Dont see any traversal or injection attempt, but not knowing what is a "legitimate" request or the application architecture, its difficult to comment further.
-- StackStar Managed Hosting Services : https://www.stackstar.com Shift8 Web Design in Toronto : https://www.shift8web.ca On Mon, Nov 14, 2016 at 5:26 AM, li...@lazygranch.com <li...@lazygranch.com> wrote: > I keep my nginx server set up dumb. (Don't need anything fancy at the > moment). Is this request below possibly valid? I flag anything with a > question mark in it as hacking, but maybe IOS makes some requests that > some websites will process, and others would just ignore after the > question mark. > > 444 72.49.13.171 - - [14/Nov/2016:06:55:52 +0000] "GET > /ttr.htm?sa=X&sqi=2&ved=0ahUKEwiB7Nyj1afQAhWJZCYKHWLGAW8Q_B0IETAA > HTTP/1.1" 0 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 10_1_1 like Mac OS X) > AppleWebKit/600.1.4 (KHTML, like Gecko) GSA/20.3.136880903 Mobile/14B100 > Safari/600.1.4" "-" > > _______________________________________________ > nginx mailing list > nginx@nginx.org > http://mailman.nginx.org/mailman/listinfo/nginx >
_______________________________________________ nginx mailing list nginx@nginx.org http://mailman.nginx.org/mailman/listinfo/nginx