nanog mailing list archives

Re: black hat .cn networks

From: "Justin Hinderliter" <justin () interaccess com>
Date: Mon, 7 May 2001 14:39:08 -0500

The past week i've seen attacks increase 5-fold, mostly 111/udp attacks
mixed with some lpr and ftp on the side. Also lots of http scanning, which
I havent seen in quite a while.


Yep, I'd seen them try port 111 scans as well from different hosts, but
since I never run RPC services, they didn't get anything off those.  I
usually don't run http services either, but in this case got caught with my
pants down on a temporary exception.  I was a few versions behind on apache,
however, as I just found out, which I'm sure didn't help the situation.

Well, back to the autopsy.

Take care and be well.

Justin

Current thread:

Re: black hat .cn networks, (continued)
- - Re: black hat .cn networks Scott Francis (May 01)
- Re: black hat .cn networks Pat Myrto (May 01)
- Re: black hat .cn networks Michael C . Wu (May 01)
  - Re: black hat .cn networks John Fraizer (May 02)
    - Re: black hat .cn networks Shawn McMahon (May 02)
  - Re: black hat .cn networks Shawn McMahon (May 02)
- Re: black hat .cn networks Elias Halldor Agustsson (May 02)
  - Re: black hat .cn networks Henry R. Linneweh (May 02)
    - Re: black hat .cn networks Justin Hinderliter (May 07)
    - Re: black hat .cn networks Dan Hollis (May 07)
    - Re: black hat .cn networks Justin Hinderliter (May 07)
    - Re: black hat .cn networks Patrick Evans (May 08)
    - Re: black hat .cn networks Franklin Lian (May 08)
    - Re: black hat .cn networks John Fraizer (May 08)
    - Re: black hat .cn networks Bryan C. Andregg (May 08)
    - Re: black hat .cn networks David Charlap (May 08)
    - RE: black hat .cn networks Matt Levine (May 08)
    - Re: black hat .cn networks Shawn McMahon (May 08)
    - Re: black hat .cn networks Justin Hinderliter (May 08)
- Re: black hat .cn networks Justin Hinderliter (May 07)
- RE: black hat .cn networks Paul Lantinga (May 07)

(Thread continues...)