查看我的VisualSVNServer日志,我看到来自不同客户端IP地址的多次尝试尝试在服务器上查找文件。
E.g。这是记录的事件,显示有人试图访问不存在的文件(正在搜索漏洞):
Log Name: VisualSVNServer
Source: VisualSVN Server 2.1
Date: 1/2/2012 8:05:23 AM
Event ID: 1001
Task Category: Apache
Level: Error
Keywords: Classic
User: N/A
Computer: MYSERVER
Description:
File does not exist: C:/Program Files (x86)/VisualSVN Server/htdocs/phpmyadmin
[client 87.106.128.38]
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="VisualSVN Server 2.1" />
<EventID Qualifiers="0">1001</EventID>
<Level>2</Level>
<Task>2</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2012-01-02T13:05:23.000000000Z" />
<EventRecordID>716</EventRecordID>
<Channel>VisualSVNServer</Channel>
<Computer>MYSERVER</Computer>
<Security />
</System>
<EventData>
<Data>File does not exist: C:/Program Files (x86)/VisualSVN Server/htdocs/phpmyadmin
</Data>
<Data>87.106.128.38</Data>
</EventData>
</Event>
如何避免这种情况发生?
答案 0 :(得分:1)
使用Windows防火墙限制仅从受信任的网络访问VisualSVN服务器。