LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   Apache Log (https://www.linuxquestions.org/questions/linux-security-4/apache-log-43427/)

Crashed_Again 01-30-2003 05:56 PM
Apache Log
 
Whats up with this access_log entry? The domain name scares me a little bit.

dont-look-now-but-i-think-your-toaster-is-rooted.proxycheck.gamesnet.net - - [30/Jan/2003:17:58:38 -0500] "CONNECT 65.122.104.42:6667 HTTP/1.0" 405 316 "-" "-"

unSpawn 01-31-2003 07:05 AM
http://www.linuxquestions.org/questi...564#post208564
Kinda kewl tho, cuz proxycheck.gamesnet.net is one of those nice FQDN's resolving to localhost :-] Gamesnet.net itself some IRC swamp.
U been using them?

Crashed_Again 01-31-2003 08:18 AM
I knew that you would be the one to answer me unSpawn. Thanks. Don't you think that name is scary?

unSpawn 01-31-2003 09:57 AM
Yeah, np, and no, I don't. IMO it could be part of their proxyscan to send a stupid FQDN like that. Easiest way to find out if they're scanning this way (if you're using gamesnet.net) would be to run tcpdump, bitchx to their network, let 'em scan and look in the packets for a clue.

Crashed_Again 01-31-2003 12:43 PM
I'm lost again. FQDN=Fully Qualified Domain Name right? Run tcpdump, gotcha, and then bitchx. Hmm.. bitchx? Not sure what that is.

On a personal note; Are you certified in Linux unSpawn?

unSpawn 02-01-2003 08:27 AM
Sorry. Ment IRC. And no, I ain't.


All times are GMT -5. The time now is 10:22 AM.