-   Linux - Security (
-   -   awstats (

comprookie2000 05-01-2005 11:37 AM

In following the error_log I've noticed, lets call them "malicious types" trying awstats, and admin.There is nothing there.Is there a way I can freak them out a little bit?

Capt_Caveman 05-01-2005 02:43 PM

There is some type of automated scanner in the wild that probes webservers looking vulnerable awstats versions (see vuln info here). There was a brief write-up at SANS recently where someone modified their httpd.conf to interact with the scanner. It might give you some ideas, you can find the write-up here.

comprookie2000 05-01-2005 05:55 PM

Thanks for the reply Capt_Caveman.

All times are GMT -5. The time now is 09:40 PM.