Honeypots mailing list archives
Re: New whitepaper released & a question to the community
From: "Anton A. Chuvakin" <anton () chuvakin org>
Date: Tue, 4 Mar 2003 11:41:51 -0500 (EST)
Michael and all,
That's my current experience in a nutshell. I have some reason to believe that it generalizes rather broadly.
Yep, that is what we see. Bill, you forgot the old RPC hack (RH 6.x-7.0). We see some number of those babies as well. WU is getting hit within days/weeks, OpenSSL even more often. RPC is getting rare. I saw one PHP hit and (I think) one apache-chunked. All pretty public. The rest fall within the weird category, such as the famous 255.255.255.255:31337 baby. Best, -- Anton A. Chuvakin, Ph.D., GCIA http://www.chuvakin.org http://www.info-secure.org
Current thread:
- New whitepaper released & a question to the community Michael Anuzis (Mar 02)
- Re: New whitepaper released & a question to the community Bill McCarty (Mar 02)
- Re: New whitepaper released & a question to the community Anton A. Chuvakin (Mar 04)
- Re: New whitepaper released & a question to the community Bill McCarty (Mar 02)