hello,
I found this message in my logwatch
Attempts to use known hacks by 1 hosts were logged 3 time(s) from:
127.0.0.1: 3 Time(s)
A total of 1 sites probed the server
127.0.0.1
I hope know what does that mean.
Thank you for you help.
for information i use 3 server (Centos 6):
1: It named WAF ==> it contains : apache only (mod_proxy,firewall,
mod_security...)
2: www.site1.ma ==> web server (tomcat 7) : java application
3: www.site2.ma ==> web server (tomcat 7) : java application
--------------
- server -
- apache -
----------------
-
- (mod_proxy)
-----------------------------
- -
- -
- -
-------------- --------------
- server - - server -
- tomcat1 - - tomcat2 -
---------------- ----------------
Thank you for your help.
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
[email protected]
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
