Re: Annoy Those Sub7 Scanners.

[Talisker <Talisker () NETWORKINTRUSION CO UK>]

First post was rejected  :o(
Tamer version

As someone once told me, they are merely flies bouncing of a fly screen.
They aren't going to get a connection, in most cases I suspect they are
young kids who have installed a (free)  personal firewall and are wondering
what all these 27274 connection attempts are, a little research reveals an
easy to use tool and hey-presto you are being scanned.  SubSeven Servers
don't appear to be widespread so they will give up after a few days.

Retalliation will merely generate a challenge, and as it's school holidays
at the moment, they probably have a lot more free time on their hands.

Cautionary Note.  Make sure that you are not vulnerable, scan your own
addresses from time to time, keep your virus signatures bang up to date, and
concentrate on the more elaborate/unknown connection attempts.

By all means retain yo[just got a sub7 scan :o)]ur logs and if a particular
source becomes a nuisance report them.


just my 2 cents

Andy

www.networkintrusion.co.uk Listing all known commercial IDS
                    '''
                 (0 0)
  ----oOO----(_)----------
  | The geek shall        |
  |  Inherit the earth     |
  -----------------oOO----
               |__|__|
                  || ||
              ooO Ooo


The opinions contained within this transmission are entirely my own, and do
not necessarily reflect those of my employer.