httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Chris Cioffi" <>
Subject [users@httpd] Help: Getting HUGE number of hits from wrong sites
Date Wed, 28 Aug 2002 22:24:15 GMT
Hi there,

I've been monitoring my access logs for the last several days and have
noticed that I get a HUGE number (20k+/day) of page requests for domains
that have nothing to do with me.

Most of the sites are pr0n related.  I've gone through the DNS records with
dig and I can't figure out why the requests are being sent to me.

Here's a sample line: - - \
    [28/Aug/2002:17:55:14 -0400] \
   "GET HTTP/1.0"
    404 221 "\" \
    "Mozilla/4.72 ( compatible; MSIE 4.0; Windows NT5.0; DigiExt )"

The requesting IP isn't related to anything on my or my ISPs network
(64.83.*) and dig gives the following report:

; <<>> DiG 8.3 <<>>
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 2
;;, type = A, class = IN

;; ANSWER SECTION:    6d15h30m39s IN A

;; AUTHORITY SECTION:    5h33m43s IN NS    5h33m43s IN NS

;; ADDITIONAL SECTION:  11h45m58s IN A  11h45m58s IN A

;; Total query time: 30 msec
;; FROM: to SERVER: default --
;; WHEN: Wed Aug 28 18:19:20 2002
;; MSG SIZE  sent: 37  rcvd: 135

I've done dozen's of digs on various domains.  It's not just coming from a
single hosting company.

If it helps, I've also run an error log report from ScanErr.  It reports
many thousands (100k+) of proxy errors over the last month.  Could this be
caused by a misconfigured proxy server?  Does anyone know of a way I might
backtrack to where this is comming from?

TIA.  This is really cutting into my bandwidth and since I only have a 384k
DSL line I'd like to resolve this issue.  As a last resort I'm considering
requesting new IPs from my ISP, but that would be *very* disruptive.  (I not
only host my own stuff, but I do DNS and mail backup for a few other

Chris <>
  Junior Birdman(TM) in training

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message