Some guys try to hack my web site?
-
Hello, the CPians around the world.;) After I publish my company web site :cool:and check the log file of IIS, I found that some guys sends unexpected command to my web server.
/msadc/..%5c../..%5c../..%5c/.. ../.. ../.. ../winnt/system32/cmd.exe /scripts/..%2f../winnt/system32/cmd.exe /_vti_bin/..%5c../..%5c../..%5c../winnt/system32/cmd.exe ....In fact, I a little guess that someone may try to hack my web site, but after I found this log, this is really scared to me.:mad: Or, simply I misunderstand the above command by GET or POST. Anyway, does anyone have the same experience? -Masaaki Onishi- eCoolSoft, LLC ASP.NET and Windows development by C# and MFC. http://www.ecoolsoft.com -
Hello, the CPians around the world.;) After I publish my company web site :cool:and check the log file of IIS, I found that some guys sends unexpected command to my web server.
/msadc/..%5c../..%5c../..%5c/.. ../.. ../.. ../winnt/system32/cmd.exe /scripts/..%2f../winnt/system32/cmd.exe /_vti_bin/..%5c../..%5c../..%5c../winnt/system32/cmd.exe ....In fact, I a little guess that someone may try to hack my web site, but after I found this log, this is really scared to me.:mad: Or, simply I misunderstand the above command by GET or POST. Anyway, does anyone have the same experience? -Masaaki Onishi- eCoolSoft, LLC ASP.NET and Windows development by C# and MFC. http://www.ecoolsoft.comThis is what those Web Worms like CodeRed and so on do. Make sure you install all the security patches and you'll be alright. It is not hackers it's computers that are already infected with worms...
-
Hello, the CPians around the world.;) After I publish my company web site :cool:and check the log file of IIS, I found that some guys sends unexpected command to my web server.
/msadc/..%5c../..%5c../..%5c/.. ../.. ../.. ../winnt/system32/cmd.exe /scripts/..%2f../winnt/system32/cmd.exe /_vti_bin/..%5c../..%5c../..%5c../winnt/system32/cmd.exe ....In fact, I a little guess that someone may try to hack my web site, but after I found this log, this is really scared to me.:mad: Or, simply I misunderstand the above command by GET or POST. Anyway, does anyone have the same experience? -Masaaki Onishi- eCoolSoft, LLC ASP.NET and Windows development by C# and MFC. http://www.ecoolsoft.comApply all patches and use IIS Lockdown[^]. Jon Sagara Hi! I'm Melanoma, Moley Russell's wart. -- Uncle Buck
-
Hello, the CPians around the world.;) After I publish my company web site :cool:and check the log file of IIS, I found that some guys sends unexpected command to my web server.
/msadc/..%5c../..%5c../..%5c/.. ../.. ../.. ../winnt/system32/cmd.exe /scripts/..%2f../winnt/system32/cmd.exe /_vti_bin/..%5c../..%5c../..%5c../winnt/system32/cmd.exe ....In fact, I a little guess that someone may try to hack my web site, but after I found this log, this is really scared to me.:mad: Or, simply I misunderstand the above command by GET or POST. Anyway, does anyone have the same experience? -Masaaki Onishi- eCoolSoft, LLC ASP.NET and Windows development by C# and MFC. http://www.ecoolsoft.comHello, the CPians around the world. Thank you for your informations.:cool: -Masaaki Onishi- eCoolSoft, LLC ASP.NET and Windows development by C# and MFC. http://www.ecoolsoft.com