[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Hacked?

Subject: Re: [cobalt-users] Hacked?
From: "Dave Thurman (Mailing List Email)" <listonly@xxxxxxxxxxxxxxxxxxxx>
Date: Tue Sep 24 06:06:25 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

on 9/24/02 7:35 AM, Paul Warner stated:

> [Tue Sep 24 03:01:12 2002] [error] [client xxx.xxx.xxx.xxx] client sent
> HTTP/1.1 request without hostname (see RFC2616 section 14.23): /
> [Tue Sep 24 03:01:12 2002] [error] [client xxx.xxx.xxx.xxx] client sent
> HTTP/1.1 request without hostname (see RFC2616 section 14.23): /
> [Tue Sep 24 03:01:12 2002] [error] [client xxx.xxx.xxx.xxx] client sent
> HTTP/1.1 request without hostname (see RFC2616 section 14.23): /
> [Tue Sep 24 03:01:12 2002] [error] [client xxx.xxx.xxx.xxx] client sent
> HTTP/1.1 request without hostname (see RFC2616 section 14.23): /
> [Tue Sep 24 03:01:20 2002] [error] mod_ssl: SSL handshake failed (server
> yyy.yyy.yyy.yyy:443, client xxx.xxx.xxx.xxx) (OpenSSL library error follows)
> [Tue Sep 24 03:01:20 2002] [error] OpenSSL: error:1406908F:SSL
> routines:GET_CLIENT_FINISHED:connection id is different
> [Tue Sep 24 03:01:21 2002] [notice] child pid 27426 exit signal Segmentation
> fault (11)

I could be wrong, but isn't this the slapper worm broadcasting?
-- 
Thanks!!
Dave Thurman
The Web Presence Group / www.webpresencegroup.net
Listonly <at> webpresencegroup.net / Spam Block 8^Q

Follow-Ups:
- Re: [cobalt-users] Hacked?
  - From: Gerald Waugh

References:
- [cobalt-users] Hacked?
  - From: Paul Warner

Prev by Date: RE: [cobalt-users] Usernames & passwords
Next by Date: [cobalt-users] mod_SSL virus - finding version of OpenSSL
Previous by thread: [cobalt-users] Hacked?
Next by thread: Re: [cobalt-users] Hacked?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index