Re: hacking attempt on Apache?

To: debian-user@lists.debian.org
Subject: Re: hacking attempt on Apache?
From: Raquel Rice <raquel@thericehouse.net>
Date: Tue, 6 Jul 2004 12:45:51 -0700
Message-id: <[🔎] 20040706124551.55ffdf8f.raquel@thericehouse.net>
In-reply-to: <[🔎] fc1af19c04070611302238245d@mail.gmail.com>
References: <[🔎] fc1af19c04070611302238245d@mail.gmail.com>

On Tue, 6 Jul 2004 20:30:56 +0200
Pim Bliek <pim.bliek@gmail.com> wrote:

> Hi,
> 
> I got this in my logs:
> 
> 12.135.225.155 - - [30/Jun/2004:13:41:07 +0200] "POST
> /cgi-bin/formmail.pl HTTP/1.0" 404 14523 "http://www.foo.bar/"; "-"
> 0 foo.bar
> 
> 
> Apparently all from different IP's but certainly coordinated,
> because it is on the same time, same kind of requests.
> 
> Anyone knows how this can be done? Is there any possibility to
> trace who might have done this?
> 
> Best regards,
> Pim Bliek
> 

Pim,

It appears to be that someone is trying to find a vulnerability ...
probably several someones.  I've been running a web server for quite
awhile and find those entries regularly.

As long as I don't have the vulnerable software, I don't worry too
much about it.

-- 
Raquel
============================================================
The highest result of education is tolerance.
  --Helen Keller

Reply to:

References:
- hacking attempt on Apache?
  - From: Pim Bliek <pim.bliek@gmail.com>

Prev by Date: Re: Pc Pauses when I transfer files over network or from drive to drive.
Next by Date: Re: I'm too stupid to use find, can someone help me out, please?
Previous by thread: Re: hacking attempt on Apache?
Next by thread: Re: hacking attempt on Apache?
Index(es):
- Date
- Thread