On Thu, 20 Sep 2001, Kham Vue wrote:
> Glen,
>
> I have converted your shell script into a PHP web page.
>
> For those that are interested, just place the script on your Cobalt server.
>
I am getting tons of the cmd.exe scans too, so I added the following:
This server has received <B>
<?system("cat /usr/local/apache/logs/access_log | grep 'cmd.exe'|wc-l")?>
</B> scans for the new <i> "cmd.exe" </i> from <b>
<?system("cat /usr/local/apache/logs/access_log | grep 'cmd.exe' | cut -d
'' -f2 | sort | uniq | wc -l");?>
</b> different IP Addresses!!!!
change the path to match your machine.
--
Rik Thomas
[EMAIL PROTECTED] http://SmartBackups.com
Is your Website Smart? Automated Website backups. Free 30Day trial!
Ph: 302.672.7314 Fx: 302.672.7315 ICQ: 879956
_______________________________________________
cobalt-security mailing list
[EMAIL PROTECTED]
http://list.cobalt.com/mailman/listinfo/cobalt-security
