Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Facebook IPs in logs issue

Discussion in 'Discusión en Español' started by ksgalicia, Nov 11, 2017.

  1. ksgalicia

    ksgalicia Active Member

    Joined:
    Aug 4, 2016
    Messages:
    43
    Likes Received:
    4
    Trophy Points:
    8
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hola!

    Estoy revisando los logs de apache y me encuentro que los servidores de Facebook (173.252.90.167, 173.252.90.165, 173.252.90.168) están intentando hackear el servidor escribiendo esta frase \x16\x03\x01\x02

    ¿Es normal?

    Estoy planteando seriamente ponerles un bloqueo.

    Saludos!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. web-project

    web-project Well-Known Member

    Joined:
    Nov 23, 2007
    Messages:
    57
    Likes Received:
    4
    Trophy Points:
    58
    just do a report to Facebook about their IP addresses (173.252.90.167, 173.252.90.165, 173.252.90.168) as it might be their computers/ servers are infected and someone is trying to gain access to your server.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    43,725
    Likes Received:
    1,796
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    You could block the IP addresses or report the issue directly to Facebook to determine the cause.

    Thank you.

    Translation:

    Hola,

    Puede bloquear las direcciones IP o informar el problema directamente a Facebook para determinar la causa.

    Gracias.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. rpvw

    rpvw Well-Known Member

    Joined:
    Jul 18, 2013
    Messages:
    678
    Likes Received:
    227
    Trophy Points:
    43
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    The method invalid \x16\x03\x01\x02 string in the Apache log is often due to a misconfiguration of VirtualHost with SSL. The server is trying to respond to a request on port 443 with unencrypted HTTP. In other words, the browser is expecting SSL, but the server is sending plain HTTP on port 443.

    The fact that it is coming from Facebook may be entirely innocent and signify that someone has linked one or more of your pages to a Facebook post and users are following that link.


    El método inválido \ x16 \ x03 \ x01 \ x02 cadena en el registro de Apache a menudo se debe a una mala configuración de VirtualHost con SSL. El servidor está intentando responder a una solicitud en el puerto 443 con HTTP no encriptado. En otras palabras, su navegador espera SSL, pero el servidor está enviando HTTP simple en el puerto 443.

    El hecho de que proviene de Facebook puede ser totalmente inocente y significa que alguien ha vinculado una o más de sus páginas a una publicación de Facebook y los usuarios siguen ese enlace.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    cPanelMichael likes this.
  5. ksgalicia

    ksgalicia Active Member

    Joined:
    Aug 4, 2016
    Messages:
    43
    Likes Received:
    4
    Trophy Points:
    8
    Location:
    Spain
    cPanel Access Level:
    Root Administrator
    Twitter:
    La cuestión es que no apunta a un dominio sino directamente a la IP del servidor junto con el puerto 80... Es lo más extraño.

    rpvw, me comentas que puede ser de la configuración de VirtualHost... ¿Cuál sería la configuración correcta?.

    Gracias!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice