我們就設置了一臺httpd132f服務器�����,實際上這是一個專門等待黑客來進攻的服務器��,因為黑客對這臺系統(tǒng)的所有操作都記錄在httpd.log文件中�,所以學習者可以非?����?斓牧私獾胶诳途烤乖诶檬裁捶椒ㄟM攻服務器�����,這種學習方法見效非?����??�,這在我當初學習黑客的時候�,給予了我大量寶貴的黑客進攻資料。
不用等待多長時間�����,黑客就來了�,他在試圖尋找我們這臺服務器上的漏洞��,看下面的日志文件:
61.172.14.9 - [02/Sep/2001:16:50:53 +0900] "GET /index.htm HTTP/1.1" 404 218
61.172.14.9 - [02/Sep/2001:16:58:27 +0900] "GET /cgi-bin/bbs/wwwboard.pl HTTP/1.1" 404 218
61.172.14.9 - [02/Sep/2001:17:02:53 +0900] "GET /cgi-bin/bbs.pl HTTP/1.1" 404 242
61.172.14.9 - [02/Sep/2001:17:10:16 +0900] "GET /cgi-bin/guestbook/guestbook.cgi HTTP/1.1" 404 242
61.172.14.9 - [02/Sep/2001:17:12:51 +0900] "GET /cgi-bin/bbs.cgi HTTP/1.1" 200 1032
61.172.14.9 - [02/Sep/2001:17:03:42 +0900] "GET /cgi-bin/bbs.cgi?a_method=fabiao&aaarpsd=&aaarname= HTTP/1.1" 404 218
61.172.14.9 - [02/Sep/2001:17:03:54 +0900] "GET /cgi-bin/bbs.cgi?a_method=fabiao&aaarpsd=&aaarname= HTTP/1.1" 404 218
61.172.14.9 - [02/Sep/2001:17:04:08 +0900] "GET /cgi-bin/bbs.cgi?a_method=fabiao&aaarpsd=&aaarname= HTTP/1.1" 200 3302
61.172.14.9 - [02/Sep/2001:17:04:27 +0900] "POST /cgi-bin/bbs.cgi HTTP/1.1" 200 177
61.172.14.9 - [02/Sep/2001:17:04:30 +0900] "GET /cgi-bin/bbs.cgi?a_method=win&aaarpsd=test&aaarname=max HTTP/1.1" 200 782
61.172.14.9 - [02/Sep/2001:17:04:32 +0900] "GET /cgi-bin/bbs.cgi?a_method=list&aaarpsd=test&aaarname=max HTTP/1.1" 200 4526
61.172.14.9 - [02/Sep/2001:17:04:42 +0900] "GET /cgi-bin/bbs.cgi?a_method=show&slttitle=2001-09-02.18:04:29&aaarname=macker&aaarpsd=test HTTP/1.1" 200 5785
61.172.14.9 - [02/Sep/2001:17:04:58 +0900] "POST /cgi-bin/bbs.cgi HTTP/1.1" 200 177
TAG:高端網(wǎng)站建設高端網(wǎng)站設計網(wǎng)站制作網(wǎng)站建設
