| From: | Andy Wanless |
| Date: | 19 Mar 2001 at 01:49:43 |
| Subject: | Re: IP addresses...and security |
Previously, you (mcp@aic.net.au) wrote:
>
(Yeah, another email client, hence another quoting style. Seems that
the only OS working on my PC atm is QNX ;)
>
> While online on the weekend I noticed a couple of messages in the
> Genesis log saying that a particular IP address had tried to access
> my IP address on port 21, and had been refused access.
Someone discovered your IP address and tried FTP on it. Get over it. It happens a lot. You should see the number of attempted connection I see on the servers at work, mainly FTP/telnet. You should be more worried if it wasn't refused access.
Most of the time, it's either script kiddies having a go at known vulnerabilties to get in (which you'd have fixed as soon as possible, right?), or someone just trying to work out what OS you're using before
deciding if you're worth hacking or not. 10-20 attempts in a minute or two kind of implies the "let's try everything we know about, see if we can get in", 1 attempt implies "oh, it's an Amiga. where's the fun in that?".
If it's happening regularly from the same place, whatever OS you're using, a quick traceroute and a nasty email to the ISP is as good as it gets.
------------------------ Yahoo! Groups Sponsor ---------------------~-~>
Make good on the promise you made at graduation to keep
in touch. Classmates.com has over 14 million registered
high school alumni--chances are you'll find your friends!
http://us.click.yahoo.com/l3joGB/DMUCAA/4ihDAA/d8AVlB/TM
---------------------------------------------------------------------_->
Quote carefully and read all ADMIN:README mails
Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/