sketchy nginx access log entries

security nginx log-files

Notice the magic string () { :; };. They are trying to poke around and see if your server is vulnerable to the ShellShock exploit. Perl is used here to print and see if the attack succeeded.

Test if your server is vulnerable to ShellShock. If it's not, you are clear.

See also: Is my server vulnerable to a perl exploit?


He's looking to do shellshock against you. The funny thing is that he misconfigured his attack. I do malware capture and his wget/fetch/etc fail because his package ain't there :-)

Related

Block an IP-address which tries to download entire website
Ansible: Raise Error if replace did not find anything to replace
VMware vsphere essentials plus network cabling
Scan outgoing Postfix email for spam with Spamassassin
Redirecting DNS port to a specific DNS server
Problems upgrading from PHP 5.1.6 to 5.2.9
Apache If statement not working
How to plot with a png as background? [duplicate]
Dynamic mixin in Scala - is it possible?
LINQ for Java tool [closed]
How to get week number of the month from the date in sql server 2008
Native JSON support in iOS?