lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <20040819174345.GA76230@netpublishing.com>
From: ggilliss at netpublishing.com (Gregory A. Gilliss)
Subject: mail.yahoo.com issue

What you may be seeing is a typical implementation on large networks where
load balancing is performed on the front end connections. In the event that
the service is not available from the pool of primary servers, a secondary
pool can be made available that returns something along the lines of "line
busy, please try again later". Refreshing may or may not reproduce the page
since the condition that caused the session to be directed to the lower
priority pool may no longer exist at the time the refresh is performed.

Basically, for large sites like Yahoo, it's a nicer way of responding than
"404 - Page Not Found".

-- Greg

On or about 2004.08.19 09:49:43 +0000, LaRose, Dallas (dlpassport@...ccess.com) said:

> When visiting http://mail.yahoo.com, occasionally the server will serve up a
> strange page saying only "do you yahoo?".  With a few refreshes (which
> likely pulls the content from other servers), you will get to the yahoo mail
> login page.  It looks like some of their servers are not returning correct
> results.  I'm not sure whether it's malicious, but it's worth noting....
> 
> Source of strange page:
> 
> <html><head><title>do you yahoo?</title></head>
> <body>
> <h1>do you yahoo?</h1>
> </body></html>
> 
> <!-- l27.login.scd.yahoo.com compressed/chunked Thu Aug 19 07:38:10 PDT 2004
> -->

-- 
Gregory A. Gilliss, CISSP                              E-mail: greg@...liss.com
Computer Security                             WWW: http://www.gilliss.com/greg/
PGP Key fingerprint 2F 0B 70 AE 5F 8E 71 7A 2D 86 52 BA B7 83 D9 B4 14 0E 8C A3


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ