Mailinglist Archive: opensuse-security (465 mails)

< Previous Next >
Re: [suse-security] Entriy in apache log
  • From: Markus Gaugusch <markus@xxxxxxxxxxx>
  • Date: Fri, 21 Dec 2001 10:22:02 +0100 (CET)
  • Message-id: <Pine.LNX.4.40.0112211021160.8816-100000@xxxxxxxxxxxxxxxxxx>
> I have this entries in my apache log. Anyone an idear
> what this is?
> 203.236.245.154 - - [18/Dec/2001:21:23:54 +0100]
> "GET/default.ida?NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531b%u53ff%u0078%u0000%u00=a
This is a Nimda or Code Red attack signature. It doesn't affect apache,
don't worry (and be glad for not choosing IIS :)

Markus
--
_____________________________ /"\
Markus Gaugusch ICQ 11374583 \ / ASCII Ribbon Campaign
markus@xxxxxxxxxxx X Against HTML Mail
/ \


< Previous Next >
References