Add Signature - lighttpd
Issue #114
new
Would be great if you could detect unauthorized logins to a lighttpd webserver and block the offender.
Comments (3)
-
-
Certainly…
May 9 09:12:07 SN-06bd13 daemon.err lighttpd[13186]: (mod_auth.c.934) digest: auth failed for admin : wrong password, IP: xxx.xxx.xxx.xxx
There are two spaces between the for and the username ---------------------------------------^^ at least on our version of lighttpd
-
- attached attack_scanner(1).l
- attached attack_parser(1).y
- attached attack.h
These are the changes I made to add lighttpd to the detected applications.
- Log in to comment
Sure, do you have examples of what unauthorized logins to lighttpd look like?