You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Sparky Kopetzky <sp...@blackmesa-isp.net> on 2003/04/19 18:25:10 UTC
[users@httpd] public_html problem
I read all of the docs, made the changes and still am getting a 403 error.
My config is as follows:
<IfModule mod_userdir.c>
UserDir enabled myname
UserDir public_html
</IfModule>
chmod on public_html is 771 and so are the html files.
Any ideas as to what's wrong??
Robin Kopetzky
Black Mesa Internet Services
Re: [users@httpd] Access_log question
Posted by Dark Origin <da...@w00p.dk>.
Hello Sparky,
Sunday, April 20, 2003, 6:53:01 PM, you wrote:
SK> I'm getting a lot of IP addresses that are not on our network in the
SK> access_logs and they are mostly 404 errors. Is someone trying to hack into
SK> our machine??
SK> Robin Kopetzky
SK> Black Mesa Internet Services
SK> ---------------------------------------------------------------------
SK> The official User-To-User support forum of the Apache HTTP Server Project.
SK> See <URL:http://httpd.apache.org/userslist.html> for more info.
SK> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
SK> " from the digest: users-digest-unsubscribe@httpd.apache.org
SK> For additional commands, e-mail: users-help@httpd.apache.org
I have the same problem. My guess is that it is a virus.
The users I have in my access/error logs are from a
variety of IPs, though all of the same "type". Check to
see if a webserver is located on port 80 or 8080 (maybe
even 8000) and if there is one then see if you can't
send an email to the admin of that server, informing
her/him that s/he might have virus.
Usually its a virus that tries to breach your httpd or
your SQL server and therefrom reproduce.
--
Best regards,
Dark
admin at w00p.dk
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Access_log question
Posted by Tim Wort <ti...@pobox.com>.
You might include an example of the log output.
This is an example of a successful fetch of the file "foobar.gif"
includes the source IP address and the size, 200 is sucessful.
If it was a 400 number it failed. It doesn't indicate a hack just a
attempt to fetch a file/page that wasn't there.
205.188.209.14 - - [20/Apr/2003:09:13:12
-0600] "GET /path/from/docroot/foobar.gif HTTP/1.0" 200 814
Are the requests in question similar to this?
On Sun, 20 Apr 2003, Sparky Kopetzky wrote:
> I'm getting a lot of IP addresses that are not on our network in the
> access_logs and they are mostly 404 errors. Is someone trying to hack into
> our machine??
>
> Robin Kopetzky
> Black Mesa Internet Services
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
>
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
= Inkling Research Inc. =
= Tim.Wort@InklingResearch.com =
= Tim.Wort@pobox.com =
= =
= Eschew Obfuscation =
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
[users@httpd] Access_log question
Posted by Sparky Kopetzky <sp...@blackmesa-isp.net>.
I'm getting a lot of IP addresses that are not on our network in the
access_logs and they are mostly 404 errors. Is someone trying to hack into
our machine??
Robin Kopetzky
Black Mesa Internet Services
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] public_html problem
Posted by "Jeremy D. Weiss" <jd...@chanweiss.com>.
At 12:54 PM 04/19/2003 -0600, you wrote:
>Changed the permissions to 755 and still no-go. Something else is whacked
>out...
> > >
> > >My config is as follows:
> > ><IfModule mod_userdir.c>
> > > UserDir enabled myname
> > > UserDir public_html
> > ></IfModule>
I looked through my own httpd.conf file. What version of Apache are you
running? I'm using 2.0.45 (and, previously, with a largely-unchanged conf
2.0.39) and have only the line
"UserDir public_html". I'm guessing this means two things:
1) I assume mod_userdir is installed
2) The first UserDir line you have (UserDir enabled myname) is confusing
Apache.
I can't recall ever having such a line, and as such, think it may very well
be the problem. Try removing/commenting it out, and see what happens.
==Jeremy
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] public_html problem
Posted by Sparky Kopetzky <sp...@blackmesa-isp.net>.
Changed the permissions to 755 and still no-go. Something else is whacked
out...
Robin Kopetzky
----- Original Message -----
From: Jeremy D. Weiss <jd...@chanweiss.com>
To: <us...@httpd.apache.org>
Sent: Saturday, April 19, 2003 11:37
Subject: Re: [users@httpd] public_html problem
> At 10:25 AM 04/19/2003 -0600, you wrote:
> >I read all of the docs, made the changes and still am getting a 403
error.
> >
> >My config is as follows:
> ><IfModule mod_userdir.c>
> > UserDir enabled myname
> > UserDir public_html
> ></IfModule>
> >
> >chmod on public_html is 771 and so are the html files.
> >
> >Any ideas as to what's wrong??
>
> If I recall correctly, the directory needs to be world READABLE as well as
> executable...I would suggest permissions of either 755 or 775 (depending
on
> whether or not you want the directory to be group-writable or not).
>
> Make sure, as well, that all files in the directory are world-readable, as
> well.
>
> ==Jeremy
>
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] public_html problem
Posted by "Jeremy D. Weiss" <jd...@chanweiss.com>.
At 10:25 AM 04/19/2003 -0600, you wrote:
>I read all of the docs, made the changes and still am getting a 403 error.
>
>My config is as follows:
><IfModule mod_userdir.c>
> UserDir enabled myname
> UserDir public_html
></IfModule>
>
>chmod on public_html is 771 and so are the html files.
>
>Any ideas as to what's wrong??
If I recall correctly, the directory needs to be world READABLE as well as
executable...I would suggest permissions of either 755 or 775 (depending on
whether or not you want the directory to be group-writable or not).
Make sure, as well, that all files in the directory are world-readable, as
well.
==Jeremy
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org