Timeline for Why is Norton Safe Web flagging my site as dangerous when it reports on PHP files/urls that don't exist?
Current License: CC BY-SA 3.0
14 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| May 15, 2016 at 8:48 | vote | accept | Hawkeye | ||
| S May 12, 2016 at 23:20 | history | suggested | Rodrigo Murillo | CC BY-SA 3.0 |
Improved title to reflect context of problem better
|
| May 12, 2016 at 23:04 | review | Suggested edits | |||
| S May 12, 2016 at 23:20 | |||||
| May 12, 2016 at 22:42 | answer | added | Rodrigo Murillo | timeline score: 4 | |
| Mar 2, 2016 at 16:57 | history | tweeted | twitter.com/StackSecurity/status/705074488732467201 | ||
| Mar 1, 2016 at 21:49 | comment | added | Hawkeye | I think I get what you're saying, but today Norton Safe Web finally reevaluated our site, and fixed the rating. The "URL not found" page the firewall puts up with the bad link didn't seem the raise an alarm with Norton this time, so I still don't know what happened or why they gave the bad report in the first place. | |
| Mar 1, 2016 at 9:23 | comment | added | symcbean | " it goes to a file not found page" - that's not the same thing as returning a 404 status code. (If your firewall is returning a 200 status, it would imply that the functionality provided by Norton is laughable but would explain the results). | |
| Mar 1, 2016 at 3:39 | comment | added | Hawkeye | Not really. I'm a VB.NET programmer. I could write a VB program to do that. | |
| Mar 1, 2016 at 3:28 | comment | added | Mark Buffalo | Can you write C#? Alternatively, you can use Power Shell to create a FileWatcher and watch for those suspicious files appearing, and then disappearing. This will at least rule that out. | |
| Mar 1, 2016 at 2:32 | comment | added | Hawkeye | @Mark It's a Windows Server, and yes, it goes to a file not found page that our firewall puts up. The url shows the non existent link, but our firewall blocks all php and anything with "\." and shows "The specified URL cannot be found" instead, same as anything else with illegal entries. | |
| Mar 1, 2016 at 2:07 | comment | added | Mark Buffalo | Also, visit those links on your website under a virtual machine... see if it redirects you to a custom 404 page. Does it? Does the custom 404 page exist on the same link that you attempt to visit? It's possible that, if Norton Safe Web is trying to check for those potentially malicious files, and your website returns something other than 404, it will trigger an alarm. | |
| Mar 1, 2016 at 2:05 | comment | added | Mark Buffalo | Is your web server Linux or Windows? | |
| Feb 29, 2016 at 22:57 | review | First posts | |||
| Mar 1, 2016 at 1:55 | |||||
| Feb 29, 2016 at 22:57 | history | asked | Hawkeye | CC BY-SA 3.0 |