The Daily Static
  The Daily Static
UF Archives
Register
UF Membership
Ad Free Site
Postcards
Community
Geekfinder
UFie Gear
Advertise on UF
Forum Rules
& FAQ

Username

Password


Create a New Account

  
 

Back to UserFriendly Strip Comments Index
To BOFH or not to BOFH by UGuardian 2007-10-05 20:52:35
I just happened to notice that there are a few people that have been trying to hack (via script kiddie methods) my site. I anticipated most of the things they are trying and coded the scripts to deal with them.

What I didn't expect was for them to look for installations of phpbb or other popular (and exploitable) scripts. None of those directories exist, nor are they linked to or referenced anywhere.

The fun part is that they are obviously casing the site: some amusingly malformed URLs are in the logs. Also, they keep revisiting these non-existent URLs as if they are expecting them to magically work if they visit them often enough.

They have yet to do any harm, but I'm rather tempted to set one or more of those non-existent directories to be a redirect to something recently mentioned on Two Lumps.

There's only about 4 IPs, so I'll probably just blackhole 'em all.
[ Reply ]
  Can we watch? {:-)<=| Pleeees? by taitano2007-10-05 21:01:37
  I vote BOFH! (n/t) by tully2007-10-05 21:03:16
  bofh! bofh! *evil grin* by Freakazoid2007-10-05 22:36:07
    Why limit the damage? (n/t) by taitano2007-10-05 23:51:10
  *checks recent Two Lumps* Oh, yeah, that. Do it! (n/t) by josie_beller2007-10-05 23:26:48
    Then force their browser to homepage that (n/t) by taitano2007-10-05 23:56:27
  Go for it. Maybe fake up some "security files" by Hieraco2007-10-05 23:59:13

 

[Todays Cartoon Discussion] [News Index]

Come get yer ARS (Account Registration System) Source Code here!
All images, characters, content and text are copyrighted and trademarks of J.D. Frazer except where other ownership applies. Don't do bad things, we have lawyers.
UserFriendly.Org and its operators are not liable for comments or content posted by its visitors, and will cheerfully assist the lawful authorities in hunting down script-kiddies, spammers and other net scum. And if you're really bad, we'll call your mom. (We're not kidding, we've done it before.)