Smart questions
Smart answers
Smart people
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Member Login
Remember Me
Forgot Password?
Join Us!

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips now!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!
Join Tek-Tips
*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

LINK TO THIS FORUM!

Add Stickiness To Your Site By Linking To This Professionally Managed Technical Forum.
Just copy and paste the
code below into your site.

Tek-Tips LinkedIn® Group

Partner With Us!

"Best Of Breed" Forums Add Stickiness To Your Site
Partner Button
(Download This Button Today!)

Feedback

"...I've learned more from your forums in 3 days than 3 months at school and on the job combined..."
More...

Geography

Where in the world do Tek-Tips members come from?
Click Here To Find Out!

Tek-Tips Shirts!

Get Tek-Tips Swag
Get your
Tek-Tips Forums
SWAG here!
Home > Forums > MIS/IT > Security Solutions > -Security, hacker detection & forensics Forum

Strange Error 404s

thread83-1667728
Read More Threads Like This One
madanthrax (IS/IT--Management)
24 Nov 11 16:29
Hi all,

I hope I have got the right forum for this....

I have a custom Error 404 page which is asp. I capture the referrer and the destination URL plus the remote IP address and insert it in a SQL database. This great for finding internal bad links and bad links from external sites plus missing files on my site.

Lets say MySite.com/default.asp is my homepage. Recently there have been thousands of records where the referrer and destination are  MySite.com/index.php. Having an MS IIS server this seems ridiculous.

I see lots of strange URLs probably testing my security but for the life of me I can't understand the point of this index.php thing. Has anybody seen this as well or has any theories please?  

"Nothing is impossible until proven otherwise"
Noway2 (Programmer)
29 Nov 11 9:16
Index.php would be the default page for your site if your site is PHP based.  My first reaction is that something is simply asking for this file.  Something in this case could be a reconnaissance script, trying to determine if you are running PHP.  Personally, I wouldn't worry too much about looking for this particular file.  If they start trying to hit other things, typically PHPMyAdmin, then it is a sign that they have more malicious intentions.

The real bottom line is that there is little that you can do about these types of attempts, other than not make them available to the public and use utilities that will ban them should they make too many scan attempts.
 
madanthrax (IS/IT--Management)
4 Dec 11 6:45
Thanks for the reply, will stop worrying.

"Nothing is impossible until proven otherwise"
Read More Threads Like This One

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Back To Forum

Back To -Security, hacker detection & forensics

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close