[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-security] Is this coincidence or what - FTP Scans
- Subject: RE: [cobalt-security] Is this coincidence or what - FTP Scans
- From: "Simon Wilson" <simon@xxxxxxxxxxxxx>
- Date: Wed, 17 Oct 2001 10:21:31 +0100
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Dear all
I also get a lot of scans and most ftp connections from dip.t-dialin.net and
wanadoo. If this is widespread, can we not collectively do something about
it? Both dip.t-dialin.net and wanadoo ignore (or at least don't acknowledge)
reports of this, even if you complain that they are repeated attempts (I
don't bother with reporting unless the offender repeatedly does it). Just a
thought, I'm not sure what we could do, but I for one am sick of seeing the
same IP address time and time again.
dip.t-dialin.net and wanadoo don't take their responsibilities as ISP
seriously enough, or they are just crap. Either way they piss me off.
Rant over
Simon
-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Gerald Waugh
Sent: 15 October 2001 05:52
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: Re: [cobalt-security] Is this coincidence or what - FTP Scans
> I get hit from wanadoo as well. When the logs say FTP session opened and
> then closed right after it, are they making a connection in? I have
> annonymous FTP turn off...
>
No, they just connect then disconnect without attempting to log in.
I get them, dip.t-dialin.net and alot of mindspring all the time also.
Gerald
_______________________________________________
cobalt-security mailing list
cobalt-security@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-security