RE: denial of service attack

From: Mit Rowe (mitayai@dreamlabs.com)
Date: 12/28/01 

From: "Mit Rowe" <mitayai@dreamlabs.com>
To: "Mike Silbersack" <silby@silby.com>
Date: Fri, 28 Dec 2001 16:09:40 -0500

ancient? ;-)

i'm running the latest stable.

> -----Original Message-----
> From: Mike Silbersack [mailto:silby@silby.com]
> Sent: December 28, 2001 16:08
> To: Mit Rowe
> Cc: security@FreeBSD. ORG
> Subject: Re: denial of service attack
>
>
>
> On Fri, 28 Dec 2001, Mit Rowe wrote:
>
> > If i read this correctly, i'm under a denial of service attack.
> >
> > A few questions...
> >
> > 1) am i correct
> > 2) if so, how can i trace where it is coming from?
> > 3) how can i compensate?
> >
> > Dec 28 15:39:50 <kern.crit> tenchi /kernel: Limiting icmp
> unreach response
> > from 323 to 200 packets per second
>
> You're just being nmap'd, nothing serious. If you want to track the scan,
> install an IDS like nessus or something.
>
> Before you do that, though, I suggest that you upgrade to 4.4-stable;
> the vulnerabilities in whatever ancient version of freebsd you're running
> shoud worry you more than the portscan.
>
> Mike "Silby" Silbersack
>
>

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Relevant Pages

  • Re: denial of service attack
    ... On Fri, 28 Dec 2001, Mit Rowe wrote: ... > If i read this correctly, i'm under a denial of service attack. ... the vulnerabilities in whatever ancient version of freebsd you're running ... with "unsubscribe freebsd-security" in the body of the message ...
    (FreeBSD-Security)
  • Re: /bin/rmail (was: root & toor)
    ... Sendmail does invoke rmail, but only on ancient ... with "unsubscribe freebsd-security" in the body of the message ...
    (FreeBSD-Security)