Category Archives: Website

Cleaning up the blog even more

I’ve been paying more attention to my log files lately. What I’ve found is not surprising, just disheartening. There are a number of requests by bots and script hackers to specific pages that have been regularly exploited in the past.

Aside from keeping my platform up-to-date (this includes Apache, Linux, WordPress, and so-on) I’ve been restricting access to these potentially unsafe resources and I’ve finally put together a script to automate denying compromised hosts access to the site.

Continue reading Cleaning up the blog even more

Way too much traffic

I noticed the site was getting a lot of traffic and couldn’t figure out what was causing my sites to eventually become unresponsive. Since I have some free time on my hands I figured it would be a good time to look into it.

cat /var/log/apache2/*.access.log | cut -d'"' -f2,3 | awk '{print $4" "$2}' | sort | uniq -c | sort -rg | head

This resulted in A LOT of requests against xmlrpc.php. This is just my dinky little site but turns out there are a lot of script kids out there that like to hack up the xmlrpc.php to do their bidding. So I shut it off completely with an .htaccess directive.

And wouldn’t you know it… my apache2 processes haven’t spun up past 12 since I did it. I’ll get some updated photos up here soon too – I’d love to share some pics of the kids (and the fur kid) and maybe keep an actual running blog for a bit.

So entry first entry in over a year – complete!