Linux-Bulgaria.ORG

навигация

начало

пощенски списък

архив на групата

По Дата

Re: lug-bg: httpd secirity

Subject: Re: lug-bg: httpd secirity
From: lazcorp@email.domain.hidden (LazCorp)
Date: Mon, 09 Jun 2003 20:49:53 +0300 (EEST)


öèòèðàì  Stefan Gurdev <steve_lug_at_abv.bg>:

<em class="quotelev1">> Vurzan sum kum City Lan mreja. Prez nqkolko dni edin ot hostovete v
<em class="quotelev1">> mrejata neshto si igrae s men. Eto log faila na apache-to:
<em class="quotelev1">> 
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:24 +0300] "GET ///quote.html 
HTTP/1.0"
<em class="quotelev1">> 404 272 "-" "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:24 +0300] "GET
<em class="quotelev1">> /cgi-bin/cal_make.pl?p0=../../../../../../../../../../../../etc/passwd%
00
<em class="quotelev1">> HTTP/1.0" 404 279 "-" "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:24 +0300] "HEAD /cgi-bin/dcboard.cgi
<em class="quotelev1">> HTTP/1.0" 404 0 "-" "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:24 +0300] "GET
<em class="quotelev1">> /cgi-bin/nph-maillist.pl HTTP/1.0" 404 283 "-" "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:24 +0300] "GET
<em class="quotelev1">> /cgi-bin/talkback.cgi?article=../../../../../../../../etc/passwd%
00&action=view&matchview=1
<em class="quotelev1">> HTTP/1.0" 404 280 "-" "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:24 +0300] "GET
<em class="quotelev1">> /cgi-bin/ustorekeeper.pl?
command=goto&file=../../../../../../../../../../etc/passwd
<em class="quotelev1">> HTTP/1.0" 404 283 "-" "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:24 +0300] "HEAD /cgi-bin/ikonboard/
<em class="quotelev1">> HTTP/1.0" 404 0 "-" "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:25 +0300] "HEAD /foldoc/ HTTP/1.0" 
404
<em class="quotelev1">> 0 "-" "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:25 +0300] "HEAD /cgi-bin/adcycle/
<em class="quotelev1">> HTTP/1.0" 404 0 "-" "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:25 +0300] "GET
<em class="quotelev1">> /cgi-bin/store.cgi?StartID=../etc/passwd%00.html HTTP/1.0" 404 277 "-"
<em class="quotelev1">> "-"
<em class="quotelev1">> 192.168.1.3 - - [08/Jun/2003:23:06:25 +0300] "HEAD /cgi-
bin/bbs_forum.cgi
<em class="quotelev1">> HTTP/1.0" 404 0 "-" "-"
<em class="quotelev1">> 
<em class="quotelev1">> 
<em class="quotelev1">> Predpolagam hosta 192.168.1.3 e zarazen s nqkakuv virus, no vse pak 
nqkoi
<em class="quotelev1">> imal li e podoen problem s tova neshto. Vuzmojno li e tova da e exploit
<em class="quotelev1">> ili neshto ot tozi sort!!!
<em class="quotelev1">> 
<em class="quotelev1">> Blagodarq predvaritelno!!!
<em class="quotelev1">> 
<em class="quotelev1">> P.S: Znam che nivoto v tozi mail group e mnogo visoko. Tozi posting moje
<em class="quotelev1">> bi ne e za tuk, pisah v nqkoi forumi no taka i ne poluchih kompetenten
<em class="quotelev1">> otgovor!
<em class="quotelev1">> 
<em class="quotelev1">> S uvajenie, Stefan!
<em class="quotelev1">> 

/cgi-bin/cal_make.pl?p0=../../../../../../../../../../../../etc/passwd%00
/cgi-bin/talkback.cgi?article=../../../../../../../../etc/passwd%
00&action=view&matchview=1
/cgi-bin/ustorekeeper.pl?
command=goto&file=../../../../../../../../../../etc/passwd

Potrebitelq ot tozi host se opitwa da hakne Apache-to ti
Nqma kakwo da se symnqwash w towa!!!
Prawi opiti s s powecheto izwestni bygowe na Apache.
../../../../../../../../../../../../ -  s towa se podsiurqwa che shte 
otide w glawnata papka /
posle utiwa e /etc/passwd i se opitwa da iwede parolite ti
chesno kazano towa e edin ot nai naludnichawite nachini za hakwane...za 
da ti dekriptira pass (oswen ako ti ne si slojil nqkoq smeshna parola) 
ili da izpolzwa baza danni ot kriptirani pasowe i da srywnqwa..mislq che 
wseki znae za tezi programki :)
mislq che ako si slagash dobri stabilni pasowe na  mashinata nqma da 
imash nikakwi problemi nito da se pritesnqwash ot podobni nachinaniq.
i wse pak mojesh da adnesh edno prawilo wyw firewall-a si da dropish 
zaqwkite ot tozi kompiutar :)))))
Èãðàé è ñïå÷åëè ñ Àâòîìîáèëåí Ñàëîí Ñîôèÿ 2003 - http://auto.dir.bg
-------------------------------------------------------------------
Íàïðàâè ñè àäðåñ â mail.bG - http://mail.bg/new/

============================================================================
A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers).
http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora
To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html
============================================================================

Във връзка с:
- Re: lug-bg: httpd secirity
  - Изпратено от: micro@email.domain.hidden (Plamen Tonev)
- RE: lug-bg: httpd secirity
  - Изпратено от: bivol@email.domain.hidden (Peter An. Zyumbilev)

Относно:
- lug-bg: httpd secirity
  - Изпратено от: steve_lug@email.domain.hidden (Stefan Gurdev)

Предишно по дата: Re: lug-bg: openSSH - barz vapros
Следващо по дата: Re: lug-bg: Seminar 2003 -WEB
Предишно по тема: Re: lug-bg: httpd secirity
Следващо по тема: RE: lug-bg: httpd secirity
Индекс:
- По дата
- По тема

наши приятели

линукс за българи
http://linux-bg.org

FSA-BG
http://fsa-bg.org

OpenFest
http://openfest.org

FreeBSD BG
http://bg-freebsd.org

KDE-BG
http://kde.fsa-bg.org/

Gnome-BG
http://gnome.cult.bg/

проект OpenFMI
http://openfmi.net

NetField Forum
http://netField.ludost.net/forum/

Linux-Bulgaria.ORG