Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Incidents mailing list archives

Re: More Korean probes
From: Ian Hall-Beyer <Ian.Hall-Beyer () central sun com>
Date: Tue, 20 Mar 2001 13:36:51 -0700
Yotam Rubin wrote:


Hello,

I have also been probed by Korean hosts. The attackers were probably looking
for an exploitable statd:
Mar 19 17:40:54 linux tcplog: sunrpc request from 211.34.28.130

        Regards, Yotam Rubin


Some of my personal systems have been hit by korean hosts, turning it
around on them seems to reveal stock redhat boxes that appear to have
been rooted.

--
------------------------------------------------------
Ian M. Hall-Beyer                 Member, USENIX, SAGE
Systems Administrator          Cybernetic Entomologist
Sun Educational Services           Product Engineering
Sun Microsystems, Inc.                  V:303-272-8107
500 Eldorado Blvd, MS BRM05-210         F:303-272-9057
Broomfield, CO 80021                  P:Skytel 1893403
------------------------------------------------------
 Opinions expressed in this message are my own and do
     not necessarily reflect those of my employer
------------------------------------------------------

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]