Banned IP addresses
Forum FAQForum FAQ   SearchSearch   Log in to check your private messagesLog in to check your private messages   LoginLogin
Post new topic   Reply to topic   Printer Friendly Page     Forum IndexSecurity
View previous topic :: View next topic  
Author Message
DJ Maze
Developer


Joined: Apr 19, 2004
Posts: 5668
Location: http://tinyurl.com/5z8dmv
PostPost subject: Banned IP addresses
Posted: Mon Dec 15, 2008 10:48 pm		 Reply with quote
If one of the following IP addresses is yours, please contact security at cpgnuke dot com

iptables -A INPUT -s 72.55.137.180 -j DROP
iptables -A INPUT -s 77.221.130.16 -j DROP
iptables -A INPUT -s 88.198.12.6 -j DROP

IP's are hammering any url to exploit: admin/editeur/spaw_control.class.php


iptables -A INPUT -s 82.79.231.103 -j DROP
IP's is hammering any url to: modules/coppermine/include/init.inc.php

DJ Maze's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
Fedora 12 / 2.2.15 / 5.1.47 / 5.3.3 / CVS
Back to top
View user's profile Visit poster's website Yahoo Messenger
DJ Maze
Developer


Joined: Apr 19, 2004
Posts: 5668
Location: http://tinyurl.com/5z8dmv
PostPost subject: Re: Banned IP addresses
Posted: Mon Dec 15, 2008 11:35 pm		 Reply with quote
iptables -A INPUT -s 203.130.242.121 -j DROP
iptables -A INPUT -s 209.168.245.227 -j DROP
iptables -A INPUT -s 212.34.174.106 -j DROP
Trying to exploit /themes/default/index.php

DJ Maze's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
Fedora 12 / 2.2.15 / 5.1.47 / 5.3.3 / CVS
Back to top
View user's profile Visit poster's website Yahoo Messenger
DJ Maze
Developer


Joined: Apr 19, 2004
Posts: 5668
Location: http://tinyurl.com/5z8dmv
PostPost subject: Re: Banned IP addresses
Posted: Mon Dec 15, 2008 11:42 pm		 Reply with quote
if you use apf instead of iptables:
Code:
apf -d 61.100.7.111
apf -d 61.139.72.158
apf -d 72.55.137.180
apf -d 77.221.130.8
apf -d 77.221.130.16
apf -d 82.79.231.103
apf -d 88.198.12.6
apf -d 94.75.214.3
apf -d 121.254.170.200
apf -d 203.130.242.121
apf -d 209.168.245.227
apf -d 212.34.174.106
When you reboot this IP ban will be removed, meaning the IP will no longer be banned anymore.
If you have APF you can get around this by opening the deny hosts file.

pico /etc/apf/deny_hosts.rules

DJ Maze's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
Fedora 12 / 2.2.15 / 5.1.47 / 5.3.3 / CVS
Back to top
View user's profile Visit poster's website Yahoo Messenger
bernardy25
Newbie


Joined: Dec 14, 2009
Posts: 3
Location: bernardy25
PostPost subject: Re: Banned IP addresses
Posted: Wed Dec 16, 2009 12:24 pm		 Reply with quote
I never faced any IP-banned problem but I think it is good to have such problem for future reference.
_________________
netbook ram

bernardy25's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
asdasdasd
Back to top
View user's profile
Dizfunkshunal
Platinum Supporter


Joined: Mar 23, 2006
Posts: 2079
PostPost subject: Re: Banned IP addresses
Posted: Wed Dec 16, 2009 12:56 pm		 Reply with quote
what kind of exploit are they trying to use?
_________________
Diz Web Design Status: Open (Use of resources requires registration.)

Dizfunkshunal's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
Multiple Setups
Back to top
View user's profile Send e-mail Visit poster's website Yahoo Messenger
unilibrium
Newbie


Joined: Jan 15, 2009
Posts: 31
Location: united states
PostPost subject: Re: Banned IP addresses
Posted: Sat May 08, 2010 7:37 pm		 Reply with quote
where in the cms does one insert these ip addresses?

unilibrium's server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS)
9.2.1
Back to top
View user's profile Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic   Printer Friendly Page     Forum IndexSecurity All times are GMT
Page 1 of 1


Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum

Dedicated Server & Bandwidth Sponsored by DedicatedNOW
User Info [x]

Welcome Anonymous
Nickname
Password
(Register)

Last CVS commits [x]

Languages [x]

Community [x]

Support for DragonflyCMS in a other languages:

Deutsch
Español

X-links [x]
UltraEdit Browse Happy logo Firefox MySQL PostgreSQL Valid CSS! Valid XHTML 1.0! Unicode Encoded Badge NukeBiz Resources Raven DragonflyCMS Dedicated Now InsideSupport Lampe Berger

Preview theme [x]
Each user can view the site with a different theme.
Themes marked with a * also change the forum look.


You are seeing squares or questionmarks on this page?

All content of this website is copyrighted by the Creative Commons NC-SA
The logos and trademarks used on this site are the property of their respective owners
We are not responsible for comments posted by our users, as they are the property of the poster.
Our server runs on a P3 1.2GHz with 512MB RAM with no accelerators
Support GoPHP5.org
This page generated in 0.9152 seconds with 19 DB Queries in 0.2056 seconds
Memory Usage: 2.9 MB
Interactive software released under GNU GPL, Code Credits, Privacy Policy