Hi,
We always see the normal probes for known insecure CGI scripts, and spiders
keep our logs full. But lately there have been a huge number of requests
for resources that are not on our server (even not counting Code Red II).
It looks like someone is spidering another server, yet sending
On Tue, 7 Aug 2001, Christof Damian wrote:
Bill Moseley wrote:
Does everyone else see these? What's the deal? Are they really probes or
some spider run amok?
Right now someone is looking for things like:
/r/dr
/r/g3
/r/sb
/r/sw
/r/s/2
/r/a/booth
/r/s/pp
At 10:24 AM 08/07/01 -0700, Nick Tonkin wrote:
/r/dr
/r/g3
/r/sb
www.yahoo.com/r/dr
www.yahoo.com/r/sw
Yes, and I have seen plenty of cases where broken web servers or web sites
or web browsers screw up HREFs, by prepending an incorrect root uri to a
relative link.
That would be my