"access_log?hello" ?
From: Christine Kronberg (Christine_Kronberg_at_genua.de)
Date: 07/26/03
- Previous message: Robin Lynn Frank: "Is this enough to identify this by?"
- In reply to: Scott A. McIntyre: "Re: Port 0 packets"
- Next in thread: Remko Lodder: "Re: [security-elvandar] "access_log?hello" ?"
- Reply: Remko Lodder: "Re: [security-elvandar] "access_log?hello" ?"
- Reply: Shafik Yaghmour: "Re: "access_log?hello" ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 26 Jul 2003 09:16:45 +0200 (CEST) To: <incidents@securityfocus.com>
Hi,
Checking the logfiles of my private webserver this morning I
see the following entries.
It looks lile some playchild tried an buffer overflow but I
don't remember seeing anything connected to access_log files.
Google didn't help. Has anyone else this kind of requests?
Or an idea what the result of this request should be?
12.221.111.178 - - [25/Jul/2003:12:40:29 +0200] "HEAD
/logs/access_log?hellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohello
HTTP/1.0" 404 -
12.221.111.178 - - [25/Jul/2003:12:40:29 +0200] "HEAD
/logs/active/access_log?hellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohello
HTTP/1.0" 404 -
12.221.111.178 - - [25/Jul/2003:12:40:30 +0200] "HEAD
/access_log?hellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohellohello
HTTP/1.0" 404 -
Cheers,
Chris Kronberg.
---------------------------------------------------------------------------
----------------------------------------------------------------------------
- Previous message: Robin Lynn Frank: "Is this enough to identify this by?"
- In reply to: Scott A. McIntyre: "Re: Port 0 packets"
- Next in thread: Remko Lodder: "Re: [security-elvandar] "access_log?hello" ?"
- Reply: Remko Lodder: "Re: [security-elvandar] "access_log?hello" ?"
- Reply: Shafik Yaghmour: "Re: "access_log?hello" ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
