这是不是被攻击啊?

Web、Mail、Ftp、DNS、Proxy、VPN、Samba、LDAP 等基础网络服务
回复
头像
RegentW
帖子: 1486
注册时间: 2007-02-27 21:47
来自: NN
送出感谢: 2 次
接收感谢: 0

这是不是被攻击啊?

#1

帖子 RegentW » 2007-10-10 14:33

下面只是我的Web服务器error.log中的一个小片段:
[Wed Oct 10 14:24:27 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:25:03 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:25:36 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:26:11 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:26:41 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:27:13 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:27:40 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:28:20 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:28:45 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:29:34 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:29:59 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:30:35 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:31:01 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:31:37 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:32:08 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:32:41 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:33:14 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:33:41 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:34:17 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:34:55 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
[Wed Oct 10 14:35:17 2007] [error] [client 219.130.40.124] Invalid method in request \x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b
access.log中的片段:
219.130.40.124 - - [10/Oct/2007:14:26:41 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:27:13 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:27:40 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:28:20 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:28:45 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:29:34 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:29:59 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:30:35 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:31:01 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:31:37 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:32:08 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:32:41 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:33:14 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:33:41 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:34:17 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:34:55 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:35:17 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:35:51 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:36:21 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:36:51 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:37:27 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
219.130.40.124 - - [10/Oct/2007:14:37:56 +0800] "\x1a\xf6\xc7\x8f\xc3\xb3v\xca\x93\x16=k\x07S/X?\xfc\xad/\b" 501 306 "-" "-"
最近经常有这种东西,怎么办啊
Core i5, 512G + SSD 20G, DDRIII 8G
头像
aitilang
帖子: 1026
注册时间: 2007-04-28 21:38
送出感谢: 0
接收感谢: 0

#2

帖子 aitilang » 2007-10-10 15:09

屏蔽这个ip。。
thinkpad x61 2G DDR no cdrom
--------------------------------------------
ABS学习中
sed学习中
awk学习中
perl学习中
新手描述不清,老手猜测不到,胡乱指挥一通,后果难以预料
头像
RegentW
帖子: 1486
注册时间: 2007-02-27 21:47
来自: NN
送出感谢: 2 次
接收感谢: 0

#3

帖子 RegentW » 2007-10-10 15:32

谢谢楼上回答我的疑问,请问怎样屏蔽?(我的系统是在路由器后面的无线客户端,没有开firestarter,但开了以后自己的网站就连自己都不能访问了)
Core i5, 512G + SSD 20G, DDRIII 8G
leafduo
帖子: 13
注册时间: 2007-10-10 23:42
送出感谢: 0
接收感谢: 0
联系:

#4

帖子 leafduo » 2007-10-13 23:43

.htaccess
回复

回到 “服务器基础应用”