Search

Recent Posts

Tags

« Previous Entries Next Entries »

PHP – decoding ‘gzinflate(str_rot13(base64_decode’ hack attempts

Monday, April 9th, 2012

A recent ‘alarm’ about RFI (remote file inclusion)  ‘attacks’ against PHP coded web sites (i.e. any WordPress site) got me curious about some of my log messages.  In this case the web server/PHP application were not compromised due to a somewhat guarded server configuration.  The configuration also ‘captured’ the triple-encoded attack code (some excerpts below.) Continue reading →

Abuse from BingBot – 2012

Tuesday, March 13th, 2012

Stardate errr, ummm, well 3/12/2012 (Monday.) Hopefully this will not persist… I have sent a message via the Bing.com  ‘feedback’ page. I have sent an email via a published bingbot email address. No response from Bing.com after ~15 hours… I have established a ‘503’ response for ALL Bingbot requests. Update 3/15/2012 Late in the day Continue reading →

Banning ‘Bad’ Robots & Crawlers

Saturday, February 4th, 2012

Every now and then I see web traffic spikes due to ‘bad’ web crawlers – So what is a ‘bad bot’ or ‘bad web crawler’ or ‘bad web spider’? Virtual Rights – do we have any? Not really –  I think that we should have expectations of non-abusive access to any resource that we have Continue reading →

WordPress security note – setup-config.php

Wednesday, January 25th, 2012

Limiting access to WordPress /wp-admin/* tools should be a standard approach; since there are so many installation scenarios this might not always be possible so some WordPress specific mod_security rules (see links below) may be more appropriate.  You may also want to consider some of the free WordPress security plugins.  Additional WordPress specific security-related suggestions/discussion Continue reading →

Blocking ssh server attacks (11/2011)

Monday, November 7th, 2011

During the past few days (early November, 2011) I have been seeing a rash of ssh connection attempts.  I did a quick check and I note that others are posting about similar attacks.  The current attack ‘pattern’ is fairly simple: connection attempts are made every few seconds apparent IP addresses source countries vary quite a Continue reading →

« Previous Entries Next Entries »

________________________________________________
YOUR GeoIP Data | Ip: 73.21.121.1
Continent: NA | Country Code: US | Country Name: United States
Region: | State/Region Name: | City:
(US only) Area Code: 0 | Postal code/Zip:
Latitude: 38.000000 | Longitude: -97.000000
Note - if using a mobile device your physical location may NOT be accurate...
________________________________________________

Georgia-USA.Com - Web Hosting for Business
____________________________________