Jump to content

staroflaw

Active Members
 View Profile  See their activity

  • Posts

    7

  • Joined

  • Last visited

 Content Type 

Posts posted by staroflaw

    Webserver Access Log Help

    in Questions

    Posted · Edited by staroflaw

    Thanks for all your comments.

    I run the XP box on a ESXi server and make weekly snapshots.

    I have upgraded to Apache 2.2.19, Blocked the offending IP addresses and sent an Abuse email to the service provider of the IP addresses.

    This is a Email I got back from one of the provider's

    Hello,

    Please provide us with an excerpt of logs (5-10 entries in text format) of this activity so we can relay this complaint to our customer who is ultimately responsible for the IP address in question. Thank you

    Not that is makes any difference now, But surly the service provider is ultimately responsible for the IP address as they host it?

    To answer my own question - Looking at the TOS and AUP of the provider they do class this type of activity "A Violation" of there TOS/AUP.

    Next thing - Should I be worried that I was getting "302(Found) on POST" and "200(OK) on GET"?

    Thanks again.

    Mick

    Webserver Access Log Help

    in Questions

    Posted · Edited by staroflaw

    I have just noticed I am getting a lot of requests that look like this.

    174.133.29.34 - - [17/Jul/2011:19:21:57 +0100] "POST http://yourinfo.any-request-allowed.com/ HTTP/1.1" 302 2 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"

    174.133.29.34 - - [17/Jul/2011:19:21:57 +0100] "GET http://yourinfo.any-request-allowed.com/phpbb3/ HTTP/1.1" 200 24086 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"

    64.120.177.26 - - [17/Jul/2011:19:48:28 +0100] "POST http://yourinfo.any-request-allowed.com/ HTTP/1.1" 302 2 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"

    64.120.177.26 - - [17/Jul/2011:19:48:29 +0100] "GET http://yourinfo.any-request-allowed.com/phpbb3/ HTTP/1.1" 200 24088 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"

    I have had over 100 today.

    Can anyone shed any light on what it is?

    I also got the same a few weeks ago, I just blocked the IP.

    Ime using an XP box with Apache 2.2.17.

    I know I could just block it, But would like to know what is happening.

    This is what info I get from http://yourinfo.any-request-allowed.com/

    Array

    (

    [REDIRECT_SCRIPT_URL] => /

    [REDIRECT_SCRIPT_URI] => http://yourinfo.any-request-allowed.com/

    [REDIRECT_STATUS] => 200

    [sCRIPT_URL] => /

    [sCRIPT_URI] => http://yourinfo.any-request-allowed.com/

    [HTTP_HOST] => yourinfo.any-request-allowed.com

    [HTTP_USER_AGENT] => Mozilla/5.0 (Windows NT 5.1; rv:2.0.1) Gecko/20100101 Firefox/4.0.1

    [HTTP_ACCEPT] => text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

    [HTTP_ACCEPT_LANGUAGE] => en-us,en;q=0.5

    [HTTP_ACCEPT_ENCODING] => gzip, deflate

    [HTTP_ACCEPT_CHARSET] => ISO-8859-1,utf-8;q=0.7,*;q=0.7

    [HTTP_KEEP_ALIVE] => 115

    [HTTP_DNT] => 1

    [HTTP_CONNECTION] => keep-alive

    [PATH] =>

    [sERVER_SIGNATURE] => <address>Apache Server at yourinfo.any-request-allowed.com Port 80</address>

    [sERVER_SOFTWARE] => Apache

    [sERVER_NAME] => yourinfo.any-request-allowed.com

    [sERVER_ADDR] => 174.133.29.34

    [sERVER_PORT] => 80

    [REMOTE_ADDR] => XXX.XXX.XXX.XXX

    [DOCUMENT_ROOT] =>

    [sERVER_ADMIN] => root@localhost

    [sCRIPT_FILENAME] =>

    [REMOTE_PORT] => 4148

    [REDIRECT_URL] => /

    [GATEWAY_INTERFACE] =>

    [sERVER_PROTOCOL] => HTTP/1.1

    [REQUEST_METHOD] => GET

    [QUERY_STRING] =>

    [REQUEST_URI] => /

    [sCRIPT_NAME] => /index.php

    [php_SELF] => /index.php

    [REQUEST_TIME] => 1308454907

    )

    Array

    (

    )

    Thanks - Mick

    Python Xlwt Help

    in Applications & Coding

    Posted

    This seems to work. May not be the best way to do it... But I got it working.

    import xlwt

book = xlwt.Workbook(encoding="utf-8")
sheet1 = book.add_sheet("Python Sheet 1")


f=open('hstats.txt','r')
data_list = f.readlines()
f.close()


i=0 
x=4

r=0
c=0


for line in data_list:

  sheet1.write(r, c, line)

  i=i+1
  c=c+1


  if i &gt; x:
    r=r +1
    c=0 
    x=x +5 


book.save("python_spreadsheet.xls")

    Python Xlwt Help

    in Applications & Coding

    Posted

    Hello, I am new to Python and need some help with xlwt.

    I have a txt file I am trying to convert to a spredsheet. (XML)

    line01
line02
line03
line04
line05
line06
line07
line08
line09
line10

    How can I read the txt file and every 5 lines start a new Row.

    line01     line02     line03     line04     line05
line06     line07     line08     line09     line10
line11     line12     line13     line14     line15

    This is what I have so far.

    import xlwt

book = xlwt.Workbook(encoding="utf-8")
sheet1 = book.add_sheet("Sheet1")


fileIN = open('out2.txt', 'r')
line = fileIN.readline()

#--NEED HELP WITH THE REST--


fileIN.close()
book.save("python_spreadsheet.xls")

    Decoding Amf3

    in Applications & Coding

    Posted · Edited by staroflaw

    Hello,

    I just need some advice on how to Decoding AMF3 Packets.

    I play a Flash game called EVONY and am trying to 'log' some in game info. (Commands sent and the reply)

    I am using wireshark to capture the packets, but they look like jargon.

    ...cmd.%trade.searchTrades.data
..resType........
#..cmd.data.%trade.searchTrades
C..sellers
buyers.packageId.ok...
#.
amount.price....$.@H.fffff
.....r.@H......
.......@Hs33333
.......@H......
.......@G.........
....^.@F.G..z.
.......@F......
.....@.@F.G..z.
.......@F......
....r.@E...
=q...........

    I can see some data but as you can see alot of "...."

    I have been reading about 'amfast' But Ime not a programmer and dont understand how to use it. Or if it will help.

    Any info is welcome.

    Thank you

×
×
  • Create New...