Security Incidents mailing list archives
Re: Korea (was RE: ?)
From: root () RGFSPARC CR USGS GOV (Robert G. Ferrell)
Date: Thu, 27 Jan 2000 11:23:34 -0600
I have LOTS of portscanning (mostly to port 111) from a number of hosts in Korea.
As we've observed before, Korea, especially educational institutions in Korea, is virtually wide open to crackers.
I portscanned them back and find out that at least a couple of them had port 2222 open. A telnet to that port droped me in a rootshell without being asked for any password....
Well, while you're there, why don't you poke around and see if you can find out who ownz that box? Could be useful to know that... RGF Robert G. Ferrell Internet Technologist National Business Center, US DoI Robert_G_Ferrell () nbc gov
Current thread:
- Re: Korea (was RE: ?) Robert G. Ferrell (Jan 27)
- Re: Korea (was RE: ?) R a v e N (Jan 27)
- <Possible follow-ups>
- Re: Korea (was RE: ?) Brooke, O'Neil (Jan 27)
- Re: Korea (was RE: ?) Kim Robert Blix (Jan 28)
- probe backs? was Re: [INCIDENTS] Korea Jose Nazario (Jan 28)
- Re: Korea (was RE: ?) Mark Seiden (Jan 28)
- Re: Korea (was RE: ?) Rob McCauley (Jan 29)
- Re: Korea (was RE: ?) JJ Gray (Jan 28)
- Re: Korea (was RE: ?) David Brumley (Jan 28)
- Re: Korea (was RE: ?) Kim Robert Blix (Jan 28)
- Re: Korea (was RE: ?) Brooke, O'Neil (Jan 28)
- R: Re: Korea (was RE: ?) Raistlin (Jan 30)
(Thread continues...)