cURL / Mailing Lists / curl-users / Single Mail

curl-users

RE: Hacking / Hijacking / or OTHER ?

From: Bill Mercer <bmercer_at_nccer.org>
Date: Thu, 22 Mar 2012 16:43:07 +0000

>output is obtained. It looks like the page/code that a browser loads
>when
>it detects a java plug-in is needed ??? :

This is an attempt to use a java applet that will let a user use a normal browser to download a file from an SFTP service.
  http://www.jscape.com/products/file-transfer-clients/secure-ftp-applet/

>-----Original Message-----
>From: curl-users-bounces_at_cool.haxx.se [mailto:curl-users-
>bounces_at_cool.haxx.se] On Behalf Of Botany
>Sent: Thursday, March 22, 2012 11:53 AM
>To: the curl tool
>Subject: Re: Hacking / Hijacking / or OTHER ?
>
>> This command line is treated by curl as two URLs with the -i option
>since
>> there's no space between -A and the URL before it. Is that just a
>mistake
>> in the mail or the actual command line?
>
>Yes, I realize that the command is malformed. I discovered the output
>anomaly by accident while testing mod_security for Apache (see link
>below).
>Even so, the output was suspicious enough for me to investigate, and I
>need
>to understand. When I run the command, the server connects to
>http://209.71.59.41/ and gets the DomainRegistry.com-page which is
>hosted
>there.
>
>I admit that I know nothing about cURL. But I did, however, exhaust
>Google
>in an attempt to find answers prior to making this cURL mailing list
>post.
>I am turning to this mailing list because I think its members have the
>best
>chance offering answers.
>
>When I change the key word, using the command from I found in the
>college
>tutorial on testing mod_security
>(http://samsclass.info/124/proj11/p16-mod-security.html), even more
>curious

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ: http://curl.haxx.se/docs/faq.html
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2012-03-22