From owner-freebsd-questions Sun Jun 24 19:43:43 2001 Delivered-To: freebsd-questions@freebsd.org Received: from kineo.bowdoin.edu (kineo.bowdoin.edu [139.140.14.35]) by hub.freebsd.org (Postfix) with ESMTP id BD13737B401 for ; Sun, 24 Jun 2001 19:43:40 -0700 (PDT) (envelope-from mcowger@bowdoin.edu) Received: from bowdoin.edu ([139.140.133.82]) by kineo.bowdoin.edu (Netscape Messaging Server 4.15) with ESMTP id GFGSWN00.RZK; Sun, 24 Jun 2001 22:43:35 -0400 Message-ID: <3B36A557.3080506@bowdoin.edu> Date: Sun, 24 Jun 2001 22:43:35 -0400 From: "Matthew K. Cowger" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9.1) Gecko/20010607 Netscape6/6.1b1 X-Accept-Language: en-us MIME-Version: 1.0 To: cjclark@alum.mit.edu Cc: tyler spivey , freebsd-questions@FreeBSD.ORG Subject: Re: attacks References: <200106242210.f5OMARQ34434@home.com> <20010624193729.I11961@blossom.cjclark.org> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Along those lines, On my network (a 4Knode + network, with our own provider independent Class B), I see well over 1000 scans/attack attempts per *day*. It is to be expected. It why you are running one of the most secure OS's available, right? Matt Check out the package snort/snortsnarf if you are interested in monitoring these kinds of things. Crist J. Clark wrote: >On Sun, Jun 24, 2001 at 06:10:27PM -0400, tyler spivey wrote: > >>i just got another rpc.statd attack. what is up wtih that? >> > >Uhh... You're connected to the Internet? You _will_ get >scanned/attacked. > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message