>
>Hi,
>What has happened is that someone has telneted into your web server and
>issued a get command. AFAIK no great mischief can be done by this. I believe
>that I'm correct in saying that this is a feature of apache.
>Try it for yourself.
>I have a test server called testweb, if I do the following 'telnet testweb
>80' then 'get hellojonwashere' and then look in my logs, I'll find that 'get
>hellojonwashere' is present in my logs.
>It can be used to kid some people into believing that you have cracked into
>their server - our sys admin beileved it for about 2 days until he contacted
>apache.
>
>HTH
>Jon Lawrence
Jon,
I did try my web browser and the telnet technique. My server
responded differently to when I did it locally:
Original:
>63.251.5.48 - - [22/Mar/2001:05:40:58 -0500]
>"GET http://www.yahoo.com/index.html HTTP/1.1" 200 1048
Local telnet:
>192.168.1.1 - - [22/Mar/2001:07:00:52 -0500]
>"GET http://www.yahoo.com/index.html HTTP/1.1" 400 317
Who knows, hopefully its benign. Thanks to you and the others
who replied with ideas.
Dave
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
