[Dpubs-tech] Possible hack attempt?

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi All,

While skimming through the AccessFailures logs, I found some unusual
requests that look like attempts to hack the site.  I recognize that such
attempts are not unusual, but wanted to double-check with y'all to see if
the pattern looks familiar and if there is any particular danger we should
be watching out for.

The slightly longer explanation is that the file
/DPubS/tmp/Subscription/AccessFailures.userid contains about a half dozen
entries in which the field for requested resource is not in DPubS format
(e.g., osul.dsq.test01/1205786348), but rather a URL.  I've copied and
pasted the URLs below, in case that might be helpful.

   - http://rabotnitsa.ru/joomla__/administrator/backups/arim/zaf/.
   - http://www.clubnataciotortosa.com/UserFiles/File/edut/ade/.
   - http://www.landi-sempach-emmen.ch/aktionen/image/zafecez/roxovef/.
   - http://mojazubarka.sk/test/admin/sicaqe/jufoxir/.
   -
   http://www.ce-enterprise.com/inetonlinetk/shop/files/img/logo_DarkBlueStyle/goge/oxag/
   .
   - http://chyngachanga.ru/content/wuge/okup/.

I guessing that the fact that these are showing up in the
access*Failures*log suggests that there's probably nothing to worry
about, but I wanted to
double-check.

Thanks,
Henry
-- 
Henry Griffy
Program Coordinator, Documentation & Training
Scholarly Resources Integration Dept
The Ohio State University Libraries
600 Ackerman Rd.
Columbus, OH 43202
Ph: 614-247-4663
Fx: 614-292-2015