Re: trusted ip address
From: N. Miller (anonymous_at_discussions.microsoft.com)
Date: 08/07/05
- Next message: Shenan Stanley: "Re: I Update and Check Daily"
- Previous message: Lanwench [MVP - Exchange]: "Re: Firewall Ports Keep Changing for Exchange"
- In reply to: ditty dot: "trusted ip address"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 7 Aug 2005 11:54:31 -0700
On Sun, 7 Aug 2005 07:23:02 -0700, ditty dot wrote:
> i have mc afee protections i keep getting attempts to use my computer and
> questions do you trust this site.
McAfee really shouldn't be asking about allowing inbound connections. Those
inbound connections which aren't responses to outbound requests should be
blocked automatically.
> what are the trusted ip addresses.
Very few. If you run a LAN, your LAN IP addresses should be trusted. If you
run a server, well; you really need to learn a whole lot about what happens
when you run a server. For most people, that isn't an issue; most people
don't run servers.
> following the ip pool 70 - 20118-113-pitt.east.verizon.net address would
> this be a hacker
No way to tell without seeing the actual packets sent. UDP packets to ports
1025-1030 would be typical of messenger spam, though. I mostly see those on
ports 1026/1027; my router blocks them. Other ports would be indicative of
other activity. I mostly see messenger spam, or automated RPCSS worm
activity. After that I see relay attempts on my MTA. I rarely see anything
that could be attributed to "hacking"; as a conscious activity directed by
a human agent at my connection.
-- Norman ~Win dain a lotica, En vai tu ri, Si lo ta ~Fin dein a loluca, En dragu a sei lain ~Vi fa-ru les shutai am, En riga-lint
- Next message: Shenan Stanley: "Re: I Update and Check Daily"
- Previous message: Lanwench [MVP - Exchange]: "Re: Firewall Ports Keep Changing for Exchange"
- In reply to: ditty dot: "trusted ip address"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
