Re: Prelude and Firewalls...
From: Goldenpi (goldenpi@softhome.net)
Date: 03/02/03
- Next message: remove: "Re: THESE ARE SIGNS TO LOOK FOR TO TELL YOU YOUR COMPUTER IS HACKED/OWNED:"
- Previous message: David 01: "Re: China gets access to Windows source code"
- In reply to: joe blow: "Prelude and Firewalls..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Goldenpi" <goldenpi@softhome.net> Date: Sun, 02 Mar 2003 07:40:15 GMT
"joe blow" <hoe@ho.com> wrote in message
news:p9L6a.80247$na.1630424@news2.calgary.shaw.ca...
> I recently installed the Linux MNF firewall. Its been great in the way it
> works. One of the things that I have come accross lately in the prelude
> logs is udp scan attacks from my own ISP. udp ports ranging from 1101 to
> 11136
>
> When I asked the ISP to explain. They stated it was thier dhcp server
> trying to see if the server was still alive.
>
> I have never heard of DHCP using port scans to see if a server is alive
> before. Also, why only recently.
>
> If anyone can offer some insite it would be greatly appreciated.
>
> Thank you,
Whatever causes those, its not the DHCP server. Not unless someone programed
it really badly at least, and couldn't be bothered to look up code for ICMP
ECHO packets :-). Possibly the ISP is monitoring p2p usage, a lot if ISPs
dont like it. Cant think of any other reasons.
>
> Shawn Belcourt
> shawn_belcourt@wssl.com
> Warner Shelter Systems Limited
> Calgary, Alberta
>
>
>
- Next message: remove: "Re: THESE ARE SIGNS TO LOOK FOR TO TELL YOU YOUR COMPUTER IS HACKED/OWNED:"
- Previous message: David 01: "Re: China gets access to Windows source code"
- In reply to: joe blow: "Prelude and Firewalls..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
