tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Howard W. Smith, Jr." <smithh032...@gmail.com>
Subject Re: Tomcat access log reveals hack attempt: "HEAD /manager/html HTTP/1.0" 404
Date Fri, 19 Apr 2013 15:23:55 GMT
On Thu, Apr 18, 2013 at 12:26 PM, André Warnier <aw@ice-sa.com> wrote:

>
> My contention is that this would be self-defeating for the bots.
>
>
> 91.121.172.164 - - [03/Apr/2013:08:19:50 +0200] "GET /robots.txt HTTP/1.1"
> 404 360 "-" "Mozilla/5.0 (Windows; U; MSIE 7.0; Windows NT 6.0; en-US)"
>
>
 I definitely saw this in my local access log last night. I was working
with someone's test-case that they sent me, and I stumbled on the 404 error
(see below) in my browser, which clearly shows that this is a tomcat/tomee
server. do the bots read the 404 error HTTP response and check if the
response includes the string lowercase('tomcat') ?

HTTP Status 404 - /prova_fileupload_primefaces/

type Status report

message /prova_fileupload_primefaces/

description The requested resource is not available.

Apache Tomcat (TomEE)/7.0.39


-------

it really showed up like this, below; i copied the text to text editor and
copied the text above.

HTTP Status 404 - /prova_fileupload_primefaces/
------------------------------

*type* Status report

*message* */prova_fileupload_primefaces/*

*description* *The requested resource is not available.*
------------------------------
Apache Tomcat (TomEE)/7.0.39

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message