nanog mailing list archives
Re: Reasons why BIND isn't being upgraded
From: Joshua Goodall <joshua () roughtrade net>
Date: Fri, 2 Feb 2001 14:40:28 +0100 (CET)
On Fri, 2 Feb 2001, Rich Sena wrote:
On Feb 1, 2001 Wayne Bouchard reported:53, 111, and 137 are the most common scans I trap at my firewall. Interesting bit with the scans to port 53 lately is that they're hitting the port 2 and 3 times, not just the usual once to identify and then move on.I betcha a guiness and a smile at N21 that those are Global Load Balancers probing for distance metrics to your DNS servers on 53 and not malicious scans...
I can see it now. Someone at Akamai cackling as they instruct all boxes to nmap every NS entry in the .com zone... :) J
Current thread:
- Re: Not a good day now stuff from here is on BBC Henry R. Linneweh (Feb 24)
- Re: Not a good day now stuff from here is on BBC Charles Sprickman (Feb 24)
- Reasons why BIND isn't being upgraded Jason Lewis (Feb 24)
- Re: Reasons why BIND isn't being upgraded Wayne Bouchard (Feb 24)
- Bind 8.2 Remote-shell Exploit is actually trojan to attack NAI John Fraizer (Feb 24)
- Reasons why BIND isn't being upgraded Jason Lewis (Feb 24)
- <Possible follow-ups>
- Re: Not a good day now stuff from here is on BBC BrandonButterworth (Feb 24)
- Re: Not a good day now stuff from here is on BBC Charles Sprickman (Feb 24)