joined:Feb 18, 2003
Over the past few months the number of attempts to load scripts on our web server have increased a lot.
It started off with this 1st.cgi a few months ago. It's always IP's from China.
Sep 25 22:52:31 server1 httpd: [error] [client 220.127.116.11] script not found or unable to stat: /var/www/cgi-bin/1st.cgi
Repeat that couple of times per minute x hundreds of times per day
Lately it's been ip.cgi and again always an IP from China.
Sep 28 15:07:28 server1 httpd: [error] [client 18.104.22.168] script not found or unable to stat: /var/www/cgi-bin/ip.cgi
Repeat that 4 times per second x thousands of times per day
Do I admit defeat and let them take up gigs of space in my log files? The thousands of lines in log files per day also makes it much harder to find legitimate errors since I use a web interface that shows me the last 100 lines of error_log.
What are my options for blocking these attempts?