Re: [users@httpd] Possible attack?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 11/24/05, Gene <listmail@xxxxxxxxxxxxxx> wrote:
> Hi All:
>
> I've been getting a lot of hits on my server lately that look like they
> might be some kind of exploit. Could someone be probing to see if my
> server will proxy? Could it BE proxying without my knowledge? The resukt
> code of 200 is disturbing.
>
> The log entries look like these (and there are lots of them):

The only thing unusual about those entries are the referer.  The
request is a perfectly normal GET of your home page.  That leads me to
believe that these are simply referer-spam, trying to pollute your
logs (perhaps posted online) and hence get links that will be counted
by google.  If so, you just did them a huge favor by posting their
sites to this list, where your message will be picked up by a dozen or
so web archives and boost their google ranks.  Oh well.  Other than
that, I'd simply ignore them and make sure that you don't post
anything from your referer logs on your website.

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux