Esses erros de log devem me preocupar?

4

Então eu não entendo o que acontece com todas essas mensagens de erro. Disseram-me que alguém pode estar tentando hackear meu servidor, mas eu não tenho 100% de certeza do que está acontecendo.

Estou executando o CentOS 6.

Aqui está uma lista de erros que recebi:

P.S NENHUM DESTES IP SÃO MINA

[Mon Dec 09 12:36:27 2013] [error] [client 216.121.127.194] script not found or unable to stat: /var/www/cgi-bin/php
[Mon Dec 09 12:36:27 2013] [error] [client 216.121.127.194] script not found or unable to stat: /var/www/cgi-bin/php
[Tue Dec 10 04:39:32 2013] [error] [client 202.162.221.227] script not found or unable to stat: /var/www/cgi-bin/php
[Tue Dec 10 05:50:07 2013] [error] [client 67.228.121.194] script not found or unable to stat: /var/www/cgi-bin/php
[Tue Dec 10 07:11:23 2013] [error] [client 119.52.254.20] client denied by server configuration: /usr/share/phpMyAdmin/scripts
[Tue Dec 10 07:11:24 2013] [error] [client 119.52.254.20] client denied by server configuration: /usr/share/phpMyAdmin/scripts
[Tue Dec 10 08:51:36 2013] [error] [client 58.241.10.22] client denied by server configuration: /usr/share/phpMyAdmin/scripts
[Tue Dec 10 08:51:37 2013] [error] [client 58.241.10.22] client denied by server configuration: /usr/share/phpMyAdmin/scripts
[Thu Dec 12 03:34:41 2013] [error] [client 46.229.157.226] script not found or unable to stat: /var/www/cgi-bin/php
[Thu Dec 12 03:34:42 2013] [error] [client 46.229.157.226] script not found or unable to stat: /var/www/cgi-bin/php5
[Thu Dec 12 03:34:42 2013] [error] [client 46.229.157.226] script not found or unable to stat: /var/www/cgi-bin/php-cgi
[Thu Dec 12 03:34:42 2013] [error] [client 46.229.157.226] script not found or unable to stat: /var/www/cgi-bin/php.cgi
[Thu Dec 12 03:34:43 2013] [error] [client 46.229.157.226] script not found or unable to stat: /var/www/cgi-bin/php4
[Thu Dec 12 05:10:38 2013] [error] [client 89.248.160.192] Invalid URI in request GET HTTP/1.1 HTTP/1.1
[Thu Dec 12 05:10:39 2013] [error] [client 89.248.160.192] script not found or unable to stat: /var/www/cgi-bin/php
[Thu Dec 12 05:10:39 2013] [error] [client 89.248.160.192] script not found or unable to stat: /var/www/cgi-bin/php4
[Thu Dec 12 05:10:39 2013] [error] [client 89.248.160.192] script not found or unable to stat: /var/www/cgi-bin/php5
[Thu Dec 12 05:10:39 2013] [error] [client 89.248.160.192] script not found or unable to stat: /var/www/cgi-bin/php-cgi
[Thu Dec 12 05:10:40 2013] [error] [client 89.248.160.192] script not found or unable to stat: /var/www/cgi-bin/php.cgi

EDITAR:

Algum código PHP para o arquivo .htaccess bloquear alguns scanners.

RewriteCond %{HTTP_USER_AGENT} ^w3af.sourceforge.net [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} dirbuster [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} nikto [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} SF [OR] 
RewriteCond %{HTTP_USER_AGENT} sqlmap [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} fimap [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} nessus [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} whatweb [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} Openvas [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} jbrofuzz [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} libwhisker [NC,OR] 
RewriteCond %{HTTP_USER_AGENT} webshag [NC,OR] 
RewriteCond %{HTTP:Acunetix-Product} ^WVS 

Certifique-se de que isso seja colocado na categoria.

Se não for apenas <IfModule mod_rewrite.c>paste content here</IfModule>

    
por user202098 12.12.2013 / 04:42

1 resposta

5

A maioria deles resolve-se em rastreadores da Web . Por exemplo 58.241.10.22 é da China

IMHO bastante inofensivo.

    
por 12.12.2013 / 04:52