How do I know if my log files are protected or not?

Forum Moderators: phranque

Message Too Old, No Replies

How do I know if my log files are protected or not?

I just became aware of this potential issue

brizad

2:33 am on Mar 31, 2007 (gmt 0)

I've searched high and low about this and I've found several threads about potential fixes. But how do I know if I even NEED a fix?

Is there some way I can test this? Like maybe go to mydomain.com/logs or something and see if I can view the logs?

I assume there must be a common path to the log files that spam bots find, but I haven't figured out what the path is.

jdMorgan

3:24 am on Mar 31, 2007 (gmt 0)

Have you asked your host?

Common paths are example.com/stats/access-log and example.com/logs, but there are many others, and only your host would know.

Jim

brizad

4:13 am on Mar 31, 2007 (gmt 0)

No, I didn't ask yet but I guess that should be my next step. I've looked all through cpanel but couldn't find the files. Webalizer, awstats, etc are in /tmp/ but the actual log files are not there. No doubt it's above cpanel's access. I thought there might be a default place where the logs always were.

I was reading something about referrer spam and then someone mentioned that it was quite common for ALL of a site's logs to be viewable. That got me to thinking that I should check my sites out.

Thanks,
Brad