[nSLUG] Curious httpd log entries...

Jeff Warnica jeff at coherentnetworksolutions.com
Fri Aug 12 18:18:45 ADT 2005


With the file being sent as text/html, and not being HTML, anyway,
google would almost definitely not increase the "worth" of those URLs. 

If anything, having those strings on a page unrelated to the target of
the scam, you are negating their efforts. 

On Fri, 2005-12-08 at 14:11 -0300, David Potter wrote:
> 
> OK... thanks Ben/Dop
> 
> I'll remove the log snipped in a day or two.
> 
> Thanks again
> 
> David Potter
> 
> 
> Ben Armstrong wrote:
> > On Fri, 2005-08-12 at 09:02 -0300, Dop Ganger wrote:
> >   
> > > The other possibility is they're looking for open http proxies, which they 
> > > can then send spam through. Looking at the URLs this may be more likely, 
> > > as their seems to be some sort of unique tracking number for each site, 
> > > and there's also the suspicious "dp=" (destination port?) tagged on the 
> > > end of some of them.
> > >     
> > 
> > Ah.  Thanks for the proper search terms, Dop.  This is what I was
> > looking for:
> > 
> > http://httpd.apache.org/docs/1.3/misc/FAQ.html#proxyscan
> > 
> > Ben
> > 
> > 
> > 
> > 
> > 
> > _______________________________________________
> > nSLUG mailing list
> > nSLUG at nslug.ns.ca
> > http://nslug.ns.ca/cgi-bin/mailman/listinfo/nslug
> > 
> > 
> > 
> >   
>  
> _______________________________________________
> nSLUG mailing list
> nSLUG at nslug.ns.ca
> http://nslug.ns.ca/cgi-bin/mailman/listinfo/nslug
> 
> 
> !DSPAM:42fcdc19154906115111262!


!DSPAM:42fd1233157759088216175!




More information about the nSLUG mailing list