Re: logfiles of openssl-0.9.6e + GET_CLIENT_HELLO exploit...

From: jet (jetat_private)
Date: Tue Feb 11 2003 - 23:19:54 PST

Next message: Chuck Swiger: "Re: logfiles of openssl-0.9.6e + GET_CLIENT_HELLO exploit..."

Previous message: root@darks: "Re: logfiles of openssl-0.9.6e + GET_CLIENT_HELLO exploit..."
In reply to: Richard Rager: "Re: logfiles of openssl-0.9.6e + GET_CLIENT_HELLO exploit..."
Next in thread: root@darks: "Re: logfiles of openssl-0.9.6e + GET_CLIENT_HELLO exploit..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

At 11:46 -0700 2003/02/11, Richard Rager wrote:
>Here are some other abnormals. Does anyone know what they are trying to
>do?
>
>24.95.60.115 - - [06/Feb/2003:21:35:37 -0700] "GET /.private.d/log.html
>HTTP/1.0" 404 285

Is there, perhaps, a common application or configuration that stores logs in a user's  ".private.d" directory?
-- 
J. Eric Townsend -- jet spies com
buy stuff, damnit: http://www.spies.com/jet/store.html

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Chuck Swiger: "Re: logfiles of openssl-0.9.6e + GET_CLIENT_HELLO exploit..."
Previous message: root@darks: "Re: logfiles of openssl-0.9.6e + GET_CLIENT_HELLO exploit..."
In reply to: Richard Rager: "Re: logfiles of openssl-0.9.6e + GET_CLIENT_HELLO exploit..."
Next in thread: root@darks: "Re: logfiles of openssl-0.9.6e + GET_CLIENT_HELLO exploit..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Feb 12 2003 - 15:35:38 PST