The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Port / Service scans (phpmyadmin version searches...)

Discussion in 'Database Discussions' started by zerokarma, Aug 3, 2010.

  1. zerokarma

    zerokarma Active Member

    Joined:
    Oct 6, 2008
    Messages:
    42
    Likes Received:
    0
    Trophy Points:
    6
    I have noticed more recently in our server logs that different IPs are performing Port/Service scans on our sites, looking for phpmyadmin, mysql, admin interface links, etc...

    The IPs are always totally different, no consistent pattern at all but they all perform the same scans, see below for an example.

    How can I block this sort of behavior?

     
  2. zerokarma

    zerokarma Active Member

    Joined:
    Oct 6, 2008
    Messages:
    42
    Likes Received:
    0
    Trophy Points:
    6
    ...anyone?
     
  3. mohit

    mohit Well-Known Member

    Joined:
    Jul 12, 2005
    Messages:
    553
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Sticky On Internet
    Have you tried mod_security, a good ruleset would block most such attemts.
     
Loading...

Share This Page