Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

fulldisclosure logo Full Disclosure mailing list archives

(Fwd) traffic laundering using MSN
From: "lsi" <stuart () cyberdelix net>
Date: Sat, 04 Jun 2005 12:49:41 +0100
..is pretty easy, use this URL

http://g.msn.com/9SE/1?http://www.yourdomain.com

There's probably some nice'n'cosy explanation but since it's appeared 
in my logfiles like this:

82.144.21.45 - - [11/May/2005:15:11:00 +0100] "GET / HTTP/1.1" 200 
321 "http://g.msn.com/9SE/1?http://cfnm-male-strippers.com"; "MSIE 6.0 
(compatible; MSIE 6.0; Windows NT 5.1)" 

I thought it was worth a mention.

I'm not sure at all what is being accomplished here but it looks dodgy to me!

Stu

---
Stuart Udall
stuart at () cyberdelix dot net - http://www.cyberdelix.net/

--- 
 * Origin: lsi: revolution through evolution (192:168/0.2)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • (Fwd) traffic laundering using MSN lsi (Jun 04)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]