strange apache access log

i can grep many strange apache log on my server, see below:

::1 - - [13/Mar/2008:14:37:25 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:37:28 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:37:30 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:38:04 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:38:05 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:40:30 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:40:33 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:41:21 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:42:46 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:29 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:30 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:31 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:32 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:33 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:34 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:35 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:36 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:37 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:39 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:42 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:44 +0800] "GET /" 400 460 "-" "-"
::1 - - [13/Mar/2008:14:44:47 +0800] "GET /" 400 460 "-" "-"

the ip is "::1" , i don't what's that mean?
anybody knows how these record appear?? attack or other things? thanks
a lot....

my server is rhel4 and apache version :

Server version: Apache/2.2.6 (Unix)
Server built: Sep 21 2007 12:47:15
Server's Module Magic Number: 20051115:5
Server loaded: APR 1.2.11, APR-Util 1.2.10
Compiled using: APR 1.2.11, APR-Util 1.2.10
Architecture: 32-bit
Server MPM: Prefork
threaded: no
forked: yes (variable process count)
Server compiled with....
-D APACHE_MPM_DIR="server/mpm/prefork"
-D APR_HAS_SENDFILE
-D APR_HAS_MMAP
-D APR_HAVE_IPV6 (IPv4-mapped addresses enabled)
-D APR_USE_SYSVSEM_SERIALIZE
-D APR_USE_PTHREAD_SERIALIZE
-D SINGLE_LISTEN_UNSERIALIZED_ACCEPT
-D APR_HAS_OTHER_CHILD
-D AP_HAVE_RELIABLE_PIPED_LOGS
-D DYNAMIC_MODULE_LIMIT=128
-D HTTPD_ROOT="/home/apache"
-D SUEXEC_BIN="/home/apache/bin/suexec"
-D DEFAULT_PIDLOG="logs/httpd.pid"
-D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
-D DEFAULT_LOCKFILE="logs/accept.lock"
-D DEFAULT_ERRORLOG="logs/error_log"
-D AP_TYPES_CONFIG_FILE="conf/mime.types"
-D SERVER_CONFIG_FILE="conf/httpd.conf"
.

Relevant Pages

  • [NT] Web Browsers Vulnerable to the Extended HTML Form Attack
    ... inject HTML scripts, which makes use of the same method described in the ... The Original HTML form attack: ... server 7 open ...
    (Securiteam)
  • [UNIX] DoS Attack Against FreeRADIUS (Other RADIUS Servers Affected)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... to create a high-performance and highly configurable GPL'd RADIUS server. ... program with failed requests causing a denial of service attack. ... Access-Request to the RADIUS server, ...
    (Securiteam)
  • Re: I was hacked
    ... > I have a Windows 2000 server that is current w/ the latest patches from MS. ... > It is running an IIS server that is configured w/ Microsoft's URLScan tool. ... > It is also running Terminal Services w/ 128 bit encryption turned on. ... > the first visible process of the attack. ...
    (alt.computer.security)
  • Re: I was hacked
    ... > I have a Windows 2000 server that is current w/ the latest patches from MS. ... > It is running an IIS server that is configured w/ Microsoft's URLScan tool. ... > It is also running Terminal Services w/ 128 bit encryption turned on. ... > the first visible process of the attack. ...
    (microsoft.public.inetserver.iis.security)
  • Re: I was hacked
    ... I saw no successes in your IIS Log. ... > It is running an IIS server that is configured w/ Microsoft's URLScan ... > It is also running Terminal Services w/ 128 bit encryption turned on. ... > the first visible process of the attack. ...
    (alt.computer.security)