Educause Security Discussion
mailing list archives
Re: Connectivity problems with the US Army
From: "Brock, Anthony - NET" <Anthony.Brock () OREGONSTATE EDU>
Date: Fri, 19 Jan 2007 09:18:23 -0800
Maybe they meant 29 IPs were probing. We saw around 35 of
your IPs either
scanning port 2967 or actively attempting to exploit the Symantec
vulnerability against systems here.
Very possible. However, this still seems a bit extreme for implementing
a "permanent block" of this scale. Also, there should be some method for
notifying the affected site and correcting the issue.