Tech Why do bots keep going after the same site with the same exploit? - GoFuckYourself.com

lezinterracial · 11-01-2014, 04:01 AM

Why do bots keep going after the same site with the same exploit?
They hit every hour from the same domain trying to hit /mysqladmin/scripts/setup.php

Are the URLs feed in from a file? And the bad guys keep using the same file? Never deleting the urls were already processed?

AdultKing · 11-01-2014, 03:09 PM

Most of these attempted attacks are highly automated, if you run an SSH server for example you can see thousands of brute force attempts a day, the same goes for web exploits - lots of hackers using lots of automated scripts trying every IP address that returns as a HTTP server.

lezinterracial · 11-02-2014, 12:53 AM

Quote:

Originally Posted by AdultKing

Most of these attempted attacks are highly automated, if you run an SSH server for example you can see thousands of brute force attempts a day, the same goes for web exploits - lots of hackers using lots of automated scripts trying every IP address that returns as a HTTP server.

Thanks. Just seems odd, How they just keep trying and trying. And nobody tries to stop them.

InfoGuy · 11-02-2014, 02:38 AM

It's your job as a webmaster and/or your server admin to stop them. Use .htaccess to 403 requests for common exploits like admin, install, setup, etc.

11-01-2014, 04:01 AM	#1
lezinterracial Confirmed User Industry Role: Join Date: Jul 2012 Posts: 3,068	Why do bots keep going after the same site with the same exploit? Why do bots keep going after the same site with the same exploit? They hit every hour from the same domain trying to hit /mysqladmin/scripts/setup.php Are the URLs feed in from a file? And the bad guys keep using the same file? Never deleting the urls were already processed? __________________ Live Sex Shows

11-02-2014, 02:38 AM	#4
InfoGuy 80/20 Rule Industry Role: Join Date: Apr 2010 Location: Los Angeles Posts: 3,051	It's your job as a webmaster and/or your server admin to stop them. Use .htaccess to 403 requests for common exploits like admin, install, setup, etc. __________________ Support American Heroes \| How Bad is My Batch? \| Vaccine Deaths & Adverse Reactions \| Free Speech Coalition \| <WARNING> ePayService / Guerra Capital, INC / MTACC payments \| Flirt4Free Fucks their Affiliates \| Don't do business with piece of shit Andy Alvarez from Webmaster Central / VR3000, who said: "If it was up to me, they would have shot all 30,000 of those country loving shitheads"

11-01-2014, 03:09 PM	#2
AdultKing Raise Your Weapon Industry Role: Join Date: Jun 2003 Location: Outback Australia Posts: 15,601	Most of these attempted attacks are highly automated, if you run an SSH server for example you can see thousands of brute force attempts a day, the same goes for web exploits - lots of hackers using lots of automated scripts trying every IP address that returns as a HTTP server.