Question

php curl requests present in log files

Posted April 29, 2016 3k views
PHPLinux CommandsUbuntu 16.04

hi,i am managing my web app servers on digital ocean droplet.i recently saw access log files and come to know that from a unknown IP address a specific HTTP request is being targeted to my server and it has some instructions like killing all processes,making a specific file and also making a curl request to a specific IP address.i need help in this matter

Add a comment
abdurleo91
By:
abdurleo91
Add a comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
1 answer
JonsJava April 29, 2016

Unless you see your server actually doing these things, I wouldn’t worry.

They are scanning your server for vulnerabilities. This happens all day, every day, and the longer you watch the logs, you’ll see this behavior more and more. The easiest option is to block them at the firewall. (ufw deny from THEIR_IP to any)

Reply Report
Submit an Answer

Related

Looking for something else?

Ask a new question Search for more help