: Bogus request paths with a single letter and three numbers causing 404s, what are they? /q873 /s106 /s833 etc. - I get these requests constantly generating a 404. They are from Google, Amazon,
/q873 /s106 /s833 etc. - I get these requests constantly generating a 404. They are from Google, Amazon, CERF and others. What are these people wanting? Is it a dos attack? It's useless to ban the IP as they have dozens if not 100s. Anyone else seen these sort of URLs? Thanks.
More posts by @Courtney195
3 Comments
Sorted by latest first Latest Oldest Best
Well, I found a way to get rid of the bogus URLs. It's sure nice not seeing all those 404s. Below is the code I'm using. Thanks to all who replied.
RewriteCond %{REQUEST_URI} !.htm$
RewriteRule ^([^.]+)((/)?)$ example.com [nc]
Check your access logs or mod security logs if you have POST requests before these requests /q873 /s106 /s833 etc. Usually hackers try to create directories in server to test and upload shell using website vulnerabilities. If POST requests are present and block those ips. Check POST data through mod security logs to be on the safer side.
The google ones could just be search crawlers. The amazon ones could be from a snip of code somebody made on it, or amazon is crawling to create a search engine. It is okay, but be careful.
Terms of Use Create Support ticket Your support tickets Stock Market News! © vmapp.org2024 All Rights reserved.