[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] Lame Server messages

Subject: RE: [cobalt-security] Lame Server messages
From: "Scott w" <webbcite@xxxxxxxxxxx>
Date: Fri, 31 Aug 2001 17:14:07 +0000
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

It now appears to repeat
each night in the same time slot and some if not many of the ip's are .kr.

I searched the posts in this and other lists before I put my original post

up and found nothing similar to what I'm seeing here. I'd like to thinkthat

any good admin in this list seeing a 1000 new error messages in their logs
would (again) question the security implications.  Who knows what the next
exploit looks like until it happens.

I'd still like to hear a good theory as to this sudden burst of activity.

You wouldn't happen to have webalizer installed?? The lame server messageswould happen to be when cron runs webalizer for all your sites??

The same thing started happening to me after I installed thecobalt-aide.sourceforge Webalizer 2.01 package. At least it is the onlything I could think of....


Maybe??

_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp

Follow-Ups:
- [cobalt-security] RE: Lame Server messages -
  - From: Terrance Dwyer

Prev by Date: RE: [cobalt-security] Lame Server messages
Next by Date: [cobalt-security] Disclaimer...
Previous by thread: RE: [cobalt-security] Lame Server messages
Next by thread: [cobalt-security] RE: Lame Server messages -

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index