Security question - please advise!

From: Weeble (nono_at_hotmail.com)
Date: 09/29/04

Next message: Mark Thompson: "SecureRemote connection drops after 24 hours"

Previous message: nospam: "Re: Newbie question on private IP classes"
Next in thread: Lars M. Hansen: "Re: Security question - please advise!"
Reply: Lars M. Hansen: "Re: Security question - please advise!"
Reply: Don Kelloway: "Re: Security question - please advise!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 29 Sep 2004 10:42:02 +0100

Do I need to worry that Sygate Personal Firewall is logging hundreds of
'Major' intrusions like this:

[215] Outgoing LSASS buffer overflow exploit attempt detected.

% This is the RIPE Whois secondary server.
% The objects are in RPSL format.
%
% Rights restricted by copyright.
% See http://www.ripe.net/db/copyright.html

inetnum: 212.50.172.0 - 212.50.172.255
netname: ADSLPOOL-KCOM
country: GB
descr: Karoo Rapidtime dynamic address pool
admin-c: KR2955-RIPE
tech-c: KR2955-RIPE
rev-srv: ibex.kcom.com
rev-srv: bison.kcom.com
status: ASSIGNED PA
notify: ripe@as12390.net
remarks: Please send abuse complaints to abuse@as12390.net ONLY
mnt-by: KINGSTON-MNT
changed: gareth@nospam.ipnoc.kcom.com 20031118
source: RIPE

route: 212.50.160.0/19
descr: KINGSTON-NET001
origin: AS12390
mnt-by: KINGSTON-MNT
changed: andrew@hilborne.com 19990518
source: RIPE

role: KINGSTON ROLE
address: Kingston Communications
address: Telephone House
address: Carr Lane
address: Kingston-upon-Hull
address: HU1 3RE
phone: +44 800 138 4858
fax-no: +44 113 384 2468
remarks: **********************************************
remarks: *** Do NOT send abuse reports to any other ***
remarks: *** address EXCEPT abuse@as12390.net ***
remarks: **********************************************
e-mail: ripe@as12390.net
trouble: Send ABUSE REPORTS to abuse@as12390.net
admin-c: GW2558-RIPE
tech-c: GW2558-RIPE
nic-hdl: KR2955-RIPE
notify: ripe@as12390.net
mnt-by: KINGSTON-MNT
changed: gareth@nospam.ipnoc.kcom.com 20030919
source: RIPE

Any advice would be appreciated.

Ta,

Gemma

Next message: Mark Thompson: "SecureRemote connection drops after 24 hours"

Previous message: nospam: "Re: Newbie question on private IP classes"
Next in thread: Lars M. Hansen: "Re: Security question - please advise!"
Reply: Lars M. Hansen: "Re: Security question - please advise!"
Reply: Don Kelloway: "Re: Security question - please advise!"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: hacked?
... tech-c: RAD3-RIPE ... mnt-by: AS8708-MNT ... source: RIPE ...
(comp.os.linux.security)
Re: I am a lunatic
... mnt-by: AS5089-MNT ... source: RIPE # Filtered ... remarks: ... admin-c: MH22007-RIPE ...
(uk.politics.misc)
RE: ntsds.exe or ntsdc.exe
... admin-c: DTIP-RIPE ... mnt-by: DTAG-NIC ... source: RIPE ... it appeared that all the machines were Windows machines with a ...
(Focus-Microsoft)
Re: I am a lunatic
... mnt-by: AS5089-MNT ... source: RIPE # Filtered ... remarks: ... admin-c: MH22007-RIPE ...
(uk.politics.misc)
Re: Im afraid that...
... admin-c: GTW-RIPE ... mnt-by: ICP-MNT ... source: RIPE # Filtered ...
(soc.culture.polish)