I read the article Mike referenced --
I guess I am OK because I run Mac OS X 'nix and Apache -- article says
exposure is MSIIS specific
Can I do anything to reject/detect/sabotage the sender to discourage
this sort of thing?
TIA
Dick
On Apr 12, 2004, at 6:34 PM, Doug White wrote:
> That is the signature of a compromised computer attempting to access
> your server
> using the WEBDAV exploit.
>
> Make sure your patches are up to date.
>
> ======================================
> We can get rid of spam on your domain! , Anti-spam solutions
> http://www.clickdoug.com/mailfilter.cfm
> For hosting solutions http://www.clickdoug.com
> ======================================
>
> ----- Original Message -----
> From: Dick Applebaum
> To: CF-Talk
> Sent: Monday, April 12, 2004 8:06 PM
> Subject: SOT: What is this?
>
> I published my dev box URL in several emails to show the speed of
> Flex
> Flash
>
> In my logs I get several entries like the ones below.
>
> What are they?
>
> TIA
>
> Dick
>
> 67.124.66.92 - - [12/Apr/2004:16:46:05 -0700] "SEARCH
> /
>
> \x90\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\x02\xb1\
> x02
>
> <<<Additional text truncated.>>>
>
[Todays Threads]
[This Message]
[Subscription]
[Fast Unsubscribe]
[User Settings]
- What is this? Paul Smith
- Re: What is this? Nick Texidor
- Re: What is this? Jon Hall
- Re: What is this? Nick Texidor
- Re: What is this? Paul Smith
- Re: What is this? Dick Applebaum
- Re: What is this? Thomas Chiverton