|
Title: Website Indexing Post by: curioustester on May 21, 2008, 12:21:12 PM Hi,
I was going through IIS logs and and trying to figure out how hackers from the internet where able able find a directory/file that was hidden through obscurity. I ran sensepost against the website and it indicates that the directories/site is not indexable. So how did they find it. The names were extremely uncommon. A friend with a great deal of experience tells me the indexing of website cannot be turned off and is part of the w3 standard. Any insight would be really appreciated. I am really trying to figure out how this want found. Thanks. Title: Re: Website Indexing Post by: BillV on May 21, 2008, 01:45:24 PM What do your logs show thus far?
Are there a bunch of requests like they were scanning for uncommon files? GET /weirdname.htm GET /weirdname2.htm etc. Was it simply accessed directly without any pre-attacks? Could it have been an inside job? Are there links anywhere on any of your pages that lead to these sites? Title: Re: Website Indexing Post by: jimbob on May 21, 2008, 04:55:22 PM A friend with a great deal of experience tells me the indexing of website cannot be turned off and is part of the w3 standard. Indexing can be turned off, there is no standard to my knowledge which dictates that directory indexing must be enabled. Security by obscurity provides little in the way of protection. If someone has accessed these 'hidden' files perhaps they knew the correct URL in the first place. Does the attacker try to guess the URL or do they go straight there? Jimbob Title: Re: Website Indexing Post by: geekyone on May 21, 2008, 06:43:09 PM Do you have the directory/file hidden from indexing using the robots.txt file? Maybe they tried all the directories listed there?
Powered by SMF 1.1.5 |
SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com |