Tugger the SLUGger!SLUG Mailing List Archives

Re: [SLUG] Long lines in /var/log/httpd/access_log


On Fri, Oct 29, 2010 at 06:25:34AM +1000, Rick Welykochy wrote:
> Jim Donovan wrote:
> 
> >GET /documents/url(data:image
> 
> At a glance, this is a request for a data: URI
> <http://en.wikipedia.org/wiki/Data_URI_scheme>
> 
> There are exploits involving this rarely used URI scheme.
> <http://www.google.com.au/search?q=data+uri+exploit>
> 
> Do you recognise the requesting IP address?
> 

Jim, the ip belongs to Bell Canada -- their ISP business I guess.

HTH