[Dshield] Help identify apache log entry

John Hardin johnh at aproposretail.com
Wed Mar 26 17:33:52 GMT 2003


I just ran across this in my apache logs:

66.83.13.9 - - [25/Mar/2003:13:19:02 -0800] "GET
/stream?m=xhIrB2Wg0Sm0f3000000000000000000000000001aqaB4f at F0dF0cgb00000000100010010inSfPcElyYDsuYCr0ZBnW3EkSZEu0pBo4JEj43080mKsOZBuCZBnCZBvqICv8ZBnO3EkKZBo43DwW3Ci0ILLb4HzCaDm8ZDpKJDoapCtG3C4P3EoO4CsOpDv83DuCpC39JHj4JEouICsWZBruYCnGZEu03 HTTP/1.1" 404 295


A guick google on "apache log get stream" returns far too many unrelated
entries.

Is this someone scanning me for a vulnerability, or someone making a
legitimate request for a resource I'm not providing?

-- 
John Hardin  KA7OHZ                           <johnh at aproposretail.com>
Internal Systems Administrator                    voice: (425) 672-1304
Apropos Retail Management Systems, Inc.             fax: (425) 672-0192
-----------------------------------------------------------------------
 "To disable the Internet to save EMI and Disney is the moral
  equivalent of burning down the library of Alexandria to ensure the
  livelihood of monastic scribes."
                                    -- John Ippolito of the Guggenheim
-----------------------------------------------------------------------
 57 days until The Matrix Reloaded



More information about the list mailing list