Re: FTP scans from wanadoo.fr
From: Dave Morris (trojan1@vizzavi.net)Date: 12/20/01
- Previous message: Paulo Braga: "Re: NT Compromise"
- Maybe in reply to: Aaron Wolfe: "FTP scans from wanadoo.fr"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 20 Dec 2001 07:38:10 -0000 From: Dave Morris <trojan1@vizzavi.net> To: incidents@securityfocus.com('binary' encoding is not supported, stored as-is)
In-Reply-To: <030701c187f2$f134cf90$4a01a8c0@cipher.com.br>
I've noticed the same activity from this ISP. The only
difference I have noticed is with each attack, we get
one single bad FTP attempt amongst a hoard of eeye-
retina scans (anywhere between 10,000 to 60,000 of
them). I'm not sure whether the FTP attempt is part
of that scanning program or whether it's simply an
attempt to mask the activity with a blur of alerts.
----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
- Previous message: Paulo Braga: "Re: NT Compromise"
- Maybe in reply to: Aaron Wolfe: "FTP scans from wanadoo.fr"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
