Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Security Incidents: Re: big increase in ftp scanning

Re: big increase in ftp scanning

From: Keith Owens <kaos_at_OCS.COM.AU>
Date: Wed, 8 Nov 2000 12:26:29 +1100

On Tue, 7 Nov 2000 16:53:34 -0500,
Tuc <ttsg_at_TTSG.COM> wrote:
>> On Tue, Oct 31, 2000 at 11:29:26PM -0500, Mike A. Harris wrote:
>> > I had a machine compromised from a t-dialin machine in germany
>> > about a vmonth ago. I got zero response from them.
>>
> I've sent about 5 different machines we've gotten probed by
>in their space in the last 6 months all with no replies.
>
> We actually considered just NULL0ing the entire space they own.

<aol>Me too</aol>. I have seen repeated DNS over TCP, ftp and other
scans from dip.t-dialin.net addresses. Complaints to abuse_at_t-ipnet.de
get zero response. In the end I just blocked 212.185.223.0/24.
Received on Nov 09 2000

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos