Security Incidents mailing list archives

Re: increase in ftp scanning

From: Dragos Ruiu <dr () kyx net>
Date: Tue, 5 Mar 2002 02:24:19 +0000

On Mon, 04 Mar 2002 12:15:34 +0000
quentyn () fotango com wrote:

Has any one else notice a huge increase in ftp scanning over the last
few weeks ( esp the last 2)

...

is this warez kiddies looking for open share or script kiddies looking
for a vulnerable version of wuftp (or similar)?



There is a new easier to use wuftpd exploit for old vulns making the rounds
in limited distribution so far. Which would be one potential reason for
the increase...

cheers,

-- 
--dr                    http://dragos.com/dr-dursec.asc
        CanSecWest/core02 - May 1-3 2002 - Vancouver B.C. - http://cansecwest.com



----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Current thread:

increase in ftp scanning quentyn (Mar 05)
- Re: increase in ftp scanning admin (Mar 05)
- Re: increase in ftp scanning Dragos Ruiu (Mar 05)
- Re: increase in ftp scanning Baribault, Gary (Mar 05)
- <Possible follow-ups>
- RE: increase in ftp scanning Benninghoff, John (Mar 05)
- RE: increase in ftp scanning Ryan Hill (Mar 05)