The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Answer information access_log scanning security

Discussion in 'Security' started by davidhan, Oct 6, 2014.

  1. davidhan

    davidhan Member

    Joined:
    Sep 18, 2014
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    technewonline
    cPanel Access Level:
    Website Owner
    Hi. everybody.
    Yesterday looking at access_log file at /etc/httpd/logs I found a ip address (that I blocked after this) trying a lot of server folders for example

    cgi-bin/
    cgi-sys/
    nessus/
    system/

    etc, etc. Its a server scanning, Is there a way to prevent this kind of things with a firewall rule or software? Most of the commands were blocked by mod_Security and others directly gave 404 error cause they dont exist.
    Also at access log sometimes appears /~user/ folders, like they are accessing using servername and user to see things. Do you recommend to disable ~ access ? Cause sometimes users use this when domains are not correctly propagated.

    All of this seems that is done using port 80 scanning. But I would like to know a method to block lammers from scanning servers and prevent bandwidth consumption.

    Thanks!
     
    #1 davidhan, Oct 6, 2014
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    36,294
    Likes Received:
    1,209
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello :)

    You can't really prevent anyone from trying to find exploits on your system, but you can implement tools such as Mod_Security and CSF to help block the attempts. You may also find the "Security Advisor" helpful for determining which settings to enable/disable:

    "WHM Home » Security Center » Security Advisor"

    Thank you.
     
    #2 cPanelMichael, Oct 6, 2014
(You must log in or sign up to post here.)
Loading...
Similar Threads - Answer information access_log
  1. Masimo

    SOLVED httpd is up, but unable to answer requests

    Masimo, Jun 16, 2017, in forum: EasyApache
    Replies:
    4
    Views:
    111
    Masimo
    Jun 16, 2017
  2. Chris H

    Preventing users viewing system information

    Chris H, May 5, 2017, in forum: Security
    Replies:
    2
    Views:
    124
    Chris H
    May 5, 2017
  3. webstyler

    AutoSSL/SSL Resource information

    webstyler, Apr 29, 2017, in forum: Security
    Replies:
    1
    Views:
    145
    cPanelMichael
    May 2, 2017
  4. DigitalEssence

    SOLVED zone information confusion since enabling DNS cluster and transferring a site

    DigitalEssence, Apr 27, 2017, in forum: Bind / DNS / Nameserver Issues
    Replies:
    2
    Views:
    192
    cPanelMichael
    Apr 28, 2017
  5. arjanvr

    Server Information

    arjanvr, Apr 23, 2017, in forum: General Discussion
    Replies:
    7
    Views:
    164
    cPanelMichael
    Apr 24, 2017

Share This Page