Is it possible to hide a servers location on the internet?
Can you make a server appear to be in another country and how would you do it?
Continue reading Is it possible to hide a servers location on the internet?
Category Archives: webserver
Why does Chrome on Windows 7 still display the old root certificate?
Early this morning, I updated (with win-acme) the web server’s (IIS 8.5) SSL certificate due to the known problem of Let’s Encrypt with the expiration of the its root certificate (DST Root CA X3). So almost everything is fine and dandy wit… Continue reading Why does Chrome on Windows 7 still display the old root certificate?
Why does Chrome on Windows 7 still display the old root certificate?
Early this morning, I updated (with win-acme) the web server’s (IIS 8.5) SSL certificate due to the known problem of Let’s Encrypt with the expiration of the its root certificate (DST Root CA X3). So almost everything is fine and dandy wit… Continue reading Why does Chrome on Windows 7 still display the old root certificate?
Someone found an obfuscated path on my website. Is this possible without hacking my site?
I am running a server with Django and Nginx. I tried to hide the admin panel by assigning it a 50digit random string as URL (something like https://mydomain/asidfhifuerbdsi…). Now someone found this URL and I am wondering if this was pos… Continue reading Someone found an obfuscated path on my website. Is this possible without hacking my site?
Suspicious wmiutils.dll Loaded [closed]
I have an IIS server and while monitoring the windows logs I encounter an interesting sysmon log.
It was an Event ID 7: Image loaded log which showed that w3wp.exe loaded wmiutils.dl.
They’re both legitimate versions and not tampered with…. Continue reading Suspicious wmiutils.dll Loaded [closed]
What does this potentially malicious php code do? [duplicate]
Somebody hacked my webserver and uploaded many of the following files with random names in different subdirectories of my webroot. The file looks something like this and – even though I managed to beautify it – I am unable to decipher the … Continue reading What does this potentially malicious php code do? [duplicate]
Exploit DB (Rejetto) Modifying the Script [closed]
I want to use the following exploit: https://www.exploit-db.com/exploits/39161. However, I am facing an issue. The exploit requires me to set up a http server on port 80. However, I cannot use port 80 as I have another another important w… Continue reading Exploit DB (Rejetto) Modifying the Script [closed]
What does this webserver log entry tell me? [migrated]
I am troubleshooting a system failure that occurred this morning and found these log entries shortly prior. In my mind these should be returning 404… right? Should I be concerned?
80.82.76.76 – – [13/Aug/2021:09:20:15 -0400] "GET ht… Continue reading What does this webserver log entry tell me? [migrated]
Confirm User Account Without Exposing IP of Server?
Right now, when a user signs up for a new account on my site, the server sends the user a email verification link.
When the user clicks the verification link, the link redirects to my server to confirm account. However, for security reason… Continue reading Confirm User Account Without Exposing IP of Server?
Does it make sense to configure the web server to deny obviously malicious requests?
I have a Ruby on Rails app behind Nginx. Every once in a while I see requests like GET /phpmyadmin or GET /wp-login.php. Since I don’t have those tools installed, it’s obvious that those are from someone trying to get into my site.
Does it… Continue reading Does it make sense to configure the web server to deny obviously malicious requests?