Nik has asked for the wisdom of the Perl Monks concerning the following question:
Hello monks,
Can you explain such an entry? You can see this your self by clickign on your ip address shown bottom down on my webpage.
When someone visits my webpage at http://nikos.no-ip.org i log to database his ip address, time and date of the visit, what article he chosed to see from my popup menu and how many times the same ip address visited my page.
Today i saw somethign really awkward, i saw in the log an entry looking like above among other normal entries.:
This automated crawl bot of google's visited from the same ip address my page for the 3rd time and its last selection of param('select') is named "item_from_drop_down_menu"!!!!!crawl-66-249-67-210.googlebot.com 09 Jan, 20:09 item_from_drop +_down_menu 3 zeep.ldc.upenn.edu 07 Jan, 21:29 Θανάσ +;ιμα αμαρτήμα& +#964;α 5
How is this possible to even be there? i only log valid selections that exist in my popup menu and of course i dont have an entry like the above.Here is my code that does the logging:
As you can see no other entry except the valid ones can pass the if and unless code blocks and then get inserted into the db.my @files = glob "$ENV{'DOCUMENT_ROOT'}/data/text/*.txt"; my @menu_files = map m{([^/]+)\.txt}, @files; Encode::from_to($_, 'ISO-8859-7', 'utf8') for @menu_files; print header( -charset=>'utf8' ); my $article = param('select') || "Αρχική + Σελίδα!"; if ( param('select') ) { #If user selected an item from the drop dow +n menu unless( grep /^\Q$article\E$/, @menu_files ) #Unless user selectio +n doesn't match one of the valid filenames within @menu_files { if( param('select') =~ /\0/ ) { $article = "*Null Byte Injection* attempted & logged!"; print br() x 2, h1( {class=>'big'}, $article ); } if( param('select') =~ /\.\.\// ) { $article = "*Backwards Directory Traversal* attempted & logge +d!"; print br() x 2, h1( {class=>'big'}, $article ); } $select = $db->prepare( "UPDATE guestlog SET article=?, date=?, +counter=counter+1 WHERE host=?" ); $select->execute( $article, $date, $host ); exit 0; } Encode::from_to($article, 'utf8', 'ISO-8859-7'); #Convert user sel +ected filename to greek-iso so it can be opened open FILE, "<$ENV{'DOCUMENT_ROOT'}/data/text/$article.txt" or die $ +!; local $/; $data = <FILE>; close FILE; Encode::from_to($article, 'ISO-8859-7', 'utf8'); #Convert user sel +ected filename back to utf8 before inserting into db $update = $db->prepare( "UPDATE guestlog SET article=?, date=?, cou +nter=counter+1 WHERE host=?" ); $update->execute( $article, $date, $host ) }
Can you explain such an entry? You can see this your self by clickign on your ip address shown bottom down on my webpage.
|
---|
Replies are listed 'Best First'. | |
---|---|
Re: Weird entry index my guestlog
by moritz (Cardinal) on Jan 10, 2008 at 17:33 UTC | |
by Fletch (Bishop) on Jan 10, 2008 at 18:03 UTC | |
Re: Weird entry index my guestlog
by dragonchild (Archbishop) on Jan 10, 2008 at 17:25 UTC | |
by Nik (Initiate) on Jan 10, 2008 at 20:31 UTC | |
by dragonchild (Archbishop) on Jan 10, 2008 at 21:39 UTC | |
by Nik (Initiate) on Jan 10, 2008 at 21:54 UTC | |
by Nik (Initiate) on Jan 11, 2008 at 12:27 UTC | |
| |
Re: Weird entry index my guestlog
by CountZero (Bishop) on Jan 10, 2008 at 18:22 UTC | |
by Nik (Initiate) on Jan 10, 2008 at 20:30 UTC | |
by CountZero (Bishop) on Jan 11, 2008 at 06:08 UTC |
Back to
Seekers of Perl Wisdom