I was looking over the server logs for Cigarsmokers.com last night, and noticed someone was scanning the site for pages that grant administrative access. Why in the world would anyone try to do something like that without malicious intentions?

I took note of the IP address of the requests and on a hunch cross referenced it with IP addresses that members have used to access the site. To my surprise a user has posted here with that IP address before: PassThis. I asked the administrator of another well respected cigar forum if anyone had used this IP address in the past. He said, why yes, Rod, from Cigarpass.

error_log.1141776000:[Tue Mar 7 20:31:29 2006] [error] [client 216.165.244.XXX] File does not exist: /cigarsmokers.com/admin
error_log.1141776000:[Tue Mar 7 20:31:36 2006] [error] [client 216.165.244.XXX] File does not exist: /cigarsmokers.com/administration
error_log.1141776000:[Tue Mar 7 20:32:08 2006] [error] [client 216.165.244.XXX] script not found or unable to stat: /cigarsmokers.com/admin.php


I sent Rod an email with a copy of the log posted above last night at 12:33 AM EST. You would think someone presented with that kind of information would like to have had this straightened out by now.

I think this community as well as yours deserves an explanation. We are all Brothers of the Leaf here. This kind of breach of trust is detrimental to the spirit of our brotherhood.