vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vB4 General Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=251)
-   -   s=/proc/self/environ (https://vborg.vbsupport.ru/showthread.php?t=314330)

AndrewSimm 09-15-2014 08:11 PM
s=/proc/self/environ
 
s=/proc/self/environ included after the url appears to be an attack on my site. Has any other users experienced anything like this and was the attack successful?

I added the following to my iptables

54.208.36.248
188.165.12.96
211.206.122.183
212.48.78.194
213.235.225.244
74.208.193.37
94.23.254.120

tbworld 09-15-2014 08:40 PM
Most hosting services will protect you against this kind of information attack. Blocking the IP addresses is the correct action. Those that run their own servers will be the largest at risk, as they tend not to be setup correctly and are typically less secure. This type of information attack was introduced back in late 2010.

:)

AndrewSimm 09-15-2014 08:46 PM
I lease a server from wiredtree. I do run mod_security which from what I understand should prevent it.

Dave 09-16-2014 07:26 AM
A WAF (Web Application Firewall) is not going to protect you from hackers. If someone really wants to hack your website, they can just find a way to bypass the WAF which isn't that hard.


All times are GMT. The time now is 09:17 AM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01007 seconds
  • Memory Usage 1,713KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (4)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete