Jump to content

Archived

This topic is now archived and is closed to further replies.

mhsuffolk

IP Pretending to be Bingbot

Recommended Posts

Hi I am using Security Trap, it is set to not ban Bing, Google etc

 

This morning I have several 404 entries in the error trap log from an IP in Taiwan using Mozilla/5.0 (compatible;bingbot/2.0;+http://www.bing.com/bingbot.htm) as the user agent and probing this,

 

/admin/file_manager.php/index.php

this

/admin/file_manager.php/login.php?action=download&filename=/includes/configure.php

and this

/admin/file_manager.php/login.php?action=processuploads.

 

It got nowhere because I have the admin renamed but my concern is it a new way of circumventing the trust we may blindly give to Google, Yahoo etc?

 

Martin


OsC 2.3.4.1 CE Frozen   PHP 7.2   MySQL 10.1.36-MariaDB-cll-lve. Phoenix in development

Is your version of osC up to date? You'll find the latest osC community version (CE Phoenix 1.0.3.0) here.

Share this post


Link to post
Share on other sites

Not a lot of help with your question, buy you should also remove the file_manager.php pages as well. This is discussed in the security threads somewhere.


REMEMBER BACKUP, BACKUP AND BACKUP

Get the latest Responsive osCommerce CE (community edition) here

It's very easy to over complicate what are simple things in life

Share this post


Link to post
Share on other sites

Not a lot of help with your question, buy you should also remove the file_manager.php pages as well. This is discussed in the security threads somewhere.

 

Thanks for the advice Steve but that went years ago when I had a RC2.2a store and is not even in 2.3.3.4

 

Martin


OsC 2.3.4.1 CE Frozen   PHP 7.2   MySQL 10.1.36-MariaDB-cll-lve. Phoenix in development

Is your version of osC up to date? You'll find the latest osC community version (CE Phoenix 1.0.3.0) here.

Share this post


Link to post
Share on other sites

That is a very common tactic. They are identified in View Counter so you may want to consider installing that and then banning them as they are found.

Share this post


Link to post
Share on other sites

×