Email Reporting Format
Posted: 18 Apr 2012, 15:41
I use the contents of the email report from upload scripts to file abuse reports. It currently does not report the destination IP or the time the violation occurred. This information is useful in abuse reports.
Code: Select all
Scanning web upload script file... Web upload script user: nobody (99) Web upload script owner: () Web upload script: /home/xxxxxx/public_html/catalog/admin/banner_manager.php Remote IP: xxx.xxx.xxx.xxx Deleted: No Quarantined: Yes [/home/quarantine/nobody/20120418-100647-T47Kd0Wnv1EAAD4uFIoAAAAT-file-7u7xKx.1334758008_1] NOTE: This alert may be a ModSecurity false-positive as /home/gr8gear/public_html/catalog/admin/banner_manager.php does not exist