Re: URLScan Sent verb 'SEARCH' WORM?
From: Bernard (qbernard_at_hotmail.com)
Date: 10/24/03
- Next message: Tom Kaminski [MVP]: "Re: IIS6 - Integrated Authentication Probs"
- Previous message: ja: "Ports used by windows update"
- In reply to: ja: "URLScan Sent verb 'SEARCH' WORM?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 24 Oct 2003 19:56:22 +0800
Not sure if is related to worm or etc. but have been
seeing such activities from quite a while. the status
reply is 411. length required.. not really a know thread
so far.. so if you have urlscan and server is fully patched.
you should be fine.
-- Regards, Bernard Cheah http://support.microsoft.com/ Please respond to newsgroups only ... "ja" <na@noemail.com> wrote in message news:uqH8sSimDHA.1284@TK2MSFTNGP09.phx.gbl... > The last couple of months we have gotten thousands of: > > Sent verb 'SEARCH', which is not specifically allowed. Request will be > rejected. > > In our URL scan logs. Is this a worm or what? It bugs me I can't see all the > information being sent from the logs. > >
- Next message: Tom Kaminski [MVP]: "Re: IIS6 - Integrated Authentication Probs"
- Previous message: ja: "Ports used by windows update"
- In reply to: ja: "URLScan Sent verb 'SEARCH' WORM?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
