 | View Full Version : Strange refferring script in webalizer webpointer 02-09-2003, 07:56 PM I found a refferring script in my webalizer: .../cgi-bin/assignport Does this sounds familiar to someone? Is this a hack attempt or something? when I tried to visit the refferring link I got a 404... what to do what to do... regards Martijn Prowler 02-11-2003, 01:58 AM Dig out your ftp application. Log into your server and look under the folder cgi-bin for any 'alien' files. If you are lax in your server security, they might have added some files to use your box's processing power. Usually, it is an attempt to check for a trojan in a compromised machine. If it isn't there, no problem. webpointer 02-11-2003, 03:26 PM Sorry, But the scripted I refferred to was a script on someone else his server which was listed in my "Top 30 of 85 Total Referrers" list in webaliser Prowler 02-12-2003, 12:58 AM Reproduce a portion of the list from webalizer (after sanitizing it) to avoid the confusion. If the script from the other server is the cause of some referral, it could be a robot indexing your files. Look for the entries from your raw server log files. Probing things like this is worth the time spent. |