attempts to use know hacks by 47 hosts in logwatch
ok so i use logwatch and in my httpd section i get this
Code:
--------------------- httpd Begin ------------------------ |
You could use an adaptive firewall setup to block those hosts, but it probably isn't going to do much good in the long run.
A lot of attacks that are run against Apache servers are totally ineffective. I was running the web server for a public library, which got a considerable amount of traffic on it's site. Accordingly I was hit with literally hundreds of attack attempts every day. The thing is, every single one of them was an exploit against IIS and was completely useless against Apache. Most of these attacks are from automated tools in the hands of 14 year olds, and are nothing to be worried about. Now, if you are logging serious attacks, that is another thing, but more often then not you are just seeing the random garbage connections that every server on the Internet has to put up with. |
alright cool so I don't need to really worry about anything if i am running an up to date apache version.
|
alright cool so I don't need to really worry about anything if i am running an up to date apache version.
No, that's not completely true. MS3FGX' reply isn't complete. Quote:
Quote:
The LQ FAQ: Security references can help you with that. When you're done with the basics look at post #6 about web application security. If you look at web application security w/o applying the basics your efforts are for naught. |
All times are GMT -5. The time now is 08:04 PM. |