Donald: Apache soll Angriffe erkennen

Beitrag lesen

SELF-Forum

Apache soll Angriffe erkennen

Donald
Informationen zu den Bewertungsregeln

Hallo,

Ich hab einen Apache der eine Webseite betreibt. Ich finde in den error-Logs aber beinahe täglich die Liste der Seiten die aufgerufen wurden um auf Lücken zu scannen:

[Sat Jun 21 04:18:27 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/db
[Sat Jun 21 04:18:28 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/web
[Sat Jun 21 04:18:28 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/PMA
[Sat Jun 21 04:18:28 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/admin
[Sat Jun 21 04:18:28 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/dbadmin
[Sat Jun 21 04:18:29 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/PMA2006
[Sat Jun 21 04:18:29 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/pma2006
[Sat Jun 21 04:18:29 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/sqlmanager
[Sat Jun 21 04:18:29 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/mysqlmanager
[Sat Jun 21 04:18:30 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/p
[Sat Jun 21 04:18:30 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/PMA2005
[Sat Jun 21 04:18:30 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/pma2005
[Sat Jun 21 04:18:30 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/phpmanager
[Sat Jun 21 04:18:30 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/php-myadmin
[Sat Jun 21 04:18:31 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/phpmy-admin
[Sat Jun 21 04:18:31 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/mysql
[Sat Jun 21 04:18:31 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/myadmin
[Sat Jun 21 04:18:31 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/webadmin
[Sat Jun 21 04:18:32 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/sqlweb
[Sat Jun 21 04:18:32 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/websql
[Sat Jun 21 04:18:32 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/webdb
[Sat Jun 21 04:18:32 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/mysqladmin
[Sat Jun 21 04:18:32 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/mysql-admin
[Sat Jun 21 04:18:33 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/phpmyadmin2
[Sat Jun 21 04:18:33 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/phpMyAdmin2
[Sat Jun 21 04:18:33 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/phpMyAdmin-2
[Sat Jun 21 04:18:33 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/php-my-admin
[Sat Jun 21 04:18:33 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/phpMyAdmin-2.2.3
[Sat Jun 21 04:18:34 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/phpMyAdmin-2.2.6
[Sat Jun 21 04:18:34 2008] [error] [client 151.9.70.133] File does not exist: C:/MYSITE_HP/MYSITE_PUBLIC/phpMyAdmin-2.5.1

und so weiter... Seitenweise...

Kann man dem Apache nicht beibringen, dass nach zB 10 Zugriffen mit Fehler von der selben IP die IP für eine Stunde gesperrt werden soll? Das würde die Sache für den Scanner deutlich erschweren, oder?

Gibt es da ein Modul oder eine Extension oder sowas?

Grüsse,

Donald

Beitrag melden
Informationen zu den Bewertungsregeln