Security
Required but not found URLs (HTTP code 404)
URL (10) Error Hits Referrers
/robots.txt 9 -
/phpmyadmin/scripts/setup.php 2 -
/w00tw00t.at.blackhats.romanian.anti-sec:) 2 -
/MyAdmin/scripts/setup.php 2 -
/pma/scripts/setup.php 1 -
/myadmin/scripts/setup.php 1 -
/phpMyAdmin/scripts/setup.php 1 -
/webdav/ 1 -
Does this mean that bots are trying to see if my server is unsecure when it's looking for phpmyadmin setup, and it can't find it? Should I be blacklisting these ip addresses in my vhost.conf file?
2 Replies
There does exist software that you can use to guard against these sorts of things but in general unless you want to monitor it nearly every day and add filter rules, it's not worth it.
Your best defense against this stuff is to move applications out of default directories, keep your applications updated, never allow the applications to have root access to anything (databases, or system)–and go from there.
If you do have or want remote Administration applications, try doing a server-side validation of your client before allowing a connection. In this manner the TLS connection will fail since the server isn't provided with a valid client certificate.