port 22224?? What the heck
From: Gary Baribault (gary@baribault.net)Date: 01/25/02
- Previous message: Daniel F. Chief Security Engineer -: "DDoS attack."
- Next in thread: John Campbell: "Re: port 22224?? What the heck"
- Reply: John Campbell: "Re: port 22224?? What the heck"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 25 Jan 2002 13:46:52 -0500 To: incidents@securityfocus.com From: Gary Baribault <gary@baribault.net>
I got a scan last nigh from and to port 22224... Has anyone else seen a
scan like that? Any idea what they are looking for?
[root@ns1 root]# grep 208.1.80.131 /var/log/messages.1
Jan 24 10:38:50 ns1 kernel: Packet log: input REJECT eth1 PROTO=6
xxx.1.80.131:22224 209.71.230.115:22224 L=40 S=0x00 I=19289 F=0x0000 T=109
SYN (#17)
[root@ns1 root]#
Gary Baribault
gary@baribault.net
----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
- Previous message: Daniel F. Chief Security Engineer -: "DDoS attack."
- Next in thread: John Campbell: "Re: port 22224?? What the heck"
- Reply: John Campbell: "Re: port 22224?? What the heck"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
