2007年12月3日

是 phpMyAdmin 有漏洞還是有人想賭預設設定?

今天檢查前兩天的 Server Access Log 後發現以下這串記錄,看起來是在測試 phpMyAdmin 各系列的管理界面。不知道是因為 phpMyAdmin 被找出程式碼漏洞,還是說有人純粹想要賭看看系統管理員忘了修改預設帳密。

不管怎樣,各位使用 PHP 系統的管理員最好順便檢查一下有沒有被踹的記錄,或者順便先把來源 IP(這裡是 219.87.132.235)給封了吧!

*.*.*.* - - [30/Nov/2007:21:07:34 +0000] "GET /admin/phpmyadmin/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:34 +0000] "GET /admin/phpMyAdmin/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:34 +0000] "GET /admin/sysadmin/main.php HTTP/1.0" 404 1018 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:34 +0000] "GET /admin/sqladmin/main.php HTTP/1.0" 404 1018 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:34 +0000] "GET /admin/db/main.php HTTP/1.0" 404 1000 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:34 +0000] "GET /admin/web/main.php HTTP/1.0" 404 1003 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:34 +0000] "GET /admin/pMA/main.php HTTP/1.0" 404 1003 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:35 +0000] "GET /admin/main.php HTTP/1.0" 404 991 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:35 +0000] "GET /admin/mysql/main.php HTTP/1.0" 404 1009 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:35 +0000] "GET /admin/myadmin/main.php HTTP/1.0" 404 1015 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:35 +0000] "GET /admin/webadmin/main.php HTTP/1.0" 404 1018 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:35 +0000] "GET /admin/sqlweb/main.php HTTP/1.0" 404 1012 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:35 +0000] "GET /admin/websql/main.php HTTP/1.0" 404 1012 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:35 +0000] "GET /admin/webdb/main.php HTTP/1.0" 404 1009 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:36 +0000] "GET /admin/mysqladmin/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:36 +0000] "GET /admin/mysql-admin/main.php HTTP/1.0" 404 1027 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:36 +0000] "GET /admin/phpmyadmin2/main.php HTTP/1.0" 404 1027 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:36 +0000] "GET /admin/php-my-admin/main.php HTTP/1.0" 404 1030 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:36 +0000] "GET /admin/phpMyAdmin-2.2.3/main.php HTTP/1.0" 404 1042 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:36 +0000] "GET /admin/phpMyAdmin-2.2.6/main.php HTTP/1.0" 404 1042 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:36 +0000] "GET /admin/phpMyAdmin-2.5.1/main.php HTTP/1.0" 404 1042 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:37 +0000] "GET /admin/phpMyAdmin-2.5.4/main.php HTTP/1.0" 404 1042 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:37 +0000] "GET /admin/phpMyAdmin-2.5.6/main.php HTTP/1.0" 404 1042 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:37 +0000] "GET /admin/phpMyAdmin-2.6.0/main.php HTTP/1.0" 404 1042 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:37 +0000] "GET /admin/phpMyAdmin-2.6.0-pl1/main.php HTTP/1.0" 404 1054 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:37 +0000] "GET /admin/phpMyAdmin-2.6.2-rc1/main.php HTTP/1.0" 404 1054 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:37 +0000] "GET /admin/phpMyAdmin-2.6.3/main.php HTTP/1.0" 404 1042 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:37 +0000] "GET /admin/phpMyAdmin-2.6.3-pl1/main.php HTTP/1.0" 404 1054 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:38 +0000] "GET /admin/phpMyAdmin-2.6.3-rc1/main.php HTTP/1.0" 404 1054 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:38 +0000] "GET /admin/padmin/main.php HTTP/1.0" 404 1012 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:38 +0000] "GET /admin/datenbank/main.php HTTP/1.0" 404 1021 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:38 +0000] "GET /admin/database/main.php HTTP/1.0" 404 1018 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:38 +0000] "GET /phpmyadmin/main.php HTTP/1.0" 404 1006 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:38 +0000] "GET /phpMyAdmin/main.php HTTP/1.0" 404 1006 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:38 +0000] "GET /db/main.php HTTP/1.0" 404 982 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:39 +0000] "GET /web/main.php HTTP/1.0" 404 985 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:39 +0000] "GET /sql/main.php HTTP/1.0" 404 985 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:39 +0000] "GET /msql/main.php HTTP/1.0" 404 988 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:39 +0000] "GET /PMA/main.php HTTP/1.0" 404 985 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:39 +0000] "GET /admin/main.php HTTP/1.0" 404 991 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:39 +0000] "GET /mysql/main.php HTTP/1.0" 404 991 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:39 +0000] "GET /myadmin/main.php HTTP/1.0" 404 997 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:40 +0000] "GET /webadmin/main.php HTTP/1.0" 404 1000 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:40 +0000] "GET /sqlweb/main.php HTTP/1.0" 404 994 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:40 +0000] "GET /websql/main.php HTTP/1.0" 404 994 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:40 +0000] "GET /webdb/main.php HTTP/1.0" 404 991 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:40 +0000] "GET /mysqladmin/main.php HTTP/1.0" 404 1006 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:40 +0000] "GET /mysql-admin/main.php HTTP/1.0" 404 1009 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:40 +0000] "GET /phpmyadmin2/main.php HTTP/1.0" 404 1009 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:41 +0000] "GET /php-my-admin/main.php HTTP/1.0" 404 1012 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:41 +0000] "GET /phpMyAdmin-2.2.3/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:41 +0000] "GET /phpMyAdmin-2.2.6/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:41 +0000] "GET /phpMyAdmin-2.5.1/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:41 +0000] "GET /phpMyAdmin-2.5.4/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:41 +0000] "GET /phpMyAdmin-2.5.6/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:41 +0000] "GET /phpMyAdmin-2.6.0/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:42 +0000] "GET /phpMyAdmin-2.6.0-pl1/main.php HTTP/1.0" 404 1036 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:42 +0000] "GET /phpMyAdmin-2.6.2-rc1/main.php HTTP/1.0" 404 1036 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:42 +0000] "GET /phpMyAdmin-2.6.3/main.php HTTP/1.0" 404 1024 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:42 +0000] "GET /phpMyAdmin-2.6.3-pl1/main.php HTTP/1.0" 404 1036 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:42 +0000] "GET /phpMyAdmin-2.6.3-rc1/main.php HTTP/1.0" 404 1036 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:42 +0000] "GET /phpMyAdmin-2.10.2-all-languages-utf-8-only/main.php HTTP/1.0" 404 1102 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:42 +0000] "GET /phpMyAdmin-2.10.2/main.php HTTP/1.0" 404 1027 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:42 +0000] "GET /padmin/main.php HTTP/1.0" 404 994 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:44 +0000] "GET /datenbank/main.php HTTP/1.0" 404 1003 "-" "-"
*.*.*.* - - [30/Nov/2007:21:07:44 +0000] "GET /database/main.php HTTP/1.0" 404 1000 "-" "-"