IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 1 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Security Forum / Don't be too concerned about the socket attempts.
Post #127,523
by static
11/25/03 5:43:07 AM
Reply
New Don't be too concerned about the socket attempts.
DSL lines, especially in an ISP's non-static range, are prime targets for script kiddies doing port-scans, looking for machines to compromise. I see them on my DSL line, too.

If you can configure the router to ignore the connect attempt instead of rejecting it, the probing will be slowed down because they won't get any response.

Wade.

Is it enough to love
Is it enough to breathe
Somebody rip my heart out
And leave me here to bleed
 
Is it enough to die
Somebody save my life
I'd rather be Anything but Ordinary
Please

-- "Anything but Ordinary" by Avril Lavigne.
Post #127,568
by orion
Picture of orion
11/25/03 12:03:40 PM
Reply
New New router, new rules
it has an "Ignore Anonymous IP addresses" turned on. None of these IPs had hostnames, so I assume that makes them anonymous?

I still have the virtual server turned off, my normad.com domain goes to the router, which means it doesn't go to a server. All ports will now be seen as being switched off. SBC kind of blocked server protocols anyway so my web page at that address didn't load all the way, you'd get the main HTML, but they blocked the images and other things. I have a AMD Thunderbird 1.1 Ghz 512M system with a 40G drive running W2K Server over there. Had my father use it while I rebuild his system. A shame that SBC blocks server access on their DSL dynamic IP lines. They could be trying to hack into the normad.com web server, not that I have anything important there, just some PHP and ASP scripts I wrote.


"Lady I only speak two languages, English and Bad English!" - Corbin Dallas "The Fifth Element"
     Intruder detection, is it a worm banging on our DSL Router? - (orion) - (4) - Nov. 24, 2003, 04:32:04 PM EST
         Don't be too concerned about the socket attempts. - (static) - (1) - Nov. 25, 2003, 05:43:07 AM EST
             New router, new rules - (orion) - Nov. 25, 2003, 12:03:40 PM EST
         Layered defence is your friend. - (qstephens) - (1) - Jan. 13, 2004, 03:24:55 PM EST
             Thanks - (orion) - Jan. 13, 2004, 06:59:41 PM EST

Ho ho, then you ain't gettin' no Coke!
62 ms