Snort mailing list archives
Whad'ya do?
From: Dave.Hampel () cominco com
Date: Tue, 8 May 2001 14:20:58 -0700
Hi all: I was wondering..... I monitor my firewall logs and I get messages from Snort saying someone is scanning my network using FTP or SunRPC source port (etc.) Great. Works as advertised. BUT what do you DO about it. Has anyone taken measures to actually stop or report these a*holes that are wasting bandwidth? This might have been asked (and even answered) before but I would love to see what y'all do to these perps. It just seems that it is happening all too frequently lately. There must have been a recent release that any bone head can get his hands on to let him/her - I'm not sexist - scan the network at large. Dave
Current thread:
- Whad'ya do? Dave . Hampel (May 08)
- Re: Whad'ya do? Ryan Russell (May 08)
- RE: Whad'ya do? Aaron McKinnon (May 08)
- Re: Whad'ya do? Ryan Russell (May 08)