[svlug] new type of spam?
todd at mrball.net
Wed Mar 5 22:05:33 PST 2003
-----BEGIN PGP SIGNED MESSAGE-----
Florin Andrei wanted us to know:
>Hey, is this a new type of spam, or what?
>22.214.171.124 - - [02/Mar/2003:08:36:11 -0800] "GET / HTTP/1.0" 200 928
>"http://www.sex-teen-pic.com/" "Mozilla/4.0 (compatible; MSIE 5.01;
>cab-200-42-56-115.prima.net.ar - - [02/Mar/2003:08:36:13 -0800] "GET /
>HTTP/1.1" 200 928 "http://www.sex-teen-pic.com/" "Mozilla/4.0
>(compatible; MSIE 5.01; Windows 98)"
>My question is: what are they trying to achieve? Beyond making me look
>puzzled while i was browsing the webalizer page, i don't see much benefit
>they can get out of this.
Dollars to donuts, you have proxying enabled in apache and don't limit
it to IP's or domains, with the end result that you are an open proxy
and those guys are using your proxy.
Blue skies... Todd Public key: http://www.mrball.net/todd.asc
...and I will strike down upon thee with great vengeance and furious
anger, those who attempt to poison and destroy my binaries, and you
will know my name is root, when I lay my vengeance upon thee.
Linux kernel 2.4.19-16mdk 4 users, load average: 0.00, 0.00, 0.00
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the svlug