Date: Fri, 28 Dec 2001 16:09:40 -0500 From: "Mit Rowe" <mitayai@dreamlabs.com> To: "Mike Silbersack" <silby@silby.com> Cc: "security@FreeBSD. ORG" <security@freebsd.org> Subject: RE: denial of service attack Message-ID: <DBEMKGPNFGOGJHLMDNDJIEFPFEAA.mitayai@dreamlabs.com> In-Reply-To: <Pine.BSF.4.30.0112281602070.92969-100000@niwun.pair.com>
next in thread | previous in thread | raw e-mail | index | archive | help
ancient? ;-) i'm running the latest stable. > -----Original Message----- > From: Mike Silbersack [mailto:silby@silby.com] > Sent: December 28, 2001 16:08 > To: Mit Rowe > Cc: security@FreeBSD. ORG > Subject: Re: denial of service attack > > > > On Fri, 28 Dec 2001, Mit Rowe wrote: > > > If i read this correctly, i'm under a denial of service attack. > > > > A few questions... > > > > 1) am i correct > > 2) if so, how can i trace where it is coming from? > > 3) how can i compensate? > > > > Dec 28 15:39:50 <kern.crit> tenchi /kernel: Limiting icmp > unreach response > > from 323 to 200 packets per second > > You're just being nmap'd, nothing serious. If you want to track the scan, > install an IDS like nessus or something. > > Before you do that, though, I suggest that you upgrade to 4.4-stable; > the vulnerabilities in whatever ancient version of freebsd you're running > shoud worry you more than the portscan. > > Mike "Silby" Silbersack > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?DBEMKGPNFGOGJHLMDNDJIEFPFEAA.mitayai>