Hello,
I have set up a new VPS. I haven't install mod_security yet. I am seeing
the following lines in /var/log/apache2/access.log
37.187.44.90 - - [11/Jul/2014:01:13:44 +0000] "HEAD
http://128.111.222.22:80/phpMyAdmin3/ HTTP/1.1" 404 202 "-" "Jorgee"
37.187.44.90 - - [11/Jul/2014:01:13:44 +0000] "HEAD
http://128.111.222.22:80/phpMyAdmin-3/ HTTP/1.1" 404 202 "-" "Jorgee"
37.187.44.90 - - [11/Jul/2014:01:13:45 +0000] "HEAD
http://128.111.222.22:80/php-my-admin/ HTTP/1.1" 404 202 "-" "Jorgee"
37.187.44.90 - - [11/Jul/2014:01:13:45 +0000] "HEAD
http://128.111.222.22:80/PMA2012/ HTTP/1.1" 404 202 "-" "Jorgee"
37.187.44.90 - - [11/Jul/2014:01:13:45 +0000] "HEAD
http://128.111.222.22:80/pma2012/ HTTP/1.1" 404 202 "-" "Jorgee"
37.187.44.90 - - [11/Jul/2014:01:13:45 +0000] "HEAD
http://128.111.222.22:80/PMA2011/ HTTP/1.1" 404 202 "-" "Jorgee"
37.187.44.90 - - [11/Jul/2014:01:13:45 +0000] "HEAD
http://128.111.222.22:80/pma2011/ HTTP/1.1" 404 202 "-" "Jorgee"
37.187.44.90 - - [11/Jul/2014:01:13:46 +0000] "HEAD
http://128.111.222.22:80/phpmanager/ HTTP/1.1" 404 202 "-" "Jorgee"
I think these are some nasty requests. How can I avoid these kind of
requests ? Will installing mod_security help ?
I can see: #ProxyVia Off in /etc/apache2/mods-available/proxy.conf. If I
uncomment this line, will it prevent the above requests ?
Please suggest.
Thanks.
_______________________________________________
Owasp-modsecurity-core-rule-set mailing list
Owasp-modsecurity-core-rule-set@lists.owasp.org
https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
