FAQ  |  Search  |  Register  |  Profile  |  Log in to check your private messages  |  Log in
Log Entry

 
Post new topic   Reply to topic    Aprelium Forum Index -> General Questions
View previous topic :: View next topic  
Author Message
kev1952
-


Joined: 08 Sep 2005
Posts: 105
Location: Townsville Australia
PostPosted: Sat Feb 25, 2006 6:36 am    Post subject: Log Entry Reply with quote
Can anyone shed some light on this one:
Code:
193.1.178.30 - - [25/Feb/2006:00:35:46 +1000] "GET /faq.php?p=6http://robert.accettura.com/archives/2006/02/16/true-hackers/ HTTP/1.0" 200 13774
I only want to know if this is a security breach - especially since it returned a "200" code.
_________________
Cheers.... Kev

Kev's Place - http://www.kevsplace.com

Powered by Abyss X1.
Back to top View user's profile Send private message Send e-mail Visit poster's website
aprelium
-


Joined: 22 Mar 2002
Posts: 6800
PostPosted: Sat Feb 25, 2006 4:17 pm    Post subject: Re: Log Entry Reply with quote
kev1952 wrote:
Can anyone shed some light on this one:
Code:
193.1.178.30 - - [25/Feb/2006:00:35:46 +1000] "GET /faq.php?p=6http://robert.accettura.com/archives/2006/02/16/true-hackers/ HTTP/1.0" 200 13774
I only want to know if this is a security breach - especially since it returned a "200" code.


If you have a file faq.php in your web site, this request is processed and sent to the PHP interpreter. The parameter p=6http://robert.accettura.com/archives/2006/02/16/true-hackers/ may be taken into account by the script or may be ignored. All depends on what faq.php does and how it uses this parameter.
_________________
Support Team
Aprelium - http://www.aprelium.com
Back to top View user's profile Send private message Send e-mail
kev1952
-


Joined: 08 Sep 2005
Posts: 105
Location: Townsville Australia
PostPosted: Sat Feb 25, 2006 11:28 pm    Post subject: Reply with quote
Thanks, Aprelium. I do have a file referenced as "faq.php?p=6" . The script wouldn't have a use for the rest of the stuff tacked on to it. So I take it that the script just ignores the rest, yes? Only asked about it because it's the first time I have seen something like this in the log.
_________________
Cheers.... Kev

Kev's Place - http://www.kevsplace.com

Powered by Abyss X1.
Back to top View user's profile Send private message Send e-mail Visit poster's website
p3
-


Joined: 17 Jun 2005
Posts: 615
PostPosted: Sun Feb 26, 2006 12:37 am    Post subject: Reply with quote
Yes, I just testing it, and nothing to worry about.
Back to top View user's profile Send private message Send e-mail
kev1952
-


Joined: 08 Sep 2005
Posts: 105
Location: Townsville Australia
PostPosted: Sun Feb 26, 2006 12:51 am    Post subject: Reply with quote
I can see in the log where you came in - thanks for that. :)
_________________
Cheers.... Kev

Kev's Place - http://www.kevsplace.com

Powered by Abyss X1.
Back to top View user's profile Send private message Send e-mail Visit poster's website
p3
-


Joined: 17 Jun 2005
Posts: 615
PostPosted: Sun Feb 26, 2006 1:18 am    Post subject: Reply with quote
kev1952 wrote:
I can see in the log where you came in - thanks for that. :)

Welcome ;)
Back to top View user's profile Send private message Send e-mail
TRUSTAbyss
-


Joined: 29 Oct 2003
Posts: 3752
Location: USA, GA
PostPosted: Sun Feb 26, 2006 10:45 pm    Post subject: Reply with quote
To let you know what attack this is, it's a "PHP Injection" attack. :-)

Sincerely, TRUSTpunk
Back to top View user's profile Send private message Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic    Aprelium Forum Index -> General Questions All times are GMT + 1 Hour
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB phpBB Group