Home Forums Gamescan Chat42 About
* Login   * Register * FAQ    * Search
It is currently Thu 03-28-2024 12:49PM

All times are UTC - 6 hours




Post new topic Reply to topic  [ 8 posts ] 
Author Message
 Post subject: IT exploit attacks?
PostPosted: Sat 09-06-2008 4:45PM 
Offline
Sergeant

Joined: Sat 09-06-2008 1:33PM
Posts: 21
Location: TJ

Source: MST-PSK Wireless
I am getting some fishy stuff in my apache access logs from a host I assume to be owned by IT (*.srv.mst.edu)
I want to know what you think, are these requests of a malicious nature?
What is IT doing with this server?
Here is the pastebin of the end of /var/log/apache2/access.log
http://pastebin.ca/1195960


Top
 Profile E-mail  
    
 Post subject: Re: IT exploit attacks?
PostPosted: Sat 09-06-2008 5:27PM 
Offline
Sergeant

Joined: Sat 09-06-2008 3:15PM
Posts: 31
Location: TJ North

Source: TJ North
Definitely looks suspicious to me. Pointing out the obvious here, but it looks like they're trying to find SQL injection points.


Top
 Profile E-mail  
    
 Post subject: Re: IT exploit attacks?
PostPosted: Sat 09-06-2008 7:58PM 
Offline
Brigadier General
User avatar

Joined: Fri 07-08-2005 7:47PM
Posts: 1106
Location: Quad

Source: Holtman Hall
That's from nessus, the university's security scanner. It'll poke and prod for vulnerabilities and other random things. It's pretty harmless but very annoying. =D


Top
 Profile  
    
 Post subject: Re: IT exploit attacks?
PostPosted: Sat 09-06-2008 8:00PM 
Offline
Sergeant

Joined: Sat 09-06-2008 1:33PM
Posts: 21
Location: TJ

Source: MST-PSK Wireless
so why does it need to know if my web server has vulnerabilities?
do they plan to attack me?


Top
 Profile E-mail  
    
 Post subject: Re: IT exploit attacks?
PostPosted: Sat 09-06-2008 8:54PM 
Offline
bertowned
bertowned
User avatar

Joined: Sun 08-20-2006 4:26PM
Posts: 2118

Source: Off Campus
no but if your computer became a bot - it could be used to attack other computers on the network.

_________________
BigPeeOn wrote:
Here's the deal: chemistry is the devil.
Anything beyond balancing an chemical equation is black magic.


Top
 Profile  
    
 Post subject: Re: IT exploit attacks?
PostPosted: Sun 09-07-2008 2:38AM 
Offline
post whore
post whore

Joined: Wed 10-05-2005 7:50PM
Posts: 1382
Location: KCMO

Source: Off Campus
demonspork wrote:
so why does it need to know if my web server has vulnerabilities?
do they plan to attack me?


If you had vulnerabilities you'd get some nice nastygrams telling you to fix it or be kicked off the network.

_________________
I have now been banned three times. Join the club :D


Top
 Profile  
    
 Post subject: Re: IT exploit attacks?
PostPosted: Mon 09-08-2008 1:40PM 
Offline
Major
User avatar

Joined: Fri 09-14-2007 3:47PM
Posts: 437
Location: Just behind your left shoulder

Source: Sigma Pi
Quote:
It's pretty harmless but very annoying.
Indeed - since I have an Apache server running most of the time for local testing/development, I simply excluded all requests from the IT's servers from Apache's logs. I figured IT would get all upset if they somehow found out that I had simply blocked their scanning servers at my firewall (which I had done for a while). :p


Top
 Profile  
    
 Post subject: Re: IT exploit attacks?
PostPosted: Mon 09-08-2008 2:47PM 
Offline
Brigadier General
User avatar

Joined: Fri 07-08-2005 7:47PM
Posts: 1106
Location: Quad

Source: Holtman Hall
Cylord wrote:
Quote:
It's pretty harmless but very annoying.
Indeed - since I have an Apache server running most of the time for local testing/development, I simply excluded all requests from the IT's servers from Apache's logs. I figured IT would get all upset if they somehow found out that I had simply blocked their scanning servers at my firewall (which I had done for a while). :p


A couple people have blocked nessus. Just keep your shit up to date. :)


Top
 Profile  
    
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 8 posts ] 

All times are UTC - 6 hours


Who is online

Users browsing this forum: Google [Bot] and 6 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
cron
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group