Strange entries in my access.log

johnlongland · September 3, 2021, 7:08am

Hi

While investigating th eproblem that I am seeing about “getting stuck”, I was looking at my
nginx access.log and found some alarming entries…

5.45.207.79 - - [03/Sep/2021:06:41:46 +0000] “GET /all/tvparts/part-type/remotes/insignia-ns-rc03a-13-remote.html HTTP/1.1” 301 178 “-” “Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)” “-”
207.46.13.178 - - [03/Sep/2021:06:41:50 +0000] “GET /ca_sri_lanka_past_papers.pdf HTTP/1.1” 502 5444 “-” “Mozilla/5.0 (compatible; bingbot/2.0; +http://www.bing.com/bingbot.htm)” “-”
5.45.207.142 - - [03/Sep/2021:06:41:51 +0000] “GET /all/tvparts/part-type/remotes/insignia-ns-rc03a-13-remote HTTP/1.1” 502 5444 “-” “Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots)” “-”
66.249.66.44 - - [03/Sep/2021:06:42:25 +0000] “GET /robots.txt HTTP/1.1” 301 178 “-” “Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)” “-”
66.249.66.38 - - [03/Sep/2021:06:42:26 +0000] “GET /robots.txt HTTP/1.1” 502 5444 “-” “Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html)” “-”

Are these just attempts into my server ?

I have tried spending a bit of time making my server a bit more secure…
e.g. blocking root access on SSH…etc
and also using HTTPS (instead of HTTP) with a SSl certificate.

So I thought my server should be reasonably secure ??

ankush · September 3, 2021, 7:42am

These are all search engine web crawlers used for indexing your site.

Nothing to worry about (unless these files are meant to be private? )

johnlongland · September 3, 2021, 9:06am

Thank you Ankush !

I have spent a bit of time to secure my server a bit … .closing up the firewall. But I think I need
to close down the IP range that can access it as well. Just awaiting info from my ISP as to their IP-ranges that they assign.

Appreciate your time !!!