The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

POST attack?

Discussion in 'General Discussion' started by AlexandreVeezon, Feb 2, 2007.

  1. AlexandreVeezon

    AlexandreVeezon Well-Known Member

    Joined:
    Dec 9, 2005
    Messages:
    99
    Likes Received:
    1
    Trophy Points:
    18
    Location:
    /br/sc/rionegrinho
    cPanel Access Level:
    Root Administrator
    Hi..

    I'm tryng to stop this:

    Code:
    xxx.199.244.3 - - [02/Feb/2007:15:34:55 -0200] "POST /menu.php HTTP/1.1" 404 -
    xxx.199.244.3 - - [02/Feb/2007:15:34:56 -0200] "POST /menu.php HTTP/1.1" 404 -
    xxx.199.244.3 - - [02/Feb/2007:15:34:56 -0200] "POST /menu.php HTTP/1.1" 404 -
    xxx.199.244.3 - - [02/Feb/2007:15:34:56 -0200] "POST /menu.php HTTP/1.1" 404 -
    xxx.199.244.3 - - [02/Feb/2007:15:34:56 -0200] "POST /menu.php HTTP/1.1" 404 -
    xxx.199.244.3 - - [02/Feb/2007:15:34:56 -0200] "POST /menu.php HTTP/1.1" 404 -
    xxx.199.244.3 - - [02/Feb/2007:15:34:58 -0200] "POST /menu.php HTTP/1.1" 404 -
    xxx.199.244.3 - - [02/Feb/2007:15:34:58 -0200] "POST /menu.php HTTP/1.1" 404 -
    xxx.199.244.3 - - [02/Feb/2007:15:34:58 -0200] "POST /menu.php HTTP/1.1" 404 -
    xxx.199.244.3 - - [02/Feb/2007:15:34:58 -0200] "POST /menu.php HTTP/1.1" 404 -
    In domlog I found this

    Code:
    xxx.255.5.3 - - [02/Feb/2007:07:53:48 -0200] "POST /menu.php HTTP/1.0" 201 0 "-" "WinInetPost/0.1"
    xxx.255.5.3 - - [02/Feb/2007:07:53:50 -0200] "POST /menu.php HTTP/1.0" 201 0 "-" "WinInetPost/0.1"
    xxx.255.5.3 - - [02/Feb/2007:07:53:50 -0200] "POST /menu.php HTTP/1.0" 201 0 "-" "WinInetPost/0.1"
    xxx.255.5.3 - - [02/Feb/2007:07:53:56 -0200] "POST /menu.php HTTP/1.0" 201 0 "-" "WinInetPost/0.1"
    xxx.255.5.3 - - [02/Feb/2007:07:54:19 -0200] "POST /menu.php HTTP/1.0" 201 0 "-" "WinInetPost/0.1"
    xxx.255.5.3 - - [02/Feb/2007:07:54:33 -0200] "POST /menu.php HTTP/1.0" 201 0 "-" "WinInetPost/0.1"
    xxx.255.5.3 - - [02/Feb/2007:07:54:37 -0200] "POST /menu.php HTTP/1.0" 201 0 "-" "WinInetPost/0.1"
    
    Anyones know what is this WinInetPost/0.1?

    Can I block this in mod_security?

    Thank you
     
  2. jayh38

    jayh38 Well-Known Member

    Joined:
    Mar 3, 2006
    Messages:
    1,215
    Likes Received:
    0
    Trophy Points:
    36
Loading...

Share This Page