>Number: 3537 >Category: mod_log-any >Synopsis: Access_log logging strange 'undefined' entries >Confidential: no >Severity: serious >Priority: medium >Responsible: apache >State: open >Class: support >Submitter-Id: apache >Arrival-Date: Tue Dec 15 08:00:01 PST 1998 >Last-Modified: >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.2.4 >Environment: Solaris 2.5.1, all current patches >Description: I've had this problem with both Apache and NCSA HTTPD1.3 web servers. The access _log logs an entry similar to this: machine.domain.whatever - - [07/Dec/1998:13:12:40 -0500] "GET /undefined HTTP/1.0" 404 -
These entries are beginning to flood the access_log, going into the hundreds of thousands. What is causing this "/undefined" or "/null" entry? And what makes it strange is that the log entries happen within seconds of eachother during times when no one is on the machine. >How-To-Repeat: Don't know -- on an intranet. >Fix: I know it can't be someone going to documents that are simply not there, it wouldn't produce such an entry.And I know that the time pattern, although close, is not 100% consistent. >Audit-Trail: >Unformatted: [In order for any reply to be added to the PR database, ] [you need to include <[EMAIL PROTECTED]> in the Cc line ] [and leave the subject line UNCHANGED. This is not done] [automatically because of the potential for mail loops. ] [If you do not include this Cc, your reply may be ig- ] [nored unless you are responding to an explicit request ] [from a developer. ] [Reply only with text; DO NOT SEND ATTACHMENTS! ]
