[svlug] new type of spam?

Todd Lyons todd at mrball.net
Wed Mar 5 22:05:33 PST 2003

Hash: SHA1

Florin Andrei wanted us to know:

>Hey, is this a new type of spam, or what?
> - - [02/Mar/2003:08:36:11 -0800] "GET / HTTP/1.0" 200 928
>"http://www.sex-teen-pic.com/" "Mozilla/4.0 (compatible; MSIE 5.01;
>Windows 98)"
>cab-200-42-56-115.prima.net.ar - - [02/Mar/2003:08:36:13 -0800] "GET /
>HTTP/1.1" 200 928 "http://www.sex-teen-pic.com/" "Mozilla/4.0
>(compatible; MSIE 5.01; Windows 98)"
>My question is: what are they trying to achieve? Beyond making me look
>puzzled while i was browsing the webalizer page, i don't see much benefit
>they can get out of this.

Dollars to donuts, you have proxying enabled in apache and don't limit
it to IP's or domains, with the end result that you are an open proxy
and those guys are using your proxy.
- -- 
Blue skies...	Todd 	Public key: http://www.mrball.net/todd.asc
...and I will strike down upon thee with great vengeance and furious
 anger, those who attempt to poison and destroy my binaries, and you 
    will know my name is root, when I lay my vengeance upon thee.
Linux kernel 2.4.19-16mdk   4 users,  load average: 0.00, 0.00, 0.00
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: http://www.mrball.net/todd.asc


More information about the svlug mailing list