Re: OT: mod_ssl (apache) log entries -- wtf?

To: debian-user@lists.debian.org
Subject: Re: OT: mod_ssl (apache) log entries -- wtf?
From: sean finney <seanius@seanius.net>
Date: Thu, 20 Feb 2003 09:39:02 -0500
Message-id: <[🔎] 20030220093902.B26752@sccs.swarthmore.edu>
In-reply-to: <[🔎] 20030220075640.GA13688@mail.serensoft.com>; from will@serensoft.com on Thu, Feb 20, 2003 at 01:56:40AM -0600
References: <[🔎] 20030220075640.GA13688@mail.serensoft.com>

On Thu, Feb 20, 2003 at 01:56:40AM -0600, Will Trillich wrote:
> what does this mean? are there black hats involved? (maybe even
> a gray fedora?)

i'd guess one of two things:

a - someone else has messed up a dns entry or href on a webpage
b - this computer is trying to test for exploitable weakness in
    your web server.

you could find out for sure by running the packet sniffer of your
choice and dumping the whole conversation to a log, and then look
at what kind of data the client was sending.  oh wait... https...
nevermind.  there's probably a way to turn up verbosity on apache
then :)

	sean

Attachment: pgpYrNioLpoF7.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- sniffing SSL (was OT: mod_ssl (apache) log entries -- wtf?)
  - From: Vineet Kumar <debian-user@virtual.doorstop.net>

References:
- OT: mod_ssl (apache) log entries -- wtf?
  - From: Will Trillich <will@serensoft.com>

Prev by Date: Re: USB mass storage and kernel 2.4.18
Next by Date: Re: Mozilla and Enigmail
Previous by thread: OT: mod_ssl (apache) log entries -- wtf?
Next by thread: sniffing SSL (was OT: mod_ssl (apache) log entries -- wtf?)
Index(es):
- Date
- Thread