1. mod_security book review

    Some time ago Packt Publishing published a book about mod_security. Since I use mod_security very actively to protect servers, I decided to get this book and write a review.

    Here it is.

    231 views, 1 comment(s) , add a comment
  2. Let's do something stupid!

    Let's try some stupid HTTP requests to my server For example, this...

    736 views, 8 comment(s) , add a comment
  3. Persisting Korean spider, hack attempts

    After yesterday's incident with a stupid bot, I thought I might give you more insight on what happens on the Net...

    550 views, No comments , add a comment
  4. Microsoft's msnbot acts crazy

    Today I saw a number of requests from various Microsoft Addresses with msnbot/20b as user agent.

    This msnbot behaves wrong. It requests sites that neither existed, nor exist, nor will ever exist on this server. Here is an example (caught by mod_security2)...

    323 views, No comments , add a comment
  5. A grave mistake with passwords

    One grave security–related mistake that I saw twice this month was related to passwords.

    You are aware of the TYPO3 vulnerability that allows attackers to read localconf.php file. Lots of sites were attacked and hackers got passwords to some of them.

    There is one thing that could make matters much worse and let hackers to exercise a full control over your web site. This thing is: using the same user name and password pair for both MySQL database and ssh login.

    It may sound incredible but it is truth. Some people (and even some hosting...

    443 views, 3 comment(s) , add a comment
  6. A hammer for my DNS

    My DNS in under attack for two weeks already. Details inside.

    1718 views, 15 comment(s) , add a comment
  7. Toata dragostea mea pentru diavola

    After the recent security issues with TYPO3 I keep an especially close watch on my servers' mod_security logs. jumpurl atacks come from many IP addresses and they are already bore me. However today I saw something new and interesting...

    7221 views, 17 comment(s) , add a comment

Displaying results 1 to 7 out of 15

1

2

3

Next >

This site is © Dmitry Dulepov, 2006-2009. Information on this site can be used in your work free of charge, though a donation would be very welcome!

Quoting is welcome but the link to this site is required. Translation and republishing requires an explicit permission.

dmitry-dulepov.com
"Fantastic blog!" (from TYPO3 mailing lists)