Last post Jun 09, 2015 03:42 PM by Mikesdotnetting
Jun 09, 2015 07:56 AM|mandrews1234|LINK
So I have a small asp site I built for a customer. Since it was a really low budget, I just have some minor error logging on it. I wasn't too concerned because there are really like 3 or 4 custom pages built in .net, and we're not storing anything sensitive
or processing payments or anything. However, I woke up this morning to like over 1000 errors. They were all 404s saying The file '/WebEdit/db/dbwebedit#cc495898.aspx' does not exist. The file '/360.aspx' does not exist., The file '/4.aspx' does not exist.
From what I could see it looks to me like someone was possibly crawling the site looking for logins on generic cms's and other kinds of things.
I've just used the standard asp.net memberhsip provider as a login, but it doesn't sit on https, once again, because we're not really holding an sensitive info. Should I be concerned though? I've done tons of sites in my time and have never seen this before.
Jun 09, 2015 10:14 AM|Mikesdotnetting|LINK
Should I be concerned though?
Jun 09, 2015 11:04 AM|mandrews1234|LINK
I didn't think so, was just doing my due diligence. I did the entire project using linq, so I should be good from a parametrization perspective, correct?
Jun 09, 2015 03:42 PM|Mikesdotnetting|LINK
I did the entire project using linq, so I should be good from a parametrization perspective, correct?