Re: "suspicious" apache log entries

To: Vineet Kumar <debian-security@virtual.doorstop.net>
Cc: debian-security@lists.debian.org
Subject: Re: "suspicious" apache log entries
From: Michael Renzmann <mrenzmann@dylanic.de>
Date: Tue, 10 Sep 2002 12:06:55 +0200
Message-id: <[🔎] 3D7DC43F.3010000@dylanic.de>
References: <[🔎] 3D7D92AB.8080905@dylanic.de> <[🔎] 002e01c258ad$95fa4ab0$1901000a@as> <[🔎] 3D7DC0A0.3010405@dylanic.de> <[🔎] 20020910095824.GA37101@doorstop.net>

Hi.

Vineet Kumar wrote:

Phillip Hofmeister stated that one could use the Nimda backdoor on theserver that connects our server to setup a warning message on theattacking computer's desktop.
If you do, be prepared to go to jail...

For what reason? For telling stupid webserver administrators about asecurity problem they have?

Well, while thinking about it, you may be right. There have been severalincidents in the US where someone pointed out security problems and gotsued because of that a few days/weeks later.


Bye, Mike

Reply to:

Follow-Ups:
- Re: "suspicious" apache log entries
  - From: Vineet Kumar <debian-security@virtual.doorstop.net>

References:
- "suspicious" apache log entries
  - From: Michael Renzmann <mrenzmann@dylanic.de>
- Re: "suspicious" apache log entries
  - From: "Andreas Syksa" <asyska@db-media.de>
- Re: "suspicious" apache log entries
  - From: Michael Renzmann <mrenzmann@dylanic.de>
- Re: "suspicious" apache log entries
  - From: Vineet Kumar <debian-security@virtual.doorstop.net>

Prev by Date: Re: "suspicious" apache log entries
Next by Date: Re: "suspicious" apache log entries
Previous by thread: Re: "suspicious" apache log entries
Next by thread: Re: "suspicious" apache log entries
Index(es):
- Date
- Thread