Steve Senkus

Software Developer living in 🌞sunny, 🌞sunny San Diego

DigitalOcean – There are some sharks out there!

I recently was setting up a quick proof-of-concept CodeIgniter prototype on a fresh DigitalOcean droplet and noticed quite a lot of activity in my log files. It seemed like someone (or some bot) was scanning my app for potential vulnerabilities and attack vectors! Yikes! The Log File Here’s a sample from the log file, with normal DEBUG log messages being omitted: ERROR - 2014-07-22 19:53:17 --> 404 Page Not Found --> _PHPMYADMIN ERROR - 2014-07-22 19:54:34 --> 404 Page Not Found --> _pHpMyAdMiN ERROR - 2014-07-22 19:55:51 --> 404 Page Not Found --> _phpmyadmin ERROR - 2014-07-22 19:59:35 --> 404 Page Not Found --> administrator ERROR - 2014-07-22 20:00:13 --> 404 Page Not Found --> adminmysql ERROR - 2014-07-22 20:01:30 --> 404 Page Not Found --> admn ERROR - 2014-07-22 20:02:15 --> 404 Page Not Found --> admin ERROR - 2014-07-22 20:02:45 --> 404 Page Not Found --> bbs ERROR - 2014-07-22 20:07:19 --> 404 Page Not Found --> cpdbadmin ERROR - 2014-07-22 20:08:41 --> 404 Page Not Found --> database ERROR - 2014-07-22 20:10:42 --> 404 Page Not Found --> dbadm ERROR - 2014-07-22 20:11:23 --> 404 Page Not Found --> dbsql ERROR - 2014-07-22 20:12:43 --> 404 Page Not Found --> forum ERROR - 2014-07-22 20:14:05 --> 404 Page Not Found --> httpdocs ERROR - 2014-07-22 20:18:48 --> 404 Page Not Found --> php-my-admin ERROR - 2014-07-22 20:20:08 --> 404 Page Not Found --> php /* ****************************************************************** NOTE: notice how 'phpmyadmin' is missing! Read more →