[NTLUG:Discuss] Anyone runs ftp, mail server, httpd and get catched from @home
lee@brave.com
lee at brave.com
Wed Jan 10 17:03:48 CST 2001
On Wed, 10 Jan 2001, MadHat wrote:
>
> As of today they hit my box at least every 2 days looking for nntp
> servers. I would not put my money on them _NOT_ looking for other daemons
> in the future. While they may not do it on a regular basis, I have been
> hit by their authorized-scan1.security.home.net machine. I have been hit
> looking for daemons other than nntp, but not on a regular basis.
>
> I am not saying if you break the rules, you will be caught, but don't be
> surprised if you do.
>
oops, yup, i forgot they do scan for nntp servers. they were very close
to being hit with the usenet death penalty, that's prolly what brought
that on. there's an easy solution to that, tho: in /etc/hosts.deny put
ALL: authorized-scan1.security.home.net
and you won't be on their radar untill they change the "snoop" server
hostname...
-- lee
More information about the Discuss
mailing list