cvs commit: httpd-docs-1.3/htdocs/manual/misc FAQ-D.html

31 Dec 2001 20:27:48 -0000 

slive       01/12/31 12:27:47

  Modified:    htdocs/manual/misc FAQ-D.html
  Log:
  We should have added this months ago, but it is still a FAQ.
  
  Submitted by: Daniel Lopez <[EMAIL PROTECTED]>
  
  Revision  Changes    Path
  1.16      +20 -2     httpd-docs-1.3/htdocs/manual/misc/FAQ-D.html
  
  Index: FAQ-D.html
  ===================================================================
  RCS file: /home/cvs/httpd-docs-1.3/htdocs/manual/misc/FAQ-D.html,v
  retrieving revision 1.15
  retrieving revision 1.16
  diff -u -d -b -u -r1.15 -r1.16
  --- FAQ-D.html        17 Oct 2001 10:59:46 -0000      1.15
  +++ FAQ-D.html        31 Dec 2001 20:27:47 -0000      1.16
  @@ -33,7 +33,7 @@
       <h1 align="CENTER">Apache Server Frequently Asked
       Questions</h1>
   
  -    <p>$Revision: 1.15 $ ($Date: 2001/10/17 10:59:46 $)</p>
  +    <p>$Revision: 1.16 $ ($Date: 2001/12/31 20:27:47 $)</p>
   
       <p>The latest version of this FAQ is always available from the
       main Apache web site, at &lt;<a
  @@ -133,6 +133,10 @@
          Although I follow the example exactly, authentication
          fails, and an error message "<code>admin: not a valid
          FDN: ....</code>" is logged.</a></li>
  +
  +          <li><a href="#codered">Why do I have weird entries in my
  +          logs asking for <code>default.ida</code> and
  +          <code>cmd.exe</code>?</a></li>
           </ol>
         </li>
         <!--#endif -->
  @@ -502,8 +506,22 @@
          those modules in <code>/etc/httpd/suse_addmodule.conf</code>
          and <code>/etc/httpd/suse_loadmodule.conf</code> which are not
          actually required for running your server.
  -          </p>
  +          </p><hr />
  +      </li>
  +
  +     <li><a id="codered" name="codered"><b>Why do I have weird entries in my
  +          logs asking for <code>default.ida</code> and
  +          <code>cmd.exe</code>?</b></a>
  +      
  +          <p>The host requesting pages from your website and creating
  +          those entries is a Windows machine running IIS that has been
  +          infected by an Internet worm such as Nimda or Code Red. You
  +          can safely ignore these error messages as they do not affect
  +          Apache.  ApacheWeek has an <a
  +          href="http://www.apacheweek.com/features/codered";>article</a>
  +          with more information.</p>
         </li>
  +
       </ol>
       <!--#endif -->
       <!--#if expr="$STANDALONE" -->
  
  
  

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to