Hello, I noticed some strange requests in the log of a live application the other day:
66.249.74.173 - - [25/Oct/2012:10:19:42 +0000] "GET /SurvStar/1/ja/bTJaOg4yM8yusyH07q7Fsw/0.0.43.1 HTTP/1.1" 200 1997 66.249.74.173 - - [25/Oct/2012:10:21:48 +0000] "GET /SurvStar/1/ja/bPCp9YKaWJtYnBAbefb3rg/0.0.43.1 HTTP/1.1" 200 1997 66.249.74.173 - - [25/Oct/2012:10:24:53 +0000] "GET /SurvStar/1/ja/bPYhQJ0ZxsN6ps2AsILtBg/0.0.43.1 HTTP/1.1" 200 1996 66.249.74.173 - - [25/Oct/2012:10:27:42 +0000] "GET /SurvStar/1/ja/0zwYRxtDseruVePtbAddHw/0.0.43.1 HTTP/1.1" 200 1999 (And dozens more.) That IP address belongs to Google: $ nslookup 66.249.74.173 Server: 192.231.203.132 Address: 192.231.203.132#53 Non-authoritative answer: 173.74.249.66.in-addr.arpa name = crawl-66-249-74-173.googlebot.com. The 200 response it's getting is the session restoration error page, as those session IDs are bogus. Has anyone seen anything like this? Remind me—what's the "ja" request handler? Any thoughts on where it would be pulling these (presumably never existent) session IDs from? -- Paul Hoadley http://logicsquad.net/
_______________________________________________ Do not post admin requests to the list. They will be ignored. Webobjects-dev mailing list ([email protected]) Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/webobjects-dev/archive%40mail-archive.com This email sent to [email protected]
