Re: Port 119 Scans
From: Gary Maltzen (maltzen@MM.COM)Date: 07/31/01
- Previous message: Blake Frantz: "Re: Large ISP response to Code Red?"
- In reply to: Tom Laermans: "Port 119 Scans"
- Next in thread: denis: "Re: Port 119 Scans"
- Reply: denis: "Re: Port 119 Scans"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-Id: <4.3.2.7.2.20010731073506.00b95ea0@pop.mm.com> Date: Tue, 31 Jul 2001 07:43:28 -0500 To: incidents@securityfocus.com From: Gary Maltzen <maltzen@MM.COM> Subject: Re: Port 119 Scans
FWIW, I'm on @Home cable and about once every five hours I get probed to see if I'm running an NNTP server in violation of TOS.
Checking a multi-homed server I manage, I see lots of RPC, DNS, SQUID, TELNET, FTP and SMTP scans but *no* NNTP scans in the last three weeks.
-----Original Message-----
Hi,
I'm seeing a lot of port 199 scans lately (very many the last week) .. Is there some sort of news server exploit out? Or am I the only one seeing this?
I'm on ADSL with dynamic IP so I don't think they'd be targetting me personally.. I don't run a newsserver...
Thanks,
Tom
----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
- Previous message: Blake Frantz: "Re: Large ISP response to Code Red?"
- In reply to: Tom Laermans: "Port 119 Scans"
- Next in thread: denis: "Re: Port 119 Scans"
- Reply: denis: "Re: Port 119 Scans"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
