Snort mailing list archives
Re: Attack from .jp IPs
From: Jamie Riden <jamie.riden () gmail com>
Date: Tue, 7 Dec 2010 16:10:35 +0000
Weird. I'd love to know what site(s) you look after. BTW, isorokyu.yamamoto.jp doesn't resolve for me - how are you getting the rDNS? "Isoroku Yamamoto (Japanese: 山本 五十六 Yamamoto Isoroku?) (4 April 1884 – 18 April 1943) was Naval Marshal General and the commander-in-chief of the Combined Fleet during World War II ... Yamamoto held several important posts in the Imperial Japanese Navy, and undertook many of its changes and reorganizations, especially its development of naval aviation. He was the commander-in-chief during the decisive early years of the Pacific War and so was responsible for major battles such as Pearl Harbor and Midway" -- http://en.wikipedia.org/wiki/Isoroku_Yamamoto On 7 December 2010 15:18, L0rd Ch0de1m0rt <l0rdch0de1m0rt () gmail com> wrote:
Hello, almost exactly at 7:41 AM this morning multiple servers in my enterprise are under attack by DDoS with TCP Zeroes-window size destined to port 1941 and 1207, the hosts appear to resolve PTR as hideki.tojo.jp, isoroku.yamamoto.jp, tomoyuki.yamashita.jp, and more. Is anyone else seeing this? Thanks. -L0rd C. ------------------------------------------------------------------------------ What happens now with your Lotus Notes apps - do you make another costly upgrade, or settle for being marooned without product support? Time to move off Lotus Notes and onto the cloud with Force.com, apps are easier to build, use, and manage than apps on traditional platforms. Sign up for the Lotus Notes Migration Kit to learn more. http://p.sf.net/sfu/salesforce-d2d _______________________________________________ Snort-sigs mailing list Snort-sigs () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-sigs
-- Jamie Riden / jamie () honeynet org / jamie.riden () gmail com http://uk.linkedin.com/in/jamieriden ------------------------------------------------------------------------------ What happens now with your Lotus Notes apps - do you make another costly upgrade, or settle for being marooned without product support? Time to move off Lotus Notes and onto the cloud with Force.com, apps are easier to build, use, and manage than apps on traditional platforms. Sign up for the Lotus Notes Migration Kit to learn more. http://p.sf.net/sfu/salesforce-d2d _______________________________________________ Snort-sigs mailing list Snort-sigs () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-sigs
Current thread:
- Attack from .jp IPs L0rd Ch0de1m0rt (Dec 07)
- Re: [Emerging-Sigs] Attack from .jp IPs Jason Wallace (Dec 07)
- Re: [Emerging-Sigs] Attack from .jp IPs Sandro guly Zaccarini (Dec 07)
- Re: Attack from .jp IPs Matt Olney (Dec 07)
- Message not available
- Re: [Emerging-Sigs] Attack from .jp IPs Mike Cox (Dec 07)
- Re: [Emerging-Sigs] Attack from .jp IPs Steve McChortle (Dec 07)
- Message not available
- Re: [Emerging-Sigs] Attack from .jp IPs Jason Wallace (Dec 07)
- Re: Attack from .jp IPs Martin Roesch (Dec 07)
- Re: Attack from .jp IPs Giles Coochey (Dec 07)
- Re: Attack from .jp IPs Jamie Riden (Dec 07)
- Re: [Emerging-Sigs] Attack from .jp IPs Josh Little (Dec 07)
- Re: [Emerging-Sigs] Attack from .jp IPs Joel Esler (Dec 07)
- Re: [Emerging-Sigs] Attack from .jp IPs evilghost () packetmail net (Dec 07)
- Re: [Emerging-Sigs] Attack from .jp IPs Tom Le (Dec 07)
- Re: [Emerging-Sigs] Attack from .jp IPs Jamie Riden (Dec 08)