PHPs information grabbing ability?

penguinboy

I need some help.
Our company has a non public website that is strictly for internal use.
It doesn't show up on any search engines.
While going over some logs I noticed that someone tried to break into the site a few days ago.
I was wondering what sort of information I could obtain on this individual.
I already log the ip, but i'm looking for more.
I'd like to konw how he stumbled across our site, if he just type in the site name, or if he typed in the ip.
Basically I'd like to get every bit of information I could from every computer that connects to our site.

-pb

bastien

http://www.php.net/manual/en/printwn/language.variables.predefined.php#language.variables.predefined

also consider using a db to validate the users IP. since all users come from behind the firewall and you kno their IPs, you can use that as an extra form of validation beside passwords...

hth

penguinboy

what i'm really looking for is some way to get the hackers email address, so i can send them an automated email.

planetsim

well unless this hacker used a form with his/her email address your chances of getting an email address is slim

Weedpacket

Chances are it was just a box somewhere mindlessly cranking through ip after ip attempting to break into each machine that it finds, without having the slightest interest about what it might find there. Some people think that using the vast computing resources of today for this purpose qualifies as having a life.

bastien

Originally posted by penguinboy
what i'm really looking for is some way to get the hackers email address, so i can send them an automated email.

send him a packet sniffer and attempt to get his email that way...sort of a counter measure...if you can ascertain the ISP of the hacker you can send details to the ISP and ask them to take action as well