On 1/28/06, James R. Hay <[EMAIL PROTECTED]> wrote:
>
> Ok, so my intuition that somewhere I should find a corresponding entry in
> an access log for one of the websites is correct, presumably somewhere
> near the time of the timestamp from the error log.
Yes.
> So, this goes more into PHP than A
Ok, so my intuition that somewhere I should find a corresponding entry in
an access log for one of the websites is correct, presumably somewhere
near the time of the timestamp from the error log.
So, this goes more into PHP than Apache but would presumably suggest
either a script allowing an
On 1/28/06, James R. Hay <[EMAIL PROTECTED]> wrote:
> The entries below were found in the Apache error log while investigating on
> apparent exploit. Thus far I have not found any corresponding access log
> entry
> and I am wondering if this is an indication that the intruder gained a shell?
Clo
Hi folks,
I sent this last night but didn't see it come through and I realize that I
did not mention that this occurred on a linux server running apache
1.3.34.
Thanks for any advice or suggestions.
Thanks,
Jim.
James R. Hay[EMAIL PROTECTED]
Hay-Net Networks
P.