Jump to content

IPB related Apache error

Owdy

By Owdy
in Classic self-hosted technical help

Recommended Posts

Dmacleo Mentor

Dmacleo

Posted
Posted

there a way to set a mod security rule to automatically and silently block all requests to that file?

if the files not there seems it has to be an external link driving traffic to it right?

Owdy Mentor

Owdy

Posted
  • Author
Posted

there a way to set a mod security rule to automatically and silently block all requests to that file?

if the files not there seems it has to be an external link driving traffic to it right?

Please tell me how to do that :)

Rhett Mentor

Rhett

Posted
Posted

<p>Let's go back to that error then, is it still showing up or just old errors? What is the date of the error? and have you triple checked the file doesn't exist?</p>
<p>&nbsp;</p>
<p>Please paste the full text of the error for clarification.&nbsp;</p>

Owdy Mentor

Owdy

Posted
  • Author
Posted

Yes, still showing up. Latest 3 errors

[Thu Dec 06 22:00:46 2012] [error] [client 195.42.142.18] client denied by server configuration: /home/hoitajat/public_html/foorumi/cache/df.php
[Thu Dec 06 22:02:24 2012] [error] [client 91.203.133.236] client denied by server configuration: /home/hoitajat/public_html/foorumi/cache/df.php
[Thu Dec 06 22:04:38 2012] [error] [client 85.128.214.2] client denied by server configuration: /home/hoitajat/public_html/foorumi/cache/df.php

File isnt there:

post-154454-0-13552400-1354830713_thumb.

Rhett Mentor

Rhett

Posted
Posted

Hello those are someone from those IP's trying to access that file on your site, which is being blocked by your server config, I would double check it doesn't exist and ban those ip's as well, they are looking for exploited sites to execute the code left behind.

You should be good.

Owdy Mentor

Owdy

Posted
  • Author
Posted

Okay, thanks. There are such many ip's.

Seems "attac" is over for now, all day errors, no allmost 1,5 hours nothing.

bfarber Grand Master

bfarber

Posted
Posted

It would be nice, if i could ban automatically everyone whos trying to acces that file.

Your host may be able to do that.

It's also worth noting, if you use the "deny" command in .htaccess and the IP addresses trying to access those files are being denied, that would also account for the error logs. Your host may have even banned the IP addresses at the server level.

Owdy Mentor

Owdy

Posted
  • Author
Posted

That must been some kind sniffing attack or something. Errors totally stopped yesterday. Before silence, many hits per hour.



It's also worth noting, if you use the "deny" command in .htaccess

Those are IPB generated htacces files :)

sijad Rising Star

sijad

Posted
Posted

Hello those are someone from those IP's trying to access that file on your site, which is being blocked by your server config, I would double check it doesn't exist and ban those ip's as well, they are looking for exploited sites to execute the code left behind.

You should be good.

yes i guess, i think your Php Type now is mod_php? you should change it to suphp in your Webserver Config

Owdy Mentor

Owdy

Posted
  • Author
Posted

yes i guess, i think your Php Type now is mod_php? you should change it to suphp in your Webserver Config

Can i use it with APC?

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Invision Community © 2024 IPS, Inc.
×
×
  • Create New...