>Number: 2229 >Category: mod_log-any >Synopsis: Some log entries do not have full IP address >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: open >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Wed May 13 18:30:01 PDT 1998 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.3b6 >Environment: SunOS cnd-c 5.6 Generic sun4m sparc SUNW,SPARCstation-20
gcc version 2.8.1 >Description: About 5% of the access log are entries like this: 152 - - [13/May/1998:18:06:08 -0700] "GET / HTTP/1.0" 200 8432 146 - - [13/May/1998:18:06:14 -0700] "GET / HTTP/1.0" 200 8432 The first number appears to be the first octet of the IP address (based on observation of established connections using netstat). The relevant conf file entries: HostnameLookups off LogFormat "%h %l %u %t \"%r\" %>s %b" common CustomLog /var/log/httpd/access_log common Most of the log entries are perfectly normal like this: 131.216.18.124 - - [13/May/1998:18:18:14 -0700] "GET / HTTP/1.0" 200 8432 >How-To-Repeat: URL is http://www.cnd.org/ But since only about 5% of the entries are problematic, I am not sure how to repeat it. It does not appear to have a pattern in the IP number. >Fix: Nope. Sorry. >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, ] [you need to include <[EMAIL PROTECTED]> in the Cc line ] [and leave the subject line UNCHANGED. This is not done] [automatically because of the potential for mail loops. ]
