shad.young at sympatico.ca
Wed Oct 30 13:32:19 EST 2002
No, there are likely Microsoft Frontpage extensions enabled in your
apache.conf file. Turn them off and the problem goes away.
_vti_bin is part of MS script hosting stuff. Frontpage has the neat property
of maintaining link integrity on a developing site and uses _vti* for this
purpose... Sort of like a CVS system.
----- Original Message -----
From: "Brian's Linux Box" <b_mckee at myrealbox.com>
To: <oclug at lists.oclug.on.ca>
Sent: Wednesday, October 30, 2002 1:21 PM
Subject: [oclug]Apache Logs
> Good Afternoon All
> Well, www.bmckee.ca is 'on the air'
> Don't bother running over to look unless you want to look at family
> pictures. Content is pretty thin at the moment. :-)
> At any rate - I looked at the error log for the first time and as
> startled by what looks to me like script kiddie hacking attempts
> For example
> [Sun Oct 27 07:41:42 2002] [error] [client XX.XX.XX.XX] File does not
> [Sun Oct 27 07:42:04 2002] [error] [client XX.XX.XX.XX] File does not
> Somehow I can't see that working on my RedHat system.
> So, judging by how soon these entries started, this obviously is pretty
> Question one - Is there anything I can or should do? I.e. Chase IP
> back to ISP's and report them? Add them to the hosts.deny? Or something
> else? Do any of you that are running webservers take a pro-active
> to entries like these or just do your best to bar the door and ignore
> Second question - can anyone suggest an Apache for neophytes type book -
> preferable one that contains at least a chapter on security?
> oclug mailing list
> oclug at lists.oclug.on.ca
More information about the OCLUG