1. Home
  2. Forums Index
  3. WebmasterWorld / Website Analytics - Tracking and Logging 11:15 am May 14, 2026

Forum Moderators: DixonJones

Message Too Old, No Replies

Being probed for netlogon & sysvol

Is someone trying to access the site files?

         

Wighty

12:09 pm on Mar 22, 2007 (gmt 0)

10+ Year Member



I manage a small municipality's website on a 3rd party Apache server. Over the past few weeks I've noticed increased error log entries for netlogon & sysvol.

As I understand it those files/folders are part of a program that would be used if I hosted a website on my computer (localhost -127.0.0.1).

So these access attempts make me think that someone is searching for a way to gain access to the web site for some purpose that most likely would be destructive - or less than beneficial.

Is my thinking correct, or is there another reason why someone who is not the site admin needs to access netlogon & sysvol?

Thoughts, comments?

webdoctor

7:09 am on Mar 25, 2007 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



Over the past few weeks I've noticed increased error log entries for netlogon & sysvol.

What OS are you running Apache on? What else runs on the webserver?

Netlogon is a service which runs on Windows domain controllers and SYSVOL is a system share which is created on Windows domain controllers.

You're not running a webserver on a domain controller, are you? <boggle> This is a Bad Idea(tm)

 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. WebmasterWorld / Website Analytics - Tracking and Logging 11:15 am May 14, 2026