Re: analyze apache log for IIS hack attempts?
From: Dave Millen (postmaster_at_[127.0.0.1)
Date: 03/28/04
- Next message: Bob Simon: "Newbie: very basic iptables rules"
- Previous message: Beowulf: "Re: how deep do i need to dive ?"
- In reply to: spamfighter_at_xs4all.nl: "analyze apache log for IIS hack attempts?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 28 Mar 2004 21:41:25 +0100
On Sun, 28 Mar 2004 10:45:36 -0800, spamfighter@xs4all.nl wrote:
> Hi,
>
> Does anyone know if there's anything already out there that can analyze my
> apache logs and give me an overview of which script kiddie is trying what
> on my server?
>
> I've noticed a recent increase of fishing for cmd.exe and loads of other
> crap in my logs and I assume I'm not the first person who wants to know
> what's going on.
>
> Since I'm a terrible programmer I'd rather modify some existing code than
> start from scratch.
>
> Jeroen
grep text_to_identify_exploit /var/log/http/access_log
Substitute the identifying part of the request string and change the
path/filename of the access log to suit.
Regards,
Dave
-- As soon as he saw the black duck, Elmer knew it was going to be a bad day!
- Next message: Bob Simon: "Newbie: very basic iptables rules"
- Previous message: Beowulf: "Re: how deep do i need to dive ?"
- In reply to: spamfighter_at_xs4all.nl: "analyze apache log for IIS hack attempts?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
