> From: Lyallex [mailto:[EMAIL PROTECTED]
> curl/7.12.1 (i386-redhat-linux-gnu) libcurl/7.12.1 OpenSSL/0.
>
> I have been to http://curl.haxx.se/ and it seems to my (currently)
> inexperienced eye
> that this software _could_ be used to do all sorts of despicable
> things to a web site.
Or it could be used, as I do, to script operations on my own sites and
for large data uploads.
Basically, someone's got a copy of cURL and has performed at least one
operation on your site from (apparently) a RedHat box. There are much
better cracking tools than cURL, and this is either legitimate or a very
inexperienced script kiddie - they haven't even changed the user agent
string. Chase the person, not the technology - I'd be much more
interested in which resources they accessed and which IP they came from.
- Peter
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
