You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by "Wm.A.Stafford" <st...@marine.rutgers.edu> on 2007/04/04 19:44:28 UTC
[users@httpd] Bogus referrals is mod_security configuration to blame?
Our site has been getting roughly the same number of hits per month for
several years. In Februray the number of hits doubled. In March the
number was more than five times the usual. Looking at the referred-by
headers we see names like hotnetslots.com and others that it is hard to
conceive of as legitimate forwarders to an Oceanography site.
We were told that mod_security was upgraded in February so incorrect
configuration seems the likely cause.
I have two questions:
1. From this sketchy description can anyone venture a guess as to what
was omitted from the mod_security upgrade. We do not administer the
production machine so I just need something to pass along to the admins.
2. Why the thousands of bogus requests to our site? Not an Apache issue
but I'm really curious because I can't think of any benefit for the senders.
Thanks,
-=bill
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Bogus referrals is mod_security configuration to blame?
Posted by Joshua Slive <jo...@slive.ca>.
On 4/4/07, Wm.A.Stafford <st...@marine.rutgers.edu> wrote:
> 2. Why the thousands of bogus requests to our site? Not an Apache issue
> but I'm really curious because I can't think of any benefit for the senders.
It might help to see some of these log entries.
Joshua.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org