TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to [EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems! ----------------------------------------------------------------------------
Your statement about the similarity to GET matches, what I see in "Web Client Programming with Perl" by Clinton Wong. I include the description of HEAD from that book below: --------- The HEAD method is functionally like GET, except that the server will reply with a response line and headers, but no entity body. The headers returned by the server with the HEAD method should be exactly the same as the headers returned with a GET request. This method is often used by web clients to verify the document's existence or properties (like Content-length or Content-type), but the client has no intention of retrieving the document in the transaction. Many applications exist for the HEAD method, which make it possible to retrieve: Modification time of a document for caching purposes Size of the document, do do page layout, to estimate arrival time, or to skip the document and retrieve a smaller version of the document Type of the document, to allow the client to examine only documents of a certain type Type of server, to allow customized server queries ---------- I see that the Code Blue attack description at http://www.iss.net/security_center/alerts/advise96.php indicates that Code Blue uses an HTTP HEAD request initially to determine if it has found an IIS server. > -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of > [EMAIL PROTECTED] > Sent: Friday, April 19, 2002 12:14 PM > To: [EMAIL PROTECTED] > Cc: [EMAIL PROTECTED] > Subject: RE: Http-head > > > > TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your > message to > [EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with > any problems! > ------------------------------------------------------------------ > ---------- > > Sam, > > As far as I know, HTTP HEAD is very much the same as HTTP GET. > It's use is just a little bit unusual and thus should be considered > suspicious. > If the request is really legitimate, this alert can be ignored. > > Greetings, > D. Liesen > > >I get a lot of http-head requests on my rs6.0 ids. > >iss does not explain really what this is all about. > >can anyone help. how can i get read of this. I look at the url in the > >signature and when i try it myself, i do not see anything wrong with it. > >please help me understand what this is all about. > >thank you. > > > >Sam Si Trixty > > > -- > GMX - Die Kommunikationsplattform im Internet. > http://www.gmx.net > > > >
