[H-GEN] Security issues....
Michael Anthon
anthonm at tams.com.au
Sun Oct 4 20:34:24 EDT 1998
Looks like someone was "rattling my doorknobs" over the weekend. Good
thing I put a little effort in lately to securing things a bit better.
Given that I am still not 100% sure that everything is as good as it can
be (actually, I'm sure it's NOT... I think I need to update a couple of
packages still) I thought that I would post a bit of my log in the hope
that the gurus might be to give me some advice.
The other thing is... should I do anything about this? For example. a
quick mail message to abuse at psi.net or something.
Oct 4 03:24:36 belial tcplogd: imap (143) connection attempt from
root at ip34.pittsburgh2.pa.pub-ip.psi.net
Oct 4 03:24:39 belial tcplogd: pop-3 (110) connection attempt from
root at ip34.pittsburgh2.pa.pub-ip.psi.net
Oct 4 03:24:39 belial tcplogd: domain (53) connection attempt from
root at ip34.pittsburgh2.pa.pub-ip.psi.net
Oct 4 03:24:40 belial tcplogd: telnet (23) connection attempt from
root at ip34.pittsburgh2.pa.pub-ip.psi.net
Oct 4 03:24:40 belial tcplogd: finger (79) connection attempt from
@ip34.pittsburgh2.pa.pub-ip.psi.net
Oct 4 03:24:41 belial tcplogd: pop-3 (110) connection attempt from
root at ip34.pittsburgh2.pa.pub-ip.psi.net
Oct 4 03:24:43 belial tcplogd: telnet (23) connection attempt from
root at ip34.pittsburgh2.pa.pub-ip.psi.net
Oct 4 03:24:44 belial tcplogd: port 6000 (6000) connection attempt from
@ip34.pittsburgh2.pa.pub-ip.psi.net
Oct 4 03:24:46 belial tcplogd: pop-3 (110) connection attempt from
root at ip34.pittsburgh2.pa.pub-ip.psi.net
Oct 4 03:24:48 belial portmap[29596]: connect from 38.12.74.34 to
dump(): request from unauthorized host
Oct 4 03:24:56 belial tcplogd: sunrpc (111) connection attempt from
root at ip34.pittsburgh2.pa.pub-ip.psi.net
Regards
Michael Anthon
TAMS Systems
More information about the General
mailing list