HTTP 1.0 protocol doesn't GET

Forum Moderators: phranque

Message Too Old, No Replies

HTTP 1.0 protocol doesn't GET

Zvone

6:10 pm on Jun 20, 2005 (gmt 0)

Hi, folks. I'm new member here.
I am running Apache 2.0 without bigger troubles 6 months. After 4th jun I found in access.log blind records, like this one:
193.***.245.177 - - [20/Jun/2005:19:17:24 +0200] "GET / HTTP/1.0" 200 2225 "-" "-"

Blind responses are only for HTTP/1.0 user's protocol. Where is a trouble?

Many thanks!

[edited by: jdMorgan at 3:03 pm (utc) on July 7, 2005]
[edit reason] Obscured specific IP address. [/edit]

dcrombie

8:50 pm on Jun 20, 2005 (gmt 0)

That's just someone requesting your homepage, with a blank REFERER and USER AGENT.

Zvone

2:59 pm on Jun 23, 2005 (gmt 0)

Thanks. I undestand now. I receive lot of those requests. Is this common? Who or what is sending theese requests?

jdMorgan

7:18 pm on Jul 5, 2005 (gmt 0)

Anybody who types "http://your_domain.com/" in their browser *and* who uses something like Norton Internet Security to block their user-agent information could produce such a request. Tracking the behaviour of these visitors over multiple requests is usually needed in order to determine if they are up to no good. A few of the things that would indicate an automated (and potentially abusive) visitor would be:

Fetches only pages, not images or included stylesheets and external JavaScripts.

Fetches pages faster than a normal human visotor would.

Fetches pages out of sequence for a human visitor.

Fetches home page, and then immediately fetches e-mail contact page or other pages prone to abuse.

Jim