You are not logged in.
Hi,
My access log from apache shows something odd. I'm getting a lot of accesses from a local computer, running Windows Vista. I have no idea what this could be, and I'm a little bit worried about the security of the Windows box.
192.168.1.10 - - [19/Jan/2011:21:45:40 +0100] "GET / HTTP/1.0" 200 60
I'm getting about 50 of these messages per hour, and I'm pretty sure no one did this intentionally. What could it be? Should I be worried?
Thanks in advance.
Careful what you wish, you might just get it!
Offline
The GETs themselves aren't really harmful as long as they're not choking out the server's bandwidth. You'd need a lot more GETs than 50/hour to do that. A web server's job is to respond to HTTP requests, and that's what it's doing. So I'm not so sure this is even an Arch issue.
Put the Vista machine through the usual rigamarole of spybot/virus/etc scans.
Last edited by switch86 (2011-01-20 02:41:52)
Offline
I don't think there's much we can offer you on a Linux forum... Vista is doing something strange and needs to be nuked
Are you familiar with our Forum Rules, and How To Ask Questions The Smart Way?
BlueHackers // fscanary // resticctl
Offline
I agree that it looks more like a Windows Vista question than a Linux question...
That said, one think you could do if you are worried about your Vista box is to route all the traffic from that box to your Linux box, and take a look at what's being send (with tcpdump/wireshark) and received from/to this box.
Offline