[thelist] Fun with Security Holes and Log Files
Ben Dyer
ben_dyer at imaginuity.com
Tue Jul 24 09:54:43 CDT 2001
Just curious...with all this garbage with Code Red (I found several
attempts at attacks on some of our sites), what are some other phrases/text
to look for in a log file to signify standard IIS attacks?
I've got in my list to look for:
.htr
::$DATA
scripts (for the ..%c1%9c.. variants)
_vti_cnf
and now .ida
Any other common attacks/variants that I should be looking for?
--Ben
<!-----------------------
Ben Dyer
Senior Internet Developer
Imaginuity Interactive
http://www.imaginuity.com
//---------------------->
More information about the thelist
mailing list