Security Incidents mailing list archives

Re: HTTPS scans

From: H C <keydet89 () yahoo com>
Date: Mon, 11 Mar 2002 10:57:11 -0800 (PST)

Keith,

We're starting to see a surge in scans for tcp 443. 
My guess is that someone has scripted an attack
against the mod_ssl vulnerability.


SYN packets to a port don't really show much, other
than, as you say, a surge in scans.  Have you captured
any packets that would shed some light on this issue?



__________________________________________________
Do You Yahoo!?
Try FREE Yahoo! Mail - the world's greatest free email!
http://mail.yahoo.com/

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Current thread:

HTTPS scans Keith T. Morgan (Mar 11)
- Re: HTTPS scans Kurt Seifried (Mar 11)
- Re: HTTPS scans H C (Mar 11)