Snort mailing list archives
Re: port 22 scan
From: Muhammad Faisal Rauf Danka <mfrd () attitudex com>
Date: Tue, 4 Jun 2002 11:48:07 -0700 (PDT)
Most probably you are being scanned for vulnerable SSH versions, and as far as source port 22 is concerned, yes it can be accomplished by nmap and hping. man nmap and lookup for the option -g ;) Regards, --------- Muhammad Faisal Rauf Danka Chief Technology Officer Gem Internet Services (Pvt) Ltd. web: www.gem.net.pk Vice President Pakistan Computer Emergency Responce Team (PakCERT) web: www.pakcert.org Chief Security Analyst Applied Technology Research Center (ATRC) web: www.atrc.net.pk --- Gongya Yu <yu () dhcp-243-81 gongya net> wrote: <<SNIP>> _____________________________________________________________ --------------------------- [ATTITUDEX.COM] http://www.attitudex.com/ --------------------------- _____________________________________________________________ Promote your group and strengthen ties to your members with email () yourgroup org by Everyone.net http://www.everyone.net/?btn=tag _______________________________________________________________ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas -- http://devcon.sprintpcs.com/adp/index.cfm _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- port 22 scan Gongya Yu (Jun 04)
- <Possible follow-ups>
- RE: port 22 scan Wirth, Jeff (Jun 04)
- Re: port 22 scan Muhammad Faisal Rauf Danka (Jun 04)