq.php in your web site, this request is processed and sent to the PHP interpreter. The parameter p=6http://robert.accettura.com/archives/2006/02/16/true-hackers/ may be taken into account by the script or may be ignored. All depends on what faq.php does and how it uses this parameter. _________________ Support Team
Aprelium - http://www.aprelium.com |
|
Back to top |
|
|
kev1952 -
Joined: 08 Sep 2005 Posts: 105 Location: Townsville Australia
|
Posted: Sat Feb 25, 2006 11:28 pm Post subject: |
|
|
Thanks, Aprelium. I do have a file referenced as "faq.php?p=6" . The script wouldn't have a use for the rest of the stuff tacked on to it. So I take it that the script just ignores the rest, yes? Only asked about it because it's the first time I have seen something like this in the log. _________________ Cheers.... Kev
Kev's Place - http://www.kevsplace.com
Powered by Abyss X1. |
|
Back to top |
|
|
p3 -
Joined: 17 Jun 2005 Posts: 615
|
Posted: Sun Feb 26, 2006 12:37 am Post subject: |
|
|
Yes, I just testing it, and nothing to worry about. |
|
Back to top |
|
|
kev1952 -
Joined: 08 Sep 2005 Posts: 105 Location: Townsville Australia
|
Posted: Sun Feb 26, 2006 12:51 am Post subject: |
|
|
I can see in the log where you came in - thanks for that. :) _________________ Cheers.... Kev
Kev's Place - http://www.kevsplace.com
Powered by Abyss X1. |
|
Back to top |
|
|
p3 -
Joined: 17 Jun 2005 Posts: 615
|
Posted: Sun Feb 26, 2006 1:18 am Post subject: |
|
|
kev1952 wrote: | I can see in the log where you came in - thanks for that. :) |
Welcome ;) |
|
Back to top |
|
|
TRUSTAbyss -
Joined: 29 Oct 2003 Posts: 3752 Location: USA, GA
|
Posted: Sun Feb 26, 2006 10:45 pm Post subject: |
|
|
To let you know what attack this is, it's a "PHP Injection" attack. :-)
Sincerely, TRUSTpunk |
|
Back to top |
|
|
|