Article 15933 at 09/08/25 22:44:54 From: webhosting (at mark) yahoo.com Subject: [coba-e:15933] Re: DenyHost/DFix

Index: [Article Count Order] [Thread]

Date:  Tue, 25 Aug 2009 06:41:37 -0700 (PDT)
From:  Dan Kriwitsky <webhosting (at mark) yahoo.com>
Subject:  [coba-e:15933] Re: DenyHost/DFix
To:  coba-e (at mark) bluequartz.org
Message-Id:  <834911.34865.qm (at mark) web65611.mail.ac4.yahoo.com>
In-Reply-To:  <AE66B107E5FA463A9A8908EE5D0A7743@HP9925NR>
X-Mail-Count: 15933


> Greg, is it possible for your
> programs to look at the error_log and spot
> users who are obvious trolling your server looking for
> vulnerabilities? Look
> at this 5 seconds of my error_log.� Same IP address,
> just trolling:
> 
> [Mon Aug 24 02:21:00 2009] [alert] [client 74.205.105.245]
> /home/.sites/70/site4/web/.htaccess: Options not allowed
> here

Not exactly related, but it's not a big surprise to me that's a Rackspace IP since a lot of the web sites advertised in spam that I get are hosted there.

-- 
Dan Kriwitsky