Re: Unknown entry in Apache log
From: Peter Rehäußer (dummerchen_at_aol.de)
Date: 08/31/03
- Next message: Au Naturel Productions: "Re: National Security Backdoor in telnetd - all versions."
- Next in thread: David: "Re: Unknown entry in Apache log"
- Reply: David: "Re: Unknown entry in Apache log"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 31 Aug 2003 16:06:45 +0200
Hi,
I suppose this is a little attack. I think you have more than one entry like
this one in your log file.
The attacker tries some common paths/commands to hack your system.
"William Warren" <wwarren.nouce@timesucker.homelinux.org> schrieb im
Newsbeitrag news:3Vo2b.193175$Oz4.52399@rwcrnsc54...
> Thanks for helping me with this problem.
>
> I just got the following entry in my Apache log (IP address is genuine,
from
> .br). I don't find it on the Symantec site or via Google search, and I
> welcome any advice on what it is or why it would be on port 80.
>
> 200.154.128.74 - - [24/Aug/2003:18:50:39 -0400]
> "\x92X\xf1\xef\xeb\xdf4\x86\b\t X" 400 -
>
> I appreciate your help. I have set the followups.
>
> Bill
> --
> William Warren
> (Remove ".nouce" for direct replies.)
>
>
- Next message: Au Naturel Productions: "Re: National Security Backdoor in telnetd - all versions."
- Next in thread: David: "Re: Unknown entry in Apache log"
- Reply: David: "Re: Unknown entry in Apache log"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
