Date: Sat, 15 Aug 1998 09:51:53 +0200 From: Johann Visagie <wjv@cityip.co.za> To: Scott <sevn@336.net>, Roger Marquis <marquis@roble.com> Cc: security@FreeBSD.ORG Subject: Re: Scans to ports 1090 and 1080 Message-ID: <19980815095153.B11111@cityip.co.za> In-Reply-To: <Pine.BSF.3.96.980815015425.16115C-100000@locnar.336.net>; from Scott on Sat, Aug 15, 1998 at 01:55:01AM -0400 References: <Pine.SUN.3.96.980814214044.12358B-100000@roble.com> <Pine.BSF.3.96.980815015425.16115C-100000@locnar.336.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 15 Aug 1998 at 01:55 SAT, Scott wrote: > > This would be script kiddies looking for an open wingate to exploit. The mscan README explicitly instructs script kiddies to look for open wingates first, and then goes ahead to show them exactly how to do it. It seems that many script kiddies take that README to be their bible. For instance, it tells them that many "3rd world countries" are rife with phf-exploitable web servers. So, soon after mscan came out, we here in South Africa noticed a hundredfold or more increase in scans for that particular vulnerability. Sad. (Sorry, going off-topic.) -- V Johann Visagie | Email: wjv@CityIP.co.za | Tel: +27 21 419-7878 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980815095153.B11111>