$arr_19 ), array( 3, false, $arr_20, $arr_24 ), array( 2, false, "\" />", $arr_25 ) ) ); ?> $arr_27 ), array( 3, false, $arr_28, $arr_30 ), array( 2, false, "\" />\n\n", $arr_31 ) ) ); ?> array( 2, false, false, $arr_9 ), array( 4, $arr_10, "if", $arr_245, $arr_248 ), array( 2, false, "\n", $arr_249 ) ) ); ?> rr_466 ), array( 4, $arr_467, "if", $arr_482, $arr_484 ), array( 2, false, "\n", $arr_485 ) ) ); ?> WRONG NUMBER! » Linux Magazine
 

The Sysadmin’s Daily Grind: Webalizer Xtended

WRONG NUMBER!

Author(s):

Webalizer is a tool for analyzing web server logfiles. A new patch lets admins see what isn’t there.

From time to time, I browse my web server logfiles, although this isn’t something I like to do too often. After all, I get to see enough of the pesky things at work. When I do check my own logs, it typically has to do with debugging, but I also tend to find “wrong number” type entries. Sometimes you get strange entries like: tharis.xxxxx.at - - U [03/Dec/2005:08:24:43 +0100] „GET /LOST HTTP/1.1“ U 404 1025 „-“ „Mozilla/4.0“ Although this message looks pretty offensive, it is actually quite harmless. On other occasions, I find people attempting to navigate to URLs belonging to applications that have been featured in recent security advisories. In the past few weeks, for example, I have read advisories concerning PhpMyAdmin and PhpBB. Attempts to access files with suffixes such as .mdb and .asp, are telltale signs of unfriendly fire. Listing 1 shows an excerpt.

Read full article as PDF »

Charly_Column.pdf (96.90 kB)
comments powered by Disqus

Visit Our Shop

Trial Subscription

Digital Subscription

Subscribe

Direct Download

Read full article as PDF »

Charly_Column.pdf (96.90 kB)

Tag Cloud

Bruce Byfield Gnome KDE Kernel Linux Linux Pro Magazine Open Source Projects Red Hat Ubuntu events foss free software google

News