Pro*_*roy 4 security apache-2.2
我的提供商通知我的 Web 服务器上存在出站攻击。经过进一步检查,我在我的 Apache error.log 文件中看到了这一点:
--2012-02-04 04:40:59-- http://www.luxelivingforum.com/wp-content/themes/lifestyle/run
Resolving www.luxelivingforum.com... 184.168.113.199
Connecting to www.luxelivingforum.com|184.168.113.199|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 68338 (67K) [text/plain]
Saving to: `./run'
0K .......... .......... .......... .......... .......... 74% 61.8K 0s
50K .......... ...... 100% 11.1M=0.8s
2012-02-04 04:41:01 (82.4 KB/s) - `./run' saved [68338/68338]
Unquoted string "crazy" may clash with future reserved word at ./bot.pl line 174.
Unquoted string "crazy" may clash with future reserved word at ./bot.pl line 211.
Unquoted string "crazy" may clash with future reserved word at ./bot.pl line 244.
Unquoted string "crazy" may clash with future reserved word at ./bot.pl line 251.
上面的东西是什么意思?
您的服务器一定已经受到攻击,现在正在被远程命令发起攻击。您应该恢复上次未妥协的备份并立即修补您的 wordpress 安装。您必须每天监视 wordpress(和 wordpress 插件)的安全建议。