[wp-hackers] ALERT - configured GET variable limit exceeded - dropped variable 'u_his' / 'u_t'

Brian Layman bulk at thecodecave.com
Thu May 20 22:32:13 UTC 2010


Interesting.. I was going to guess this was probably just someone trying to
crack your site, but those "attacker" IP addresses are from Google according
to DNSStuff..

http://www.dnsstuff.com/tools/ipall/?tool_id=67&token=&toolhandler_redirect=
0&ip=200.93.221.182
http://www.dnsstuff.com/tools/ipall/?tool_id=67&token=&toolhandler_redirect=
0&ip=66.249.67.54 

Now it LOOKS like Google is trying a bunch of different parameters on
index.php to see if there are different results available.  If that's true,
it will probably stop once Google decides they are all bogus.

Do you have something interesting on your site (javascript or dropdowns)
that would provide Google with lots of params to try?

-Brian Layman



More information about the wp-hackers mailing list