[Zope] zope, curious http requests, apache

Stuart Robinson r.s.robinson at ntlworld.com
Thu Aug 7 23:30:11 EDT 2003


Hello all,

I'm having my second 'play' with zope, this time round however I've go it 
exposed to the world through port 80 (running on port 80), firewalled etc. 

I notices in Zope's output stream in the terminal window this evening a 
curious "ZServer Bad HTTP request: 'GET 
/default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX%u9090%
u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%
u9090%u8190%u00c3%u0003%u8b00%u531b%u53ff%u0078%u0000%u00=a  HTTP/1.0'" ... 
which if I'm not mistaken is a deliberate or scripted attack?  

1st question: This is nothing to worry about with zope, right?
2nd question: is runing zope behind Apache any help?, and if so (while I 
appreciate it is not trivial), what sort of things should I look out for? 
Does anyone know of an 'everymans[!] guide to setting up apache and not doing 
it the WRONG way'? (sorry that's probably my quota of questions tonight I 
know!) :-)

Thanks in advance for any advice.

Stu



More information about the Zope mailing list