[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-developers] Outbound Port Scan

Subject: RE: [cobalt-developers] Outbound Port Scan
From: "Mike Rice" <mike@xxxxxxxxxxxxx>
Date: Fri Jul 18 15:55:00 2003
List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>

It could be scan detection.  Do you have a program called... crap, I
can't remember the name.  It checks to see if any files have been
changed and will tell you if you have been rooted.
Mike

---- Original Message ----
From: info@xxxxxxxxxxxxx
To: cobalt-developers@xxxxxxxxxxxxxxx
Subject: RE: [cobalt-developers] Outbound Port Scan
Date: Fri, 18 Jul 2003 19:24:15 +0100

>cobalt-developers-admin@xxxxxxxxxxxxxxx wrote:
>> You may have been hacked.  Search the hard drive for a file called
>> Masscanner I think.  You have probably been rooted, meaning a
>hacker
>
>I'm a tad worried now :)
>
>I've seen a few outbound scans, mainly to my CoLo's nameservers
>(housekeeping?) but also to a seemingly unrelated verizon machine:
>
>  pool-64-223-181-251.man.east.verizon.net [64.223.181.251]
>
>And once to my own IP.  Could this be the fact I have Scan Detection
>enabled
>and it's backtracing the IP to block it?  It's entirely possible I've
>scanned the server to see what's happening...
>
>Regards,
>
>
>
>D
>
>
>_______________________________________________
>cobalt-developers mailing list
>cobalt-developers@xxxxxxxxxxxxxxx
>http://list.cobalt.com/mailman/listinfo/cobalt-developers

Prev by Date: Re: [cobalt-developers] Outbound Port Scan
Next by Date: Re: [cobalt-developers] Outbound Port Scan
Previous by thread: Re: [cobalt-developers] Outbound Port Scan
Next by thread: [cobalt-developers] Java class from PHP on RaQ4

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index