Invision Community 4: SEO, prepare for v5 and dormant account notifications Matt November 11, 2024Nov 11
December 6, 201212 yr there a way to set a mod security rule to automatically and silently block all requests to that file? if the files not there seems it has to be an external link driving traffic to it right?
December 6, 201212 yr Author there a way to set a mod security rule to automatically and silently block all requests to that file? if the files not there seems it has to be an external link driving traffic to it right? Please tell me how to do that :)
December 6, 201212 yr was afraid you would ask that :P I honestly cannot remember, I'll do some googling :)
December 6, 201212 yr <p>Let's go back to that error then, is it still showing up or just old errors? What is the date of the error? and have you triple checked the file doesn't exist?</p> <p> </p> <p>Please paste the full text of the error for clarification. </p>
December 6, 201212 yr Author Yes, still showing up. Latest 3 errors [Thu Dec 06 22:00:46 2012] [error] [client 195.42.142.18] client denied by server configuration: /home/hoitajat/public_html/foorumi/cache/df.php [Thu Dec 06 22:02:24 2012] [error] [client 91.203.133.236] client denied by server configuration: /home/hoitajat/public_html/foorumi/cache/df.php [Thu Dec 06 22:04:38 2012] [error] [client 85.128.214.2] client denied by server configuration: /home/hoitajat/public_html/foorumi/cache/df.php File isnt there:
December 6, 201212 yr Author Weird, those erros came in every couple of minutes, now allmost one hour of silence.
December 6, 201212 yr Hello those are someone from those IP's trying to access that file on your site, which is being blocked by your server config, I would double check it doesn't exist and ban those ip's as well, they are looking for exploited sites to execute the code left behind. You should be good.
December 6, 201212 yr Author Okay, thanks. There are such many ip's. Seems "attac" is over for now, all day errors, no allmost 1,5 hours nothing.
December 6, 201212 yr Author It would be nice, if i could ban automatically everyone whos trying to acces that file.
December 7, 201212 yr It would be nice, if i could ban automatically everyone whos trying to acces that file. Your host may be able to do that. It's also worth noting, if you use the "deny" command in .htaccess and the IP addresses trying to access those files are being denied, that would also account for the error logs. Your host may have even banned the IP addresses at the server level.
December 7, 201212 yr Author That must been some kind sniffing attack or something. Errors totally stopped yesterday. Before silence, many hits per hour. It's also worth noting, if you use the "deny" command in .htaccess Those are IPB generated htacces files :)
December 8, 201212 yr Hello those are someone from those IP's trying to access that file on your site, which is being blocked by your server config, I would double check it doesn't exist and ban those ip's as well, they are looking for exploited sites to execute the code left behind. You should be good. yes i guess, i think your Php Type now is mod_php? you should change it to suphp in your Webserver Config
December 8, 201212 yr Author yes i guess, i think your Php Type now is mod_php? you should change it to suphp in your Webserver Config Can i use it with APC?
Archived
This topic is now archived and is closed to further replies.