GET /w00tw00t.at.ISC.SANS.DFind:) HTTP/1.1

You have seen the following in your Apache or your web server’s logs for your websites: xx.xx.xx.xx – – [xx/xx/xxxx:18:56:22 +0300] “GET /w00tw00t.at.ISC.SANS.test0:) HTTP/1.1” 400 166 “-” “-” xx.xx.xx.xx – – [xx/xx/xxxx:06:18:21 +0300] “GET /w00tw00t.at.ISC.SANS.test0:) HTTP/1.1” 400 166 “-” “-” xx.xx.xx.xx – – [xx/xx/xxxx:11:41:35 +0300] “GET /w00tw00t.at.ISC.SANS.DFind:) HTTP/1.1” 400 166 “-” “-” xx.xx.xx.xx – – […]

Keep your web site secure

There could be many reasons behind web site security breaches. However it is good practice to follow some security guidelines to keep your website more secure. Following are the few suggestions: [1]¬†First, keep your password secret. If you need to need to share it with other people, do not forget to change it immediately once […]

phpBB 3.0.7 security vulnerability

Recently, phpBB 3.0.7 was released by phpbb.com. They discovered a new security vulnerability in phpBB 3.0.7 version which was not noticed during testing. Following is the original announcement: —————————————————————— We are sorry to announce the immediate release of phpBB 3.0.7-PL1 to address a security issue which was introduced in 3.0.7, unfortunately the issue wasn’t noticed […]

WordPress and mod_security2 issues

ModSecurity is an open source web application firewall. This helps to prevent attacks on websites, SQL injection, command execution via browser etc. However, this may break some application installed in your website. With ModSecurity2, you can not bypass any rule by ID from your .htaccess file. If your WordPress hosting provider has enabled mod_security with […]

Reported Attack Site by Google

You might have seen many web sites marked as “Reported Attack Site!” by Google with following message: “This web site at XXXXX.com has been reported as an attack site and has been blocked based on your security preferences. Attack sites try to install programs that steal private information, use your computer to attack others, or […]

Security vulnerabilities found in HyperVM and LXadmin/Kloxo

Recently, there were multiple security hyperVM discovered in hyperVM and Lxadmin/Kloxo and they had instructed to upgrade hyperVM/Kloxo systems to the latest version as soon as possible. If you have still not upgraded your HyperVM/Kloxo systems then it’s time to upgrade the system. They have not yet posted the vulnerabilities but according to them they […]