Quote:
Originally posted by Arty
I just noticed that on my server logs.
"GET /sumthin HTTP/1.0"
That returns detailed server information by headers. It looks like that's some kind of trojan looking for some specific exploits on server software. There is too little information on the web right now but that might be serious in future.
It seems like one of the possible solutions might be .htaccess protection for that request.
I advice you to check your logs and be aware just in case.
|
Sumthin tells me you should be making sure your SSL enabled webservers are (and have been) using a safe version of OpenSSL instead of worrying how to block requests for /sumthin
If your server responses with something other than your 404 page when you hit
https://www.yourserver.com/sumthin -- then you have problems & should contact your system administrator for a complete reinstallation.