[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] What's this person up to?

Subject: [cobalt-security] What's this person up to?
From: DNSAdmin <dnsadmin@xxxxxxxxxxxxx>
Date: Wed, 19 Mar 2003 11:43:18 -0500
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hello All,

I make it a point to look at new scans when they occur. I've never seen anything to this port before:

Mar 18 17:05:32 brochsteins kernel: Packet log: input DENY eth0 PROTO=6 212.33.37.183:1315 208.21.174.23:135 L=48 S=0x00 I=614 F=0x4000 T=113 SYN (#42)

Port 135.

Has anyone seen this before? New Windows exploit, perhaps? From the IANA's complute TCP/UDP portlist port 135 is:

epmap 135 DCE endpoint resolution

Thanks; an enquiring mind wants to know.

TIA,
Glenn

Follow-Ups:
- Re: [cobalt-security] What's this person up to?
  - From: Jaana Jarve

Prev by Date: RE: [cobalt-security] RaQ4-All-Kernel update problem
Next by Date: Re: [cobalt-security] What's this person up to?
Previous by thread: RE: [cobalt-security] Apache Update 2.0.1
Next by thread: Re: [cobalt-security] What's this person up to?

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index