Re: Apache - Is this a virus attempt?
From: Christopher Browne (cbbrowne@acm.org)Date: 05/30/02
- Next message: Jorey Bump: "Re: Apache - Is this a virus attempt?"
- Previous message: Johannes M. Richter: "Re: Apache - Is this a virus attempt?"
- Maybe in reply to: Johannes M. Richter: "Re: Apache - Is this a virus attempt?"
- Next in thread: Jorey Bump: "Re: Apache - Is this a virus attempt?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Christopher Browne <cbbrowne@acm.org> Date: 29 May 2002 22:55:54 GMT
In the last exciting episode, "Stacey Sharp" <stacey@emservicesinc.com> wrote::
> Hey guys, this is an excerpt from my Apache access.log.
>
> [26/May/2002:20:04:46 -0500] "GET
> /_vti_bin/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir
> HTTP/1.0" 404 362
>
> Is this a virus attack or something else?
It's a virus attack. It only works on Windows systems, so you're
utterly immune to the attack. Don't panic. In fact, don't worry
about it at all. Just make sure your logs get rotated so that /var
doesn't fill up.
-- (reverse (concatenate 'string "ac.notelrac.teneerf@" "454aa")) http://www.ntlug.org/~cbbrowne/linux.html Signs of a Klingon Programmer - 16. "Klingon programs don't do accountancy. For that, you need a Ferengi."
- Next message: Jorey Bump: "Re: Apache - Is this a virus attempt?"
- Previous message: Johannes M. Richter: "Re: Apache - Is this a virus attempt?"
- Maybe in reply to: Johannes M. Richter: "Re: Apache - Is this a virus attempt?"
- Next in thread: Jorey Bump: "Re: Apache - Is this a virus attempt?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
