Return-Path: Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 47516 invoked by uid 500); 26 Apr 2002 16:33:42 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 47505 invoked from network); 26 Apr 2002 16:33:41 -0000 Received: from smtp2.america.net (199.170.121.50) by daedalus.apache.org with SMTP; 26 Apr 2002 16:33:41 -0000 Received: from dilbert (209-192-59-22.deltacom.net [209.192.59.22]) by smtp2.america.net (8.11.6/8.11.6) with SMTP id g3QGX5T22651 for ; Fri, 26 Apr 2002 12:33:05 -0400 (EDT) From: "MYSP" To: Subject: error log question Date: Fri, 26 Apr 2002 12:33:57 -0400 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.00.3018.1300 X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N Below is a single line from my error_log. [Thu Apr 25 04:31:48 2002] [error] [client 216.231.57.121] File does not exist: /var/www/html/scripts/..%2f../winnt/system32/cmd.exe There are about a dozen similar lines from the same IP. I put them on www.36867.tripod.com Is this someone looking for a vulnerability? On an NT box? I'm running Apache on Linux. Thanks, Bill --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org