웹마스터 팁

phpmyadmin 설치뒤 setup 스크립트는 삭제해야

2014.11.12 16:03

각각 경로를 대입하며 setup.php 스크립트를 찾는 경우가 있습니다.

이를 그냥 둘 경우 보안 취약점이 될 수 있으므로 삭제하시는 것이 좋습니다.

이하는 해당 침입 시도 로그입니다.(아이피는 변경처리함)

2014-09-27 15:09:31 <SERVERIP> GET /muieblackcat - 80 - <HACKERIP> - - 404 0 2 906
2014-09-27 15:09:31 <SERVERIP> GET /scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:09:32 <SERVERIP> GET /admin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:32 <SERVERIP> GET /admin/pma/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:33 <SERVERIP> GET /admin/phpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:33 <SERVERIP> GET /db/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:09:35 <SERVERIP> GET /dbadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:09:35 <SERVERIP> GET /myadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:09:36 <SERVERIP> GET /mysql/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:09:36 <SERVERIP> GET /mysqladmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:37 <SERVERIP> GET /typo3/phpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:09:37 <SERVERIP> GET /phpadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:39 <SERVERIP> GET /pma/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:09:39 <SERVERIP> GET /web/phpMyAdmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 359
2014-09-27 15:09:40 <SERVERIP> GET /xampp/phpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:40 <SERVERIP> GET /web/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:09:41 <SERVERIP> GET /php-my-admin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:46 <SERVERIP> GET /phpMyAdmin-2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 1359
2014-09-27 15:09:46 <SERVERIP> GET /_phpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:09:48 <SERVERIP> GET /administrator/components/com_joommyadmin/phpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:48 <SERVERIP> GET /apache-default/phpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:52 <SERVERIP> GET /cpanelphpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:52 <SERVERIP> GET /cpphpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:09:53 <SERVERIP> GET /forum/phpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:09:55 <SERVERIP> GET /php/phpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 1328
2014-09-27 15:09:55 <SERVERIP> GET /phpmyadmin/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:56 <SERVERIP> GET /phpMyAdmin-2.10.0.0/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:09:56 <SERVERIP> GET /phpMyAdmin-2.10.0.1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:57 <SERVERIP> GET /phpMyAdmin-2.10.0.2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:09:57 <SERVERIP> GET /phpMyAdmin-2.10.0/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:09:59 <SERVERIP> GET /phpMyAdmin-2.10.1.0/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:09:59 <SERVERIP> GET /phpMyAdmin-2.10.2.0/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:00 <SERVERIP> GET /phpMyAdmin-2.11.0.0/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:00 <SERVERIP> GET /phpMyAdmin-2.11.1-all-languages/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:01 <SERVERIP> GET /phpMyAdmin-2.11.1.0/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:01 <SERVERIP> GET /phpMyAdmin-2.11.1.1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:03 <SERVERIP> GET /phpMyAdmin-2.11.1.2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:10:03 <SERVERIP> GET /phpMyAdmin-2.6.1-pl2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:04 <SERVERIP> GET /phpMyAdmin-2.6.1-pl3/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:04 <SERVERIP> GET /phpMyAdmin-2.6.4-pl3/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 359
2014-09-27 15:10:07 <SERVERIP> GET /phpMyAdmin-2.6.4-pl4/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 1421
2014-09-27 15:10:07 <SERVERIP> GET /phpMyAdmin-2.6.4-rc1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 296
2014-09-27 15:10:08 <SERVERIP> GET /phpMyAdmin-2.6.5/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:08 <SERVERIP> GET /phpMyAdmin-2.6.6/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:09 <SERVERIP> GET /phpMyAdmin-2.6.9/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 281
2014-09-27 15:10:09 <SERVERIP> GET /phpMyAdmin-2.7.0-beta1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:10 <SERVERIP> GET /phpMyAdmin-2.7.0-pl1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:10 <SERVERIP> GET /phpMyAdmin-2.7.0-pl2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:12 <SERVERIP> GET /phpMyAdmin-2.7.0-rc1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:12 <SERVERIP> GET /phpMyAdmin-2.7.5/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:16 <SERVERIP> GET /phpMyAdmin-2.7.7/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:16 <SERVERIP> GET /phpMyAdmin-2.8.2.3/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:10:17 <SERVERIP> GET /phpMyAdmin-2.8.2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:10:17 <SERVERIP> GET /phpMyAdmin-2.8.3/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:19 <SERVERIP> GET /phpMyAdmin-2.8.4/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:19 <SERVERIP> GET /phpMyAdmin-2.8.5/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:23 <SERVERIP> GET /phpMyAdmin-2.8.7/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:10:23 <SERVERIP> GET /phpMyAdmin-2.8.8/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:24 <SERVERIP> GET /phpMyAdmin-2.8.9/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:10:24 <SERVERIP> GET /phpMyAdmin-2.9.0-rc1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:10:26 <SERVERIP> GET /phpMyAdmin-2.9.0.1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:26 <SERVERIP> GET /phpMyAdmin-2.9.0.2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:10:28 <SERVERIP> GET /phpMyAdmin-2.9.0/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:10:28 <SERVERIP> GET /phpMyAdmin-2.9.1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:29 <SERVERIP> GET /phpMyAdmin-2.9.2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:29 <SERVERIP> GET /phpMyAdmin-2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:31 <SERVERIP> GET /phpMyAdmin-3.0.0-rc1-english/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:34 <SERVERIP> GET /phpMyAdmin-3.0.1.0-english/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 296
2014-09-27 15:10:38 <SERVERIP> GET /phpMyAdmin-3.0.1.1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:38 <SERVERIP> GET /phpMyAdmin-3.1.0.0-english/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:39 <SERVERIP> GET /phpMyAdmin-3.1.0.0/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:39 <SERVERIP> GET /phpMyAdmin-3.1.1.0-all-languages/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:40 <SERVERIP> GET /phpMyAdmin-3.1.2.0-all-languages/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312
2014-09-27 15:10:40 <SERVERIP> GET /phpMyAdmin-3.1.2.0-english/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:42 <SERVERIP> GET /phpMyAdmin-3.1.2.0/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 328
2014-09-27 15:10:42 <SERVERIP> GET /phpMyAdmin-3.4.3.1/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 343
2014-09-27 15:10:43 <SERVERIP> GET /phpMyAdmin2/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 359
2014-09-27 15:10:43 <SERVERIP> GET /phpMyAdmin3/scripts/setup.php - 80 - <HACKERIP> - - 404 0 2 312

이 게시물을

2-COIN

2015.01.06 17:18

http://whoisidc.com/board/read.php?bid=1&pid=220&page=2&ord=

해결책으로

1. 업데이트

2. alias 변경

3. setup.php 삭제

이 세가지를 다 해야하는 건가봐요?

좋아요 댓글 신고

제목	글쓴이	날짜
추천 웹 디자인, 모바일 디자인, CSS3, UI/UX 애니메이션을 확인할 수 있는 블로그	나도모름	2015.01.14
Centos yum을 이용한 매일밤 자동업데이트	ひりゅう.	2015.01.14
폰갭 어플 연결시 admob 광고 추가 방법	지인에드컴	2015.01.14
1.7.9 mp3확장명 통합검색시 다운로드 문제 임시 조취	꾸링	2015.01.13
윈도즈에서 PHP3와 MySQL 설치 [40]	zero	2000.03.06
페이지에 명언,좋은글,책속의 한줄 랜덤으로 뿌리기 [1]	고니	2014.12.02
[PHP 기초] 사용법, 기본 문법 [8]	난다날아	2011.03.23
날짜비교 함수 [1]	별을따는소년	2014.12.17
[수정1차] XE 1.7.X 용 nginx rewrite rule 입니다! [15]	CM(OEZ)	2013.02.21
nginx Tip 업로드시 [Error Code: HTTP Error, File name: 파일명, Message: 413] 뜰떄 [3]	leave	2011.08.18
nginx에서 짧은 주소가 동작하지 않는 경우 해결 [3]	Gunmania	2013.03.24
[익스10] 스케치북 갤러리 사용시 목록 썸네일 오류현상 해결하기 [4]	imgXE™	2013.05.16
timezone (타임존) 관련한 문제 (SERVER, DBMS, PHP, XE) [2]	세상의모든계산기	2015.01.07
우분투 nginx + php + MariaDB 에 XE 설치하기 (+Rewrite) [2]	Neder	2013.06.22
게시글을 삭제하면 해당 글 내부에 첨부된 첨부파일이 서버에서 사라지지 않는 버그 수정법 [6]	sejin7940	2015.01.05
XE 쉬운설치에 sftp 이용하기 [6]	비나무	2011.03.15
화일첨부 디렉토리의 빈 폴더 삭제... [13]	카르마	2012.01.20
사이트 잠금 수동으로 풀기	StyleRoot	2015.01.07
사용자정의 기준 정렬과 사용자정의 검색이 동시에 작동하도록 기능 개선 [2]	sejin7940	2015.01.06
phpmyadmin 설치뒤 setup 스크립트는 삭제해야 [1]	YJSoft	2014.11.12

태그 쓰기

웹마스터 팁

phpmyadmin 설치뒤 setup 스크립트는 삭제해야

댓글 1

2-COIN

About

Get involved

Blog

Download

Support

Showcase