On 12 Jul 2014, at 17:18, Aniyan Rajan <aniyan.raj...@gmail.com> wrote:
> i have the following connects in /var/log/apache2/access.log. Are they > dangerous ? Do I have to prevent it by installing modsecurity ? Please > suggest. Thanks. > > 61.228.25.63 - - [06/Jul/2014:12:27:57 +0000] "CONNECT mx2.mail2000.com.tw:25 > HTTP/1.0" 405 530 "-" "-" It looks like somebody was scanning if your web server can be used as a proxy for delivering spam email. It’s pretty normal to see this. According to the status codes, it was unsuccessful. You’re likely not vulnerable to this type of attack. -- Walter Hop | PGP key: https://lifeforms.nl/pgp
_______________________________________________ Owasp-modsecurity-core-rule-set mailing list Owasp-modsecurity-core-rule-set@lists.owasp.org https://lists.owasp.org/mailman/listinfo/owasp-modsecurity-core-rule-set
