Security Incidents mailing list archives

BIND probes on the rise...

From: Sean Brown <srbrown () APPGEO COM>
Date: Tue, 30 Jan 2001 10:02:21 -0500

Well, the DNS probes are starting.  Guess that didn't take long.  Better
check you version before you get burned.

Jan 30 09:24:54 zion kernel: Packet log: bad-if REJECT eth0 PROTO=6
208.44.147.11:1350 x.y.z.100:53 L=60 S=0x00 I=48017 F=0x4000 T=49 SYN
(#40)
Jan 30 09:24:54 zion kernel: Packet log: bad-if REJECT eth0 PROTO=6
208.44.147.11:1351 x.y.z.101:53 L=60 S=0x00 I=48018 F=0x4000 T=49 SYN
(#40)
Jan 30 09:24:54 zion kernel: Packet log: bad-if REJECT eth0 PROTO=6
208.44.147.11:1352 x.y.z.102:53 L=60 S=0x00 I=48019 F=0x4000 T=49 SYN
(#40)
Jan 30 09:24:54 zion kernel: Packet log: bad-if REJECT eth0 PROTO=6
208.44.147.11:1353 x.y.z.103:53 L=60 S=0x00 I=48020 F=0x4000 T=49 SYN
(#40)
Jan 30 09:24:54 zion kernel: Packet log: bad-if REJECT eth0 PROTO=6
208.44.147.11:1354 x.y.z.104:53 L=60 S=0x00 I=48021 F=0x4000 T=49 SYN
(#40)
Jan 30 09:24:54 zion kernel: Packet log: bad-if REJECT eth0 PROTO=6
208.44.147.11:1356 x.y.z.106:53 L=60 S=0x00 I=48023 F=0x4000 T=49 SYN
(#40)
Jan 30 09:24:55 zion kernel: Packet log: bad-if REJECT eth0 PROTO=6
208.44.147.11:1365 x.y.z.115:53 L=60 S=0x00 I=48032 F=0x4000 T=49 SYN
(#40)
Jan 30 09:24:55 zion kernel: Packet log: bad-if REJECT eth0 PROTO=6
208.44.147.11:1375 x.y.z.125:53 L=60 S=0x00 I=48042 F=0x4000 T=49 SYN
(#40)

--
~~~~~~~~~~~~~~~
Sean R. Brown - srbrown () appgeo com
System Administrator   Applied Geographics, Inc.   Boston, MA

Current thread:

BIND probes on the rise... Sean Brown (Jan 30)