Path: ...!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!cmacleod.me.uk!.POSTED!not-for-mail
From: Colin Macleod <user7@cmacleod.me.uk.invalid>
Newsgroups: comp.lang.tcl
Subject: Re: tclhttpd logs
References: <v61jba$1ohic$1@dont-email.me> <1720033216-7@cmacleod.me.uk> <v64tqp$2ela9$1@dont-email.me>
Date: Thu, 04 Jul 24 08:02:49 GMT
Message-ID: <1720080169-7@cmacleod.me.uk>
Injection-Info: cmacleod.me.uk; mail-complaints-to="newsgrouper@yahoo.com"; posting-account=user7
Injection-Date: Thu, 04 Jul 24 08:02:49 GMT
User-Agent: Newsgrouper/0.5
Bytes: 1127
Lines: 12

saito <saitology9@gmail.com> posted:

> 
> Yeah, it doesn't look kosher. I saw like 10 of them like that one after 
> another.  Then I get normal entries from the same source but the 
> requests all appear to be hacking attempts containing shell commands 
> with rm, cd, wget, or some .php stuff.

Here's a little thing I hacked up to return something suitable to the script kiddies who persist in probing for php weaknesses etc. :
http://paste.tclers.tk/5935

-- 
Colin Macleod.