Apache Logs Full of Hacking Attempts - What to do?

Here is a portion of my apache error log:

[Wed Aug 01 13:34:31 2012] [error] [client 101.51.193.74] Directory index forbidden by Options directive: /var/www/html/
[Wed Aug 01 14:01:20 2012] [error] [client 194.33.74.145] Directory index forbidden by Options directive: /var/www/html/
[Wed Aug 01 14:17:06 2012] [error] [client 190.136.44.140] Directory index forbidden by Options directive: /var/www/html/
[Wed Aug 01 14:41:32 2012] [error] [client 201.33.243.198] Directory index forbidden by Options directive: /var/www/html/
[Wed Aug 01 15:01:16 2012] [error] [client 91.227.216.146] Directory index forbidden by Options directive: /var/www/html/
[Wed Aug 01 15:36:58 2012] [error] [client 186.227.15.50] Directory index forbidden by Options directive: /var/www/html/
[Wed Aug 01 15:48:08 2012] [error] [client 113.53.99.202] Directory index forbidden by Options directive: /var/www/html/
[Wed Aug 01 18:19:18 2012] [error] [client 177.75.204.145] Directory index forbidden by Options directive: /var/www/html/
[Wed Aug 01 18:22:05 2012] [error] [client 109.207.99.10] Directory index forbidden by Options directive: /var/www/html/
[Wed Aug 01 18:36:03 2012] [error] [client 190.4.120.253] Directory index forbidden by Options directive: /var/www/html/

There are pages of this type of error, particularly people searching for old versions of phpmyadmin. What can I do/run to get rid of these jerks?

Howdy,

Yeah, bots will be constantly scouring your server, looking for vulnerabilities, old apps, and the like.

Everything you’re seeing in the logs there is good – it’s denying access to those users.

All you need to make sure of, on your end, is just that the various apps you have are all up to date :slight_smile:

-Eric

probably nothing, so following eric’s advice is best :slight_smile:

But you could also look into tools like mod_security, fail2ban etc.