Re: "suspicious" apache log entries

To: debian-security@lists.debian.org
Subject: Re: "suspicious" apache log entries
From: Phillip Hofmeister <plhofmei@zionlth.org>
Date: Thu, 12 Sep 2002 08:39:27 -0400
Message-id: <[🔎] 20020912123927.GA24300@zionlth.org>
Mail-followup-to: debian-security@lists.debian.org
In-reply-to: <[🔎] 20020912032447.GD31875@llama.nslug.ns.ca>
References: <[🔎] 3D7D92AB.8080905@dylanic.de> <[🔎] 002e01c258ad$95fa4ab0$1901000a@as> <[🔎] 3D7DC0A0.3010405@dylanic.de> <[🔎] 20020910095824.GA37101@doorstop.net> <[🔎] 3D7DC43F.3010000@dylanic.de> <[🔎] 20020910102842.GC37101@doorstop.net> <[🔎] 20020910115004.GB798@freesurf.ch> <[🔎] 20020910170013.GB38111@doorstop.net> <[🔎] 20020912032447.GD31875@llama.nslug.ns.ca>

On Thu, 12 Sep 2002 at 12:24:47AM -0300, Peter Cordes wrote:
>  Taking down the TCP stack is of questionable legality, and it would be nice
> if there was an easier way to call attention to the machine.  Maybe beeping
> the PC speaker in morse code for S.O.S. would work.  (Do rackmount servers
> have a PC speaker?) Some people disable the PC speaker, but if they have a
> sound card, you could use that.  (Then you could say make their computer say
> "I'm infected, help me"...)
If the machine is running exchange you could always email the admin?
Someone mentioned in a prior post they would blame you.  Oh well, let them
blame me, in court if they wish.  I will merely point out how their box was
attempting to attack mine due to their negligence.  What we then have is
called a "Stand Off".

Regards,

-- 
Phil

PGP/GPG Key:
http://www.zionlth.org/~plhofmei/
wget -O - http://www.zionlth.org/~plhofmei/ | gpg --import

XP Source Code:

#include <win2k.h>
#include <extra_pretty_things_with_bugs.h>
#include <more_bugs.h>
#include <require_system_activation.h>
#include <phone_home_every_so_often.h>
#include <remote_admin_abilities_for_MS.h>
#include <more_restrictive_EULA.h>
#include <sell_your_soul_to_MS_EULA.h>
//os_ver="Windows 2000"
os_ver="Windows XP"

Reply to:

References:
- "suspicious" apache log entries
  - From: Michael Renzmann <mrenzmann@dylanic.de>
- Re: "suspicious" apache log entries
  - From: "Andreas Syksa" <asyska@db-media.de>
- Re: "suspicious" apache log entries
  - From: Michael Renzmann <mrenzmann@dylanic.de>
- Re: "suspicious" apache log entries
  - From: Vineet Kumar <debian-security@virtual.doorstop.net>
- Re: "suspicious" apache log entries
  - From: Michael Renzmann <mrenzmann@dylanic.de>
- Re: "suspicious" apache log entries
  - From: Vineet Kumar <debian-security@virtual.doorstop.net>
- Re: "suspicious" apache log entries
  - From: Erik Rossen <rossen@freesurf.ch>
- Re: "suspicious" apache log entries
  - From: Vineet Kumar <debian-security@virtual.doorstop.net>
- Re: "suspicious" apache log entries
  - From: Peter Cordes <peter@llama.nslug.ns.ca>

Prev by Date: Re: Good Day - spamassin
Next by Date: Re: Postgres buffer overflow in stable .
Previous by thread: Re: "suspicious" apache log entries
Next by thread: AW: "suspicious" apache log entries
Index(es):
- Date
- Thread