mirror of
https://github.com/apache/httpd.git
synced 2025-08-20 16:09:55 +00:00
e63f4def85
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@84881 13f79535-47bb-0310-9956-ffa450edef68
23 lines
786 B
Perl
23 lines
786 B
Perl
#!/usr/local/bin/perl
|
|
|
|
# This script is used to detect people trying to abuse the security hole which
|
|
# existed in A CGI script direstributed with Apache 1.0.3 and earlier versions.
|
|
# You can redirect them to here using the "<Location /cgi-bin/phf*>" suggestion
|
|
# in httpd.conf.
|
|
#
|
|
# The format logged to is
|
|
# "[date] remote_addr remote_host [date] referrer user_agent".
|
|
|
|
$LOG = "/var/log/phf_log";
|
|
|
|
require "ctime.pl";
|
|
$when = &ctime(time);
|
|
$when =~ s/\n//go;
|
|
$ENV{HTTP_USER_AGENT} .= " via $ENV{HTTP_VIA}" if($ENV{HTTP_VIA});
|
|
|
|
open(LOG, ">>$LOG") || die "boo hoo, phf_log $!";
|
|
print LOG "[$when] $ENV{REMOTE_ADDR} $ENV{REMOTE_HOST} $ENV{$HTTP_REFERER} $ENV{HTTP_USER_AGENT}\n";
|
|
close(LOG);
|
|
|
|
print "Content-type: text/html\r\n\r\n<BLINK>Smile, you're on Candid Camera.</BLINK>\n";
|