Fedora Linux Support Community & Resources Center

Go Back   FedoraForum.org > Fedora 19/20 > Security and Privacy
FedoraForum Search

Forgot Password? Join Us!

Security and Privacy Sadly, malware, spyware, hackers and privacy threats abound in today's world. Let's be paranoid and secure our penguins, and slam the doors on privacy exploits.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 13th April 2012, 12:48 AM
glennzo Online
Un-Retired Administrator
 
Join Date: Mar 2004
Location: Salem, Mass USA
Age: 57
Posts: 14,780
linuxfirefox
Can anyone clarify this line from http logs?

75.179.146.179 - - [12/Apr/2012:15:57:21 -0400] "HEAD /manager/status HTTP/1.1" 404 - "-" "Java/1.6.0_25"

What is the point, or the meaning, of this? Anyone?
__________________
Glenn
The Bassinator © ®

[SIGPIC][/SIGPIC]
Laptop: Just a couple of old single core units
Desktop: BioStar MCP6PB M2+ / AMD Phenom 9750 Quad Core / 4GB / Kingston HyperX 3K SSD 240GB SATA 3.0 / 1TB SATA / EVGA GeForce 8400 GS 1GB
Reply With Quote
  #2  
Old 13th April 2012, 09:22 AM
aleph Offline
Banned (for/from) behaving just like everybody else!
 
Join Date: Jul 2007
Location: Nanjing, China
Posts: 1,332
linuxfirefox
Re: Can anyone clarify this line from http logs?

Some bot trying to profile your server's Tomcat installation?
__________________
Code:
from rlyeh import cthulhu
cthulhu.fhtagn()
Reply With Quote
  #3  
Old 13th April 2012, 09:28 AM
glennzo Online
Un-Retired Administrator
 
Join Date: Mar 2004
Location: Salem, Mass USA
Age: 57
Posts: 14,780
linuxfirefox
Re: Can anyone clarify this line from http logs?

Very likely. I seem to get a lot of them, but what's with the dashes and quotes? Does that have a significant meaning in the http world?
__________________
Glenn
The Bassinator © ®

[SIGPIC][/SIGPIC]
Laptop: Just a couple of old single core units
Desktop: BioStar MCP6PB M2+ / AMD Phenom 9750 Quad Core / 4GB / Kingston HyperX 3K SSD 240GB SATA 3.0 / 1TB SATA / EVGA GeForce 8400 GS 1GB
Reply With Quote
  #4  
Old 13th April 2012, 09:55 AM
aleph Offline
Banned (for/from) behaving just like everybody else!
 
Join Date: Jul 2007
Location: Nanjing, China
Posts: 1,332
linuxfirefox
Re: Can anyone clarify this line from http logs?

Dashes are missing data in the log fields. The quotes usually are used to encapsulate a field that can have whitespace breaks or special characters, such as the request line (whitespace between the method and resource location), the Referer and the user-agent.

I assume this log format is the "Combined Log Format". If I remembered correctly that's what I saw on Fedora's default Apache installations. But I haven't touched Apache for a while and I could be wrong...
The Combined format looks like this:

Code:
host identity-info username time "request" status size "Referer" "user-agent"
In your case, the identity info, username, size and Referer fields are empty.
__________________
Code:
from rlyeh import cthulhu
cthulhu.fhtagn()
Reply With Quote
  #5  
Old 13th April 2012, 09:58 AM
glennzo Online
Un-Retired Administrator
 
Join Date: Mar 2004
Location: Salem, Mass USA
Age: 57
Posts: 14,780
linuxfirefox
Re: Can anyone clarify this line from http logs?

Thanks for clarifying Aleph. There are a lot of requests from bots and script kiddies. Some of them 3-4 times a day or 3-4 times in succession. Nothing that I'm overly concerned with but I am trying to gain a better understanding of what is actually going on as I read the logs.
__________________
Glenn
The Bassinator © ®

[SIGPIC][/SIGPIC]
Laptop: Just a couple of old single core units
Desktop: BioStar MCP6PB M2+ / AMD Phenom 9750 Quad Core / 4GB / Kingston HyperX 3K SSD 240GB SATA 3.0 / 1TB SATA / EVGA GeForce 8400 GS 1GB
Reply With Quote
  #6  
Old 13th April 2012, 10:12 AM
aleph Offline
Banned (for/from) behaving just like everybody else!
 
Join Date: Jul 2007
Location: Nanjing, China
Posts: 1,332
linuxfirefox
Re: Can anyone clarify this line from http logs?

You're welcome Glenn As you said, shouldn't be much a worry
__________________
Code:
from rlyeh import cthulhu
cthulhu.fhtagn()
Reply With Quote
  #7  
Old 13th April 2012, 10:19 PM
Doug G Offline
Registered User
 
Join Date: Jul 2005
Posts: 640
windows_7firefox
Re: Can anyone clarify this line from http logs?

The apache log format is configurable. http://httpd.apache.org/docs/2.0/mod...og_config.html

You can check the LogFormat setting in your httpd.conf or vhost files to see exactly how your server logs stuff.
__________________
======
Doug G
======
Reply With Quote
Reply

Tags
clarify, http, line, logs

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
HTTP:// treated differently than http:// dengeltrees Using Fedora 5 16th April 2011 03:00 AM
FC12 Logs in and then logs out. pkpdude Using Fedora 3 19th April 2010 05:57 PM
Could Someone Clarify Vintage nVidia Support For Me...Fedora 12 HMSS013 Using Fedora 3 8th April 2010 01:55 AM
Inode Information of a Mount Point- Plz clarify! goosygeek Linux Chat 2 25th March 2008 05:40 PM
Convert Apache-logs to IIS-logs locodude Servers & Networking 3 29th November 2007 05:55 PM


Current GMT-time: 13:26 (Saturday, 01-11-2014)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat
Ithari - Blenheim Photos on Instagram - Kabrai Instagram Photos