Recently have been having hundreds of these ..
– – [03/Feb/2013:02:42:20 +1100] “POST /wp-login.php HTTP/1.1” 403 2815 “-” “Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1); .NET CLR 3.5.30729)”
I have the site setup to force a 403, BUT I would prefer to know what data is being sent by the POST ? Need to now sooner or later what is being sent to the login form.
If it is a few variables, then they can be added to the 403 error script. I have no idea how they were able to do a POST, when the apache side of things is setup to ‘fail/403’ if they attempt a GET, let alone a POST.
Would they be using curl remotely, or similar tool ?
- The topic ‘How to capture data sent by POST ?’ is closed to new replies.