Apache – Page 22 – WindowsTechs.com

Some bots are trying to locate files on server, how to protect?

Posted on July 15, 2019 by Hashu

In my apache error log I am getting these errors (there are 100s of these lines), most of these IPs are from China.

I guess some bots are trying to find vulnerable files. Is there any way to protect the server against such … Continue reading Some bots are trying to locate files on server, how to protect?→

In my webserver I found may PHP with random strings

Posted on July 4, 2019 by Bhuvanesh

In one of my webserver, I found some new folders got created and many files are there, In access log I found many files access from that folder.

Sample file:

After this strings:

But it I copy paste this string to a not… Continue reading In my webserver I found may PHP with random strings→

Unkown attack on linux server wordpress website

Posted on June 23, 2019 by serversetup co

I have a WordPress site. Recently under a serious DDoS attack.

For this WordPress site I use nginx, varnish and apache in the backend.

A part of access log shows this:

24.41.213.36 – – [23/Jun/2019:12:58:13 +0430] “GET / … Continue reading Unkown attack on linux server wordpress website→

TSA server with OpenSSL

Posted on June 12, 2019 by jlanza

From OpenSSL documentation of openssl-ts command:

HTTP server support is provided in the form of a separate apache module

Does anybody know which module is the one? I haven’t found any module to enable a TSA server.

Continue reading TSA server with OpenSSL→

How to access a shared webhosting webpage without the domainname?

Posted on June 9, 2019 by takecare

I would like to know how one can access a shared webhosted webpage without using the domainname. If i directly access the IP adress I get Apache is functioning normally

I need to access it since the page uses cloudflare and… Continue reading How to access a shared webhosting webpage without the domainname?→

Do URLs used in JavaScript AJAX GET calls need to be sanitized through Apache when there is no server side scripting or database involved?

Posted on June 2, 2019 by Xandor

I am aware that any data coming into a server from a client should be handled safely (as in sanitized, whitelisted, etc.) but I had slapped together a very simple system that pulled file contents getting the file name from th… Continue reading Do URLs used in JavaScript AJAX GET calls need to be sanitized through Apache when there is no server side scripting or database involved?→

The cryptominer that kept coming back

Posted on May 30, 2019 by John E Dunn

A Monero cryptominer made a home on an Apache Tomcat server and just wouldn’t stay away. Continue reading The cryptominer that kept coming back→

Sucuri detects malware on wordpress but I can’t find the malicious code

Posted on May 30, 2019 by Alison Lopez

Yesterday I got a report asking us to check some wordpress website because the person’s antivirus blocked said web.

I ran the Sucuri Site Check and it indeed detects malware:

“Known javascript malware: malware.injection?39”

<!–codes… Continue reading Sucuri detects malware on wordpress but I can’t find the malicious code→

how use IFrames in my site for surfing Ads by site users without risking?

Posted on May 25, 2019 by edopro

How to use ip Iframe on my site without risking for surfing ads by site users, safely?
Is iFrame a good way?

What methods can be used for security?
Displ… Continue reading how use IFrames in my site for surfing Ads by site users without risking?→

Joomla and WordPress Found Harboring Malicious Redirect Code

Posted on May 24, 2019 by Tom Spring

New .htaccess injector threat on Joomla and WordPress websites redirects to malicious websites. Continue reading Joomla and WordPress Found Harboring Malicious Redirect Code→