Security Incidents mailing list archives
PC Anywhere client seems to probe class C of connected networks
From: chaser () SHORE NET (Troy Ablan)
Date: Tue, 25 Jan 2000 17:06:59 -0500
A new rash of abuse desk inquiries have to do with PC Anywhere probes on
port 5632 and ssh port 22 from clients within the same class C as the
computers reporting the probing. This happens on our dynamic dialup pools
as well as netblocks we allocate subnets and dialup statics.
Does anyone have any experience with this software? Is is on by default?
Can the probing be turned off altogether or on a per-interface basis?
Any abuse desks with many new reports of this over the last few weeks?
--
Troy Ablan chaser () shore net M-F 11p-7a
Shore.Net Systems Administrator
support () shore net 781-593-3110
Current thread:
- Re: I was scaned, (continued)
- Re: I was scaned Robert Graham (Jan 22)
- Re: I was scaned Jose Nazario (Jan 23)
- Re: I was scaned Gene Harris (Jan 23)
- Re: I was scaned Keith Owens (Jan 24)
- Got scaned again C. (Jan 24)
- ? C. (Jan 24)
- Re: ? Mike Tancsa (Jan 24)
- Re: ? Brock Sides (Jan 24)
- Re: unapproved AXFR Russell Fulton (Jan 24)
- No Idea CN (Jan 25)
- PC Anywhere client seems to probe class C of connected networks Troy Ablan (Jan 25)
- Re: PC Anywhere client seems to probe class C of connected networks Steve Ellermann (Jan 26)
- Re: PC Anywhere client seems to probe class C of connected networks Paul L Schmehl (Jan 26)
- Re: PC Anywhere client seems to probe class C of connected networks Jose Nazario (Jan 26)
- Anti-Death Penalty Robert Graham (Jan 26)
- Re: Anti-Death Penalty Derek Moeller (Jan 28)
- Re: Anti-Death Penalty Robert Graham (Jan 28)
- BOGUS.IvCD File Jonathan A. Zdziarski (Jan 26)
- Re: BOGUS.IvCD File Vanja Hrustic (Jan 27)
- Re: PC Anywhere client seems to probe class C of connected networks Robert Graham (Jan 26)
- Probes to tcp 2766 ('System V Listner') Russell Fulton (Jan 26)