Full Disclosure mailing list archives

(Fwd) traffic laundering using MSN

From: "lsi" <stuart () cyberdelix net>
Date: Sat, 04 Jun 2005 12:49:41 +0100

..is pretty easy, use this URL

http://g.msn.com/9SE/1?http://www.yourdomain.com

There's probably some nice'n'cosy explanation but since it's appeared 
in my logfiles like this:

82.144.21.45 - - [11/May/2005:15:11:00 +0100] "GET / HTTP/1.1" 200 
321 "http://g.msn.com/9SE/1?http://cfnm-male-strippers.com"; "MSIE 6.0 
(compatible; MSIE 6.0; Windows NT 5.1)" 

I thought it was worth a mention.

I'm not sure at all what is being accomplished here but it looks dodgy to me!

Stu

---
Stuart Udall
stuart at () cyberdelix dot net - http://www.cyberdelix.net/

--- 
 * Origin: lsi: revolution through evolution (192:168/0.2)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

(Fwd) traffic laundering using MSN lsi (Jun 04)