Tim
Life is good
Joined: Nov 2007
Location: Kalamazoo
My frist SPAM!!
Also my first few SQL Injection attacks, even better!
In looking at my logs tonight, as well as looking at my site I noticed something fun. I received my first comment spam!! Woo Hoo!. So a big thanks to nikolas54@msn.comfrom IP address 80.17.207.50 and 212.116.219.108. Oh and just before he changed it, or the bot changed it to a proxy address it was 92.48.119.136. He posted the comment:
"comment4, instructional fight videos, 8]]], girl privates, 469869, eyeglass world in columbus georgia, augqt, map 20of 20mass., zsdvy,"
To my vacation blog post. Along wiith this he also provided a link to his site, which I will not be sharing just to keep it out of prying eyes. Thou I will say it was a page full of "sexy time" links, good stuff too.
Also to add to my fun I ran across an injection attack from back on 5-27. Something was trying to pass this link do try and do some damaged to my database:
/About.aspx')%20and%201=convert(int,(select%20system_user))--sp_password
There was 3 URL's passed in all, with all of them attempting to hi-jack my system_user password. Sorry chumps even if you did get it it's not going to do you much good. After all what kind of an ass do you think I am to leave it unprotected. Try harder next time maybe you'll get something good.
This is not to say that this was a first attempt at being hacked. If I look at other logs for the server I see stuff hitting it all the time. Though I will say nothing has compromised my system. I have however had to make some network changes, this alone reduced my attack surface. I have not seen any attacks on the server in over a week. Lets just hope it stays that way.
I might be an amature developer, but security is one thing I know.