Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Incidents mailing list archives

Re: Scans from proxyprotector.com
From: Charles Blackburn <charlesb () summerfield-technology co uk>
Date: Sat, 17 May 2003 19:35:32 +0100
i

I too am getting at least 70 scans a day from this person, all socks and proxy port scan attempts. I will probably put 
a honey pot onto a port just to see what his next attempt will be.

regards
charles

On Sat, 17 May 2003 10:34:29 -0500
"Anthony Papaleo" <papaleo () ameritech net> wrote:


This guy has scanned my system a dozen or so times in the last two
days.

He can't be legitimate: If he is supposedly a security professional,
he would not perform scans of this type uninvited.
My BlackIce PF calls this suspicious activity, "...TCP port probes
directed at ports 3128, 8000, and 8080, which may indicate that an
attacker is searching the system for a proxy server."


----------------------------------------------------------------------------
*** Wireless LAN Policies for Security & Management - NEW White Paper ***
Just like wired networks, wireless LANs require network security policies 
that are enforced to protect WLANs from known vulnerabilities and threats. 
Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

To get your FREE white paper visit us at:    
http://www.securityfocus.com/AirDefense-incidents
----------------------------------------------------------------------------

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]