On Tue, 2002-11-26 at 10:12, Joshua Melbourne White wrote: > I currently have apache up and running and I was looking through my > security log, and this popped up: > > 199.203.11.241 - - [26/Nov/2002:01:43:58 -0500] "GET > /scripts/..%255c%255c../winnt/system32/cmd.exe?/c+dir" 404 346 "-" "-" This is something like Code Red (IIS4) virus (worm) blindly trying to propogate itself. > Doesn't look too good to me. Can someone explain what this person was > trying to do? Whatever he did, it gave the following error: Since you are not running Windows or Internet Information Server or have a cmd.exe file I would not worry about it. > [Tue Nov 26 01:43:58 2002] [error] [client 199.203.11.241] File does not > exist: /var/www/html/scripts > > Thanks for any help. > > > > > > -- > Psyche-list mailing list > Psyche-list@redhat.com > https://listman.redhat.com/mailman/listinfo/psyche-list -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
