httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Issa Mbodji <issambo...@yahoo.com>
Subject [users@httpd] Log file seems wiered
Date Tue, 05 Aug 2003 02:45:45 GMT
Hello:

Does anyone know the meaning of the following message
I found in my apache access.log file. I am seeing now
some wiered staff. It is like to me that someone is
scanning my webserver?

68.39.73.57 - - [04/Aug/2003:22:00:27 -0400] "OPTIONS
/ HTTP/1.1" 200 - "-"
"Microsoft-WebDAV-MiniRedir/5.1.2600"
68.39.73.57 - - [04/Aug/2003:22:01:28 -0400] "OPTIONS
/ HTTP/1.1" 200 - "-"
"Microsoft-WebDAV-MiniRedir/5.1.2600"
68.39.73.57 - - [04/Aug/2003:22:02:34 -0400] "OPTIONS
/ HTTP/1.1" 200 - "-"
"Microsoft-WebDAV-MiniRedir/5.1.2600"

The following 2 lines are from the attack log file I
have set up:

68.50.224.32 - - [04/Aug/2003:21:07:48 -0400] "GET
/scripts/..%25%35%63../winnt/system32/cmd.exe?/c+dir
HTTP/1.0" 404 - "-" "-"
68.50.224.32 - - [04/Aug/2003:21:07:48 -0400] "GET
/scripts/..%252f../winnt/system32/cmd.exe?/c+dir
HTTP/1.0" 404 - "-" "-"

Is there anything I can do to stop these things?
Please advise. I think I will put my site down until I
figure out what;s happening.

Thanks.

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message