Security Basics mailing list archives
Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack!
From: dishix <dishix () googlemail com>
Date: Thu, 08 Sep 2011 14:23:20 +0200
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hey, On 09/07/2011 09:31 PM, Ali Asghar Toraby Parizy wrote:
Hi. ... I've searched most of my public html directory. but I haven't found any file that makes following http header. I have no idea. How can I find that?
it seems that somebody has found a way to inject his own html/javascript into your website. If you can't find any suspicious code in the files on your webserver watch out for any suspicious changes on the underlying database. A lot of attackers are using sql-injections to place their code on websites. Regards dishix -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBAgAGBQJOaLO4AAoJEKmqdCCWk7VQR+QIAJXHkgcE1f6K/4p92D1NnIL1 CWDWnyClB6macJ6FfnS2xK6d+FNljcLYp/e8YpeZRsi9uKGPp+9jrjP3NIEJwF31 A+hVGql5Yyp2z05pHQCUvjuD7LTimq9TUHXJzWHXfs3lupWnY8W60KQ6IgTY+4Xv 3PH+vGgv1bUR3F08ZXk3taehCu0f/4QlKGqPS6ALE3CSFQ4mf65oqAs3w7wHZitc 0yvU1M/OBvbMdBPEgIBb2JTqh+AkK2/joogqGzCbn2t1v+NYgzhQTLUgHn7t2kiN uNECokPwkDxoEmpJxIsPwhcvyAZ8vcWj7JZ+xMWOWhxBUBl5gar0KUvES7j5jQo= =Fxrl -----END PGP SIGNATURE----- ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! Ali Asghar Toraby Parizy (Sep 07)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! charlie (Sep 08)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! Henri Salo (Sep 08)
- RE: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! Kropotov, Vladimir B. (Sep 09)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! Ali Asghar Toraby Parizy (Sep 09)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! Henri Salo (Sep 09)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! Remo Cornali (Sep 12)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! Henri Salo (Sep 08)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! charlie (Sep 08)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! Henri Salo (Sep 08)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! dishix (Sep 08)
- Re: There is a strange get request header in all web pages of my site? I'm worry about Trojan attack! BugBear (Sep 09)