Menu

Topic-icon I think that some google organic search incoming

  • cgmsys
  • cgmsys's Avatar Topic Author
  • Offline
  • Junior Boarder
  • Junior Boarder
More
7 years 2 weeks ago #280 by cgmsys
I think that some incoming clicks from google might be blocked from organic search.. I saw an entry like

262930719.1372110435.1.1.utmcsr=aol|utmccn=(organic)|utmcmd=organic|utmctr=Taylorsville store in Washington\'s crossing

Some googleing seemed to indicate that was some type of organic search from google. I think the backslash before the apostrophe triggered the block.

Can you check on this??

thanks

chris

Please Log in or Create an account to join the conversation.

  • cgmsys
  • cgmsys's Avatar Topic Author
  • Offline
  • Junior Boarder
  • Junior Boarder
More
7 years 2 weeks ago - 7 years 2 weeks ago #281 by cgmsys
BTW - it seems that uploads of the logs are still blocked.

thanks

chris

The google search I used was google|utmccn=(organic)
Last edit: 7 years 2 weeks ago by cgmsys. Reason: add info

Please Log in or Create an account to join the conversation.

  • cgmsys
  • cgmsys's Avatar Topic Author
  • Offline
  • Junior Boarder
  • Junior Boarder
More
7 years 2 weeks ago #282 by cgmsys
See if this works. There were only 2 entries


Ip Time User Description URL Component Type Readed
67.164.58.89 2013-06-24 15:47:08 --- Duplicate backslashes :[REQUEST:__utmz]
/oops.htm com_content
174.62.151.145 2013-06-24 08:04:01 --- Duplicate backslashes :[REQUEST:__utmz]
/Destinations/Delaware-Canal/Virginia-Forest-Recreation-Area/locks.html com_content

Please Log in or Create an account to join the conversation.

More
7 years 2 weeks ago #283 by Jose
Hi cgmsys,

I saw this entries in the log file you sent me last week.
As you can see, those entries refer to _utmz requests, that is a field of the cookies that Google Analitycs stores in our site. You may see also entries refered to _utma, _utmb or _utmc, that also are fields of this cookies.
Since 2.4.0 version the rules duplicate backslashes and backslashes added are not mandatory, so this requests will not be blocked, although the rules will be applied and you will see an entry in your logs.

The SQL Injection filter has a main rule: SQL pattern. This rule should detect almost any sql injection attempt. All the other rules are secondary and will detect other patterns that may be used in an sql injetion attack but it can't be detected by the main rule. I'm thinking the way to reduce the amount of false positives; maybe in the next version I will include some changes about this.

One thing more: now you can upload files. Forum settings only allowed to attach images... :whistle:

Regards.

Please Log in or Create an account to join the conversation.

Time to create page: 0.093 seconds
Powered by Kunena Forum

Login or Sign In