|
|
|
|
||||
|
Welcome to the GoFuckYourself.com - Adult Webmaster Forum forums. You are currently viewing our boards as a guest which gives you limited access to view most discussions and access our other features. By joining our free community you will have access to post topics, communicate privately with other members (PM), respond to polls, upload content and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact us. |
 |
|
|||||||
| Discuss what's fucking going on, and which programs are best and worst. One-time "program" announcements from "established" webmasters are allowed. |
|
|
Thread Tools |
08-02-2003, 08:05 PM
|
#1 |
|
Confirmed User
Join Date: Nov 2002
Posts: 880
|
Be warned about "/sumthin"
I just noticed that on my server logs.
"GET /sumthin HTTP/1.0" That returns detailed server information by headers. It looks like that's some kind of trojan looking for some specific exploits on server software. There is too little information on the web right now but that might be serious in future. It seems like one of the possible solutions might be .htaccess protection for that request. I advice you to check your logs and be aware just in case. |
|
|
|
08-02-2003, 08:06 PM
|
#2 |
|
So Fucking Banned
Join Date: Jul 2002
Location: Dis
Posts: 4,751
|
interesting
|
|
|
|
|
08-02-2003, 08:12 PM
|
#3 |
|
Confirmed User
Join Date: Mar 2003
Location: South-East of the Border of Disorder
Posts: 5,093
|
Wasn't there something like that going around last year or so when ccBill got hacked?
Someone had access to a lot of servers and were dropping egg bots onto the client boxes. I don't know if any damage was done, I never got hit. Is this similar? Hmm. AST 121760557
__________________
 ALL Domains and Websites are GOING AWAY NOW! Ask me! Many great domains, mainstream and adult, some complete sites with databases, some names with traffic and PR, some investment quality names. Come take a look! { Traffic Orders: Please go here } .:: SHARPEN the Elite - BURN the leftovers! Ooh-Rah!! ::. |
|
|
|
|
08-02-2003, 08:24 PM
|
#4 | |
|
Confirmed User
Join Date: Nov 2002
Posts: 7,761
|
Quote:
Sumthin tells me you should be making sure your SSL enabled webservers are (and have been) using a safe version of OpenSSL instead of worrying how to block requests for /sumthin If your server responses with something other than your 404 page when you hit https://www.yourserver.com/sumthin -- then you have problems & should contact your system administrator for a complete reinstallation. |
|
|
|
|
|
08-03-2003, 04:32 AM
|
#5 | |
|
Confirmed User
Join Date: Nov 2002
Posts: 880
|
Quote:
 I'm administrating it myself and all software is up to date. And you are right, there was attacks to some servers with old version OpenSSL right after checking them. One more thing to do would be putting those to httpd.conf file. ServerTokens prod ServerSignature off Those makes apache to stop giving software & versions at header. It just gives "Apache" instead of detailed info. Of course that is not a protection but it feels better when it doesn't gives them what they want. |
|
|
|
|
|
08-03-2003, 05:00 AM
|
#6 | |
|
Confirmed User
Join Date: May 2003
Posts: 1,025
|
tru tru
Quote:
|
|
|
|
|
|
08-03-2003, 05:40 AM
|
#7 |
|
Entrepreneur
Join Date: Oct 2002
Location: USA
Posts: 31,429
|
Can't we all just get along and quit hacking servers . . .
__________________
 If you would like to develop your domains, you can lease inexpensive foreign laborfrom the leaders in the field at iWebmasters.com TO LOWER YOUR COSTS AND INCREASE YOUR PRODUCTION! *** *** *** *** *** *** *** *** *** *** *** *** Domains Adult News KRL's Newsletter Biz Tips Just Listed Domains
|
|
|
|
|
08-03-2003, 06:36 AM
|
#8 |
|
Confirmed User
Join Date: Jan 2003
Location: Earth
Posts: 303
|
What if hackers and scam doesn't exist? It would be a boring world
__________________
don't even think about it |
|
|
|
