On Tue, 2002-11-26 at 09:12, Joshua Melbourne White wrote: > I currently have apache up and running and I was looking through my > security log, and this popped up: > > 199.203.11.241 - - [26/Nov/2002:01:43:58 -0500] "GET > /scripts/..%255c%255c../winnt/system32/cmd.exe?/c+dir" 404 346 "-" "-" Just someone (or an infected system) trying to break into your system by using Microsoft IIS leaks. > Doesn't look too good to me. Can someone explain what this person was > trying to do? Whatever he did, it gave the following error: > > [Tue Nov 26 01:43:58 2002] [error] [client 199.203.11.241] File does not > exist: /var/www/html/scripts Since you don't have IIS you don't have the vulnerable /scripts directory. Be glad you chose Linux ;) -- Klaasjan Brand <kjb@dds.nl> -- Psyche-list mailing list Psyche-list@redhat.com https://listman.redhat.com/mailman/listinfo/psyche-list
