<---- template headericclude ----->
Can anyone clarify this line from http logs?
FedoraForum.org - Fedora Support Forums and Community
Results 1 to 7 of 7
  1. #1
    Join Date
    Mar 2004
    Location
    In your closet
    Posts
    16,269
    Mentioned
    5 Post(s)
    Tagged
    0 Thread(s)

    Can anyone clarify this line from http logs?

    75.179.146.179 - - [12/Apr/2012:15:57:21 -0400] "HEAD /manager/status HTTP/1.1" 404 - "-" "Java/1.6.0_25"

    What is the point, or the meaning, of this? Anyone?

  2. #2
    aleph's Avatar
    aleph is offline Banned (for/from) behaving just like everybody else!
    Join Date
    Jul 2007
    Location
    Nanjing, China
    Posts
    1,332
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Can anyone clarify this line from http logs?

    Some bot trying to profile your server's Tomcat installation?
    Code:
    from rlyeh import cthulhu
    cthulhu.fhtagn()

  3. #3
    Join Date
    Mar 2004
    Location
    In your closet
    Posts
    16,269
    Mentioned
    5 Post(s)
    Tagged
    0 Thread(s)

    Re: Can anyone clarify this line from http logs?

    Very likely. I seem to get a lot of them, but what's with the dashes and quotes? Does that have a significant meaning in the http world?

  4. #4
    aleph's Avatar
    aleph is offline Banned (for/from) behaving just like everybody else!
    Join Date
    Jul 2007
    Location
    Nanjing, China
    Posts
    1,332
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Can anyone clarify this line from http logs?

    Dashes are missing data in the log fields. The quotes usually are used to encapsulate a field that can have whitespace breaks or special characters, such as the request line (whitespace between the method and resource location), the Referer and the user-agent.

    I assume this log format is the "Combined Log Format". If I remembered correctly that's what I saw on Fedora's default Apache installations. But I haven't touched Apache for a while and I could be wrong...
    The Combined format looks like this:

    Code:
    host identity-info username time "request" status size "Referer" "user-agent"
    In your case, the identity info, username, size and Referer fields are empty.
    Code:
    from rlyeh import cthulhu
    cthulhu.fhtagn()

  5. #5
    Join Date
    Mar 2004
    Location
    In your closet
    Posts
    16,269
    Mentioned
    5 Post(s)
    Tagged
    0 Thread(s)

    Re: Can anyone clarify this line from http logs?

    Thanks for clarifying Aleph. There are a lot of requests from bots and script kiddies. Some of them 3-4 times a day or 3-4 times in succession. Nothing that I'm overly concerned with but I am trying to gain a better understanding of what is actually going on as I read the logs.

  6. #6
    aleph's Avatar
    aleph is offline Banned (for/from) behaving just like everybody else!
    Join Date
    Jul 2007
    Location
    Nanjing, China
    Posts
    1,332
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Can anyone clarify this line from http logs?

    You're welcome Glenn As you said, shouldn't be much a worry
    Code:
    from rlyeh import cthulhu
    cthulhu.fhtagn()

  7. #7
    Join Date
    Jul 2005
    Posts
    1,080
    Mentioned
    2 Post(s)
    Tagged
    0 Thread(s)

    Re: Can anyone clarify this line from http logs?

    The apache log format is configurable. http://httpd.apache.org/docs/2.0/mod...og_config.html

    You can check the LogFormat setting in your httpd.conf or vhost files to see exactly how your server logs stuff.
    ======
    Doug G
    ======

Similar Threads

  1. HTTP:// treated differently than http://
    By dengeltrees in forum Using Fedora
    Replies: 5
    Last Post: 16th April 2011, 03:00 AM
  2. FC12 Logs in and then logs out.
    By pkpdude in forum Using Fedora
    Replies: 3
    Last Post: 19th April 2010, 05:57 PM
  3. Replies: 3
    Last Post: 8th April 2010, 01:55 AM
  4. Inode Information of a Mount Point- Plz clarify!
    By goosygeek in forum Linux Chat
    Replies: 2
    Last Post: 25th March 2008, 05:40 PM
  5. Convert Apache-logs to IIS-logs
    By locodude in forum Servers & Networking
    Replies: 3
    Last Post: 29th November 2007, 06:55 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
[[template footer(Guest)]]