Just been looking at the web logs for my cubs website (twyfordcubs.org.uk). Some one tried to get into the admin section, they found it though google, interesting.
The log entry:
2004-02-13 06:27:21 202.152.11.98 GET
then, sure enough, entry in my log-on log:
login: ' or 1=1--
13/02/2004 06:27:29 202.152.11.98 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) Opera 7.11 [en]
Logged in: False
Pathetic attempt, but I'll bet they get in somewhere. My company's site for example - guess I'd better check up on that.
At least they're using a decent browser.
backtrace:
Tracing route to sisfo2.idola.net.id [202.152.11.98]
over a maximum of 30 hops:
1 1 ms 1 ms 1 ms my.router [192.168.1.1]
2 16 ms 16 ms 14 ms 81-86-71-1.dsl.pipex.com [81.86.72.1]
3 16 ms 16 ms 16 ms 62-241-161-41.dsl.pipex.com [62.241.161.41]
4 18 ms 16 ms 16 ms POS4-0.GW2.LND9.ALTER.NET [146.188.56.97]
5 15 ms 16 ms 17 ms so-4-0-0.xr1.lnd9.alter.net [158.43.150.157]
6 16 ms 15 ms 16 ms so-0-1-0.TR1.LND9.ALTER.NET [146.188.15.33]
7 94 ms 93 ms 94 ms so-7-0-0.IR1.NYC12.ALTER.NET [146.188.8.197]
8 94 ms 94 ms 95 ms 0.so-1-0-0.IL1.NYC9.ALTER.NET [152.63.23.61]
9 158 ms 160 ms 157 ms 0.so-1-1-0.TL1.SAC1.ALTER.NET [152.63.10.78]
10 158 ms 157 ms 157 ms 0.so-7-0-0.XL1.SAC1.ALTER.NET [152.63.53.249]
11 158 ms 158 ms 157 ms 0.so-3-0-0.XR1.SAC1.ALTER.NET [152.63.53.238]
12 157 ms 158 ms 158 ms POS6-0.IG2.SAC1.ALTER.NET [152.63.54.113]
13 * * * Request timed out.
14 * * * Request timed out.
PS: I wonder if password hashing is a bit extreme for a cubs website.