On Mon, 31 Jan 2000, Robert Glover wrote:
>
> Yeah, I noticed that too. Instead of looking for open proxy servers on port
> 8080, 3128, or scanning for known vulnerabilities, they're just checking for
> web servers. I guess that's so they can make more money, but it might just
> be that they don't know what they're doing (IMO). An @Home UDP might be a
> real possibility again, if they don't start looking for the real problems.
Strange thing is when tey hit my web serve they just sit there and it
times out. They never get anything. Always returns an error code of 408.
They have been also hitting the nntp port (119), but they never do
anything. That's about once a day. I've had the default serve install of
innd up and running for morethan a month. no newsgroups (ohter than a test
for a project I'm working on) but they never get anything.
I never see a connect to any other port.
That's OK, I've now blocked them from jsut about every port on the system.
Let's let them figure that out.
On another note, is it legal what they are doing? They are doing something
that the FBI goes around and arrests people for. They are entering
mycomputr system, wihout authorization.
Chris
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
