Strange entries in Apache access_log

From: Bart Haezeleer (bart.haezeleerat_private)
Date: Thu Aug 30 2001 - 08:19:11 PDT

Next message: Ricky Vludmore: "Re: solaris lpd, KARMAPOLICE?"

Previous message: R M: "ntoskrnl.exe issue"
Next in thread: Ryan Russell: "Re: Strange entries in Apache access_log"
Reply: Ryan Russell: "Re: Strange entries in Apache access_log"
Reply: Jose Nazario: "Re: Strange entries in Apache access_log"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Since the beginning of the CodeRed disease I check my access_log file
from Apache regulary.
Today I found some strange entries that I don't know if it's serious or
not.
64.225.196.160 - - [24/Aug/2001:21:02:21 +0200] "GET /NULL.printer
HTTP/1.0" 404 280
63.251.5.46 - - [30/Aug/2001:09:20:04 +0200] "GET
http://www.yahoo.com/index.html HTTP/1.1" 200 2890

Is this something to worry about?

System Info
Version of apche 1.3.19
RedHat 7.1 with all the updates from RedHat
Connection to internet with ADSL

kind regards,
Bart




----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Ricky Vludmore: "Re: solaris lpd, KARMAPOLICE?"
Previous message: R M: "ntoskrnl.exe issue"
Next in thread: Ryan Russell: "Re: Strange entries in Apache access_log"
Reply: Ryan Russell: "Re: Strange entries in Apache access_log"
Reply: Jose Nazario: "Re: Strange entries in Apache access_log"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Aug 30 2001 - 10:36:47 PDT