Welcome to WebmasterWorld Guest from 54.205.119.93

Forum Moderators: ocean10000

Message Too Old, No Replies

lilupophilupop SQL Injection Attack happening ATM

   
8:55 pm on Dec 4, 2011 (gmt 0)

WebmasterWorld Senior Member 5+ Year Member



Thousands of ASP and Coldfusion sites with MS-SQL back-ends and are being compromised by a SQL injection attack.

[isc.sans.edu ]
11:41 pm on Dec 14, 2011 (gmt 0)

10+ Year Member



I have a site that was affected but it is so big it's difficult to trace where the input is. I can turn on the logs for a limited period. But the site gets a lot of traffic so I soon have to turn the logs off or I run out of space. Does anyone know of any way I can track the inputs and catch them as they happen so I can trace which script is causing the probelm - eg email me if any input uses the word 'script' or whatever?
2:58 pm on Dec 19, 2011 (gmt 0)

WebmasterWorld Administrator 10+ Year Member Top Contributors Of The Month



Does your site use ASP Classic or ASP.net?
3:08 pm on Dec 19, 2011 (gmt 0)

10+ Year Member



I use classic ASP. Luckily I discovered Urlscan which has solved all my problems as I'm able to server-wide filter urls.
This 33 message thread spans 2 pages: 33
 

Featured Threads

Hot Threads This Week

Hot Threads This Month