Hello,
my today’s logwatch reported:
A total of 1 sites probed the server
194.174.65.18
A total of 1 possible successful probes were detected (the following URLs
contain strings that match one or more of a listing of strings that
indicate a possible exploit):
null HTTP Response 302
i’ve checked my logs and found only this:
194.174.65.18 - - [20/Jul/2008:23:58:31 +0200] “\xf3\xea\x05\xc5” 302 282
194.174.65.18 - - [20/Jul/2008:23:58:31 +0200] “\xf3\xea\x05\xc5” 302 282
i’ve tried to google for an explanation, but failed to find something useful.
should i be worried? any hints?