4 
Jun 28, 2013 1:04:27 AM org.apache.catalina.realm.LockOutRealm authenticate
WARNING: An attempt was made to authenticate the locked user "admin"
Jun 28, 2013 1:04:27 AM org.apache.catalina.realm.LockOutRealm authenticate
WARNING: An attempt was made to authenticate the locked user "admin"
Jun 28, 2013 1:51:08 AM org.apache.catalina.realm.LockOutRealm authenticate
WARNING: An attempt was made to authenticate the locked user "tomcat"
Jun 28, 2013 1:51:55 AM org.apache.catalina.realm.LockOutRealm authenticate
WARNING: An attempt was made to authenticate the locked user "tomcat"
Jun 28, 2013 1:51:55 AM org.apache.catalina.realm.LockOutRealm authenticate
WARNING: An attempt was made to authenticate the locked user "tomcat"
Jun 28, 2013 1:52:36 AM org.apache.catalina.realm.LockOutRealm authenticate
WARNING: An attempt was made to authenticate the locked user "tomcat"
Jun 28, 2013 1:52:36 AM org.apache.catalina.realm.LockOutRealm authenticate
WARNING: An attempt was made to authenticate the locked user "tomcat"

我看到了像上面这样的数百次尝试。有人试图入侵我的网站吗?我应该担心吗?

4

1 回答 1

8

欢迎来到互联网。您的服务器很可能已连接到互联网,因此它会捕捉到各种背景噪音。更聪明的机器人会尝试你正在运行的平台的标准帐户,其他人只会盲目地发出随机请求。

发生了什么事吗?不在此日志文件中的行中 - 机器人在其他情况下是否成功?谁知道。

这就是为什么在所有强化文档中#1 的原因是:消除默认帐户。不幸的是,这还不是所有软件开发过程中的第一名,但是这种漏洞可以使用的默认帐户越来越少。

它还很好地说明了为什么您不应该在容易猜到的帐户名称上使用 100 个最流行的密码之一。

于 2013-06-28T09:49:21.613 回答