Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Strange scans

From: Ed Moyle <emoyle () scsnet csc com>
Date: Mon, 15 Apr 2002 14:03:57 -0400



It's fairly obvious they were looking for IIS and other vulnerabilities,
but why does "GET HTTP://www.microsoft.com/ HTTP/1.0" appear in it?


Looks like it is testing to see if you are a proxy server...

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com
Previous By Date Next
Previous By Thread Next

Current thread: