Joined: Sat 09-06-2008 1:33PM Posts: 21 Location: TJ
Source: MST-PSK Wireless
I am getting some fishy stuff in my apache access logs from a host I assume to be owned by IT (*.srv.mst.edu) I want to know what you think, are these requests of a malicious nature? What is IT doing with this server? Here is the pastebin of the end of /var/log/apache2/access.log http://pastebin.ca/1195960
That's from nessus, the university's security scanner. It'll poke and prod for vulnerabilities and other random things. It's pretty harmless but very annoying. =D
Joined: Fri 09-14-2007 3:47PM Posts: 437 Location: Just behind your left shoulder
Source: Sigma Pi
Quote:
It's pretty harmless but very annoying.
Indeed - since I have an Apache server running most of the time for local testing/development, I simply excluded all requests from the IT's servers from Apache's logs. I figured IT would get all upset if they somehow found out that I had simply blocked their scanning servers at my firewall (which I had done for a while). :p
Indeed - since I have an Apache server running most of the time for local testing/development, I simply excluded all requests from the IT's servers from Apache's logs. I figured IT would get all upset if they somehow found out that I had simply blocked their scanning servers at my firewall (which I had done for a while). :p
A couple people have blocked nessus. Just keep your shit up to date.
Users browsing this forum: No registered users and 8 guests
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum