[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: reviewing httpd access log

To: misc@openbsd.org
Subject: Re: reviewing httpd access log
From: "Johan M:son Lindman" <tybollt@solace.mh.se>
Date: Mon, 2 Aug 2004 00:01:07 +0000
Content-Disposition: inline
References: <20040801174234.GA76@kingcull.cullmail.com> <20040801183035.GC6971@2004.snew.com>
User-Agent: KMail/1.6.1

On Sunday 01 August 2004 18.30, Chuck Yerkes wrote:
> Quoting J Moore (jaymo@cullmail.com):
> > Reviewing my /var/www/logs/access_log file it seems there are a lot of
> > "bogus" entries; i.e. people trying various hacks, looking for
> > weaknesses, testing for win32, etc, etc.
> >
> > Is there a good technique for automatically identifying these
> > trouble-makers? I'd like to be able to build a "deny" table for pf to
> > halt repeat offendors, but I can't afford the time to review the logs
> > "manually".
>
> On the other hand, the biggest defense is to not run IIS or
> software with holes.

Right there was never a hole in or a security issue with apache, right...


Regards
Johan

References:
- reviewing httpd access log
  - From: J Moore <jaymo@cullmail.com>
- Re: reviewing httpd access log
  - From: Chuck Yerkes <chuck+obsd@2004.snew.com>

Prev by Date: Re: Can't boot cdrom35.iso from usb cdrom drive
Next by Date: 2005년도 유망직종 자격증 선별 [취업,이직] 시험안내자료 usp n e wwo
Prev by thread: Re: reviewing httpd access log
Next by thread: Re: reviewing httpd access log
Index(es):
- Date
- Thread