Date: Sat, 05 Jun 1999 04:42:40 +1000 From: "Chris " <cconel@aussie.org> To: "security@FreeBSD.ORG" <security@FreeBSD.ORG> Subject: Net abuse/DOS with Teleport Pro ? Message-ID: <199906041843.EAA08014@mail.aussie.org>
next in thread | raw e-mail | index | archive | help
Upon processing my logs for the past few days, I noted an anamoly with regard to one particular directory. I checked out the logs manually. During two periods over two days, a person using a agent that identified itself as 'Teleport Pro/1.26' made over ---THIRTY THOUSAND--- hits on my web server (at a rate of roughly one per second), repeatedly asking for the same (or similar) rubbish URL, as such ... /Docs/?S=A?M=A?N=A?S=D?N=A?S=D?S=D /Docs/?S=A?M=A?N=A?S=D?N=A?S=D?S=A /Docs/?S=A?M=A?N=A?S=D?N=A?S=D?S=M and a number of variations of this. All came from the same IP address. I have not used this software and am unaware of its abilities, but I am amazed that any responsible firm would distribute software that could be so easily abused in this way. What it is doing seems, to me, to be either a user doing something silly, or a bug in teleport pro (more likely the latter). Anyone seen this ? -- Chris To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199906041843.EAA08014>