Bad page request for /_vti_bin/owssvr.dll

[Bill Watterson]

This item keeps showing up on my Bad Page Request report.

Does anyone know what this is or how to keep it from showing up on the list?

Thank you!

 

[Juan T. Llibre]

It's just someone trying to hack you.
That used to work in the earlier days. Now it doesn't.

If it bothers you, redirect the requests for that file
to the originating IP for the request.

That should throw them for a loop... ;-)

 

[Bill Watterson]

Thanks for the suggestion! I like the way you think.

Here's what I came up with from your suggestion.

Would this work?

protected void Application_BeginRequest(Object sender, EventArgs e)
{
string url = Request.ServerVariables["URL"].ToString();

if (url.IndexOf("/_vti_bin/owssvr.dll") >= 0)
{
Response.Redirect(Request.ServerVariables.Get("REMOTE_ADDR"));
}
}

 

[Juan T. Llibre]

You got it!

;-)

Thanks for the suggestion! I like the way you think.

Here's what I came up with from your suggestion.

Would this work?

protected void Application_BeginRequest(Object sender, EventArgs e)
{
string url = Request.ServerVariables["URL"].ToString();

if (url.IndexOf("/_vti_bin/owssvr.dll") >= 0)
{
Response.Redirect(Request.ServerVariables.Get("REMOTE_ADDR"));
}
}

It's just someone trying to hack you.
That used to work in the earlier days. Now it doesn't.

If it bothers you, redirect the requests for that file
to the originating IP for the request.

That should throw them for a loop... ;-)