[Dshield] Suspect HTTP-activity

Jim Race vimages at well.com
Fri Jan 23 20:27:51 GMT 2004


Martin Agren wrote:

> Hello,
> I'm a fresh subscriber to this list and the very reason I stumbled upon 
> it was that I was investigating some activity that apache logged and 
> that made me a little supicious about the intentions behind the 
> requests. So first of, Hello!

Normal old crap traffic from blaster, nachi, CodeRed, etc...

Apache and Windows will happily reject it.

It's an annoyance, is all.

Do a google search for some of those strings for more info.

-jim




More information about the list mailing list