Topic: error log question

[Sidney]

Hello


I have a question about an error that I keep getting in the error log


"[Tue Sep 11 14:45:43 2001] [error] [client 24.37.124.118] File does not exist: /home/e-smith/files/primary/html/default.ida"

could some one tell me why I get this all the time and how to fix it.




Thanks

[Frank Prins]

Sidney,

You ran into a request made by the code red virus, that will happen quite often. If you for example do: "cat /var/log/httpd/access.log | grep -c default.ida"
you will see the amount of requests for this file in the acceslog.
As far as i know this is absolutely of no harm to apache on linux, it just doesn't find its way in. A fix for this isn't there, if you find one i expect there some people who will want to talk to you....

kind regards

Frank

[Sidney]

Is there away to block this some how ?



the cat command didn't work at first.
I had to change access.log to access_log to get it to work.


Thanks

[Frank Prins]

Sydney,

Well, there is in fact some little things you can do, have a look at this:
http://www.thesitewizard.com/news/coderediiworm.shtml

It gives some explanation about the virus.

succes !

frank

PS sorry about that "." instead of "_" , i did it by head...

[Dan Brown]

This has (accurately) been described as a Code Red attempt, but any requested URL that doesn't exist will generate the same message (of course, with a different filename).  It's nothing to worry about.