httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Michelle Konzack <linux4miche...@freenet.de>
Subject [users@httpd] Re: attacks
Date Sun, 19 Sep 2004 14:31:37 GMT
Am 2004-09-17 17:50:56, schrieb Eugene:
> Hi,all! Guys, it seems I've had some troubles with the server. I give 
> you
> the logs files content. The first thing looks like IIS buffer overflow
> attack (am I right?), but what exactly do the second attack? Thanks 
> for any tips.
> 
> --200.200.200.200 - - [17/Sep/2004:07:25:25 -0300] "SEARCH
> /\x90\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\... ...\HTTP/1.0"
> 414 250
> 
> 200.200.200.200 - - [17/Sep/2004:11:20:49 -0300] "GET
> /default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX... ...0000%u00=a
> HTTP/1.0" 403 594

I use rewrite rules and redirect this bullshit to www.microsoft.com
which keep the logfiles clean :-)


Greetings
Michelle

-- 
Linux-User #280138 with the Linux Counter, http://counter.li.org/ 
Michelle Konzack   Apt. 917                  ICQ #328449886
                   50, rue de Soultz         MSM LinuxMichi
0033/3/88452356    67100 Strasbourg/France   IRC #Debian (irc.icq.com)

Mime
View raw message