Date: Mon, 23 Apr 2001 11:18:24 +1000 From: Tim Kent <saboteur@saboteur.cx> To: freebsd-security@freebsd.org Subject: Connection attempts Message-ID: <20010423111824.A11827@gumbynet.org>
next in thread | raw e-mail | index | archive | help
Hey all, Over the last few days I have noticed many people trying to connect to port 111 (portmapper). I don't run portmapper but i have log in vain enabled. Are these people going crazy with rpcinfo or what? I have attached the related output from dmesg but have changed my IP: Connection attempt to TCP phoenix:111 from 213.236.151.240:4912 Connection attempt to TCP phoenix:111 from 203.250.123.237:3278 Connection attempt to TCP phoenix:111 from 203.197.150.162:63525 Connection attempt to TCP phoenix:111 from 203.197.150.162:63525 Connection attempt to TCP phoenix:111 from 203.197.150.162:64156 Connection attempt to TCP phoenix:111 from 24.182.49.154:4078 Connection attempt to TCP phoenix:111 from 210.207.57.166:4719 Connection attempt to TCP phoenix:111 from 208.53.106.140:3845 Connection attempt to TCP phoenix:111 from 202.104.175.141:3925 Connection attempt to TCP phoenix:111 from 210.248.184.194:1366 Connection attempt to TCP phoenix:111 from 213.236.151.240:4946 Connection attempt to TCP phoenix:111 from 210.188.186.143:4116 Connection attempt to TCP phoenix:111 from 212.240.49.169:2825 Connection attempt to TCP phoenix:111 from 24.94.196.93:2864 Connection attempt to TCP phoenix:111 from 210.95.3.130:4938 Connection attempt to TCP phoenix:21 from 213.93.138.243:3110 Connection attempt to TCP phoenix:111 from 203.148.180.195:4677 Connection attempt to TCP phoenix:111 from 203.199.203.10:2481 Connection attempt to TCP phoenix:111 from 203.198.140.219:1647 Connection attempt to TCP phoenix:111 from 203.200.84.140:1328 Connection attempt to TCP phoenix:111 from 128.173.188.242:3436 Connection attempt to TCP phoenix:111 from 203.195.159.12:4217 Connection attempt to TCP phoenix:111 from 24.200.33.37:2556 Connection attempt to TCP phoenix:111 from 211.118.80.250:1387 Connection attempt to TCP phoenix:111 from 61.32.250.11:4250 Connection attempt to TCP phoenix:111 from 204.58.142.1:111 Connection attempt to TCP phoenix:111 from 24.200.33.37:1528 Connection attempt to TCP phoenix:111 from 211.252.179.2:4668 Connection attempt to TCP phoenix:111 from 210.103.56.125:4590 Connection attempt to TCP phoenix:111 from 211.251.201.131:4123 Connection attempt to TCP phoenix:111 from 24.181.206.84:3610 Connection attempt to TCP phoenix:111 from 210.204.116.2:3328 Connection attempt to TCP phoenix:111 from 202.31.150.178:3794 Connection attempt to TCP phoenix:6635 from 212.172.221.66:36819 Connection attempt to TCP phoenix:111 from 202.102.219.129:4508 Connection attempt to TCP phoenix:111 from 211.240.0.3:1752 Connection attempt to TCP phoenix:111 from 62.180.124.115:3174 Connection attempt to TCP phoenix:111 from 211.46.114.157:3358 Connection attempt to TCP phoenix:111 from 203.194.161.199:1877 Connection attempt to TCP phoenix:111 from 203.199.203.10:4882 Connection attempt to TCP phoenix:111 from 211.205.178.64:2530 Connection attempt to TCP phoenix:111 from 202.104.155.36:1550 Connection attempt to TCP phoenix:111 from 211.243.74.141:4054 Connection attempt to TCP phoenix:1080 from 203.101.17.227:47996 Connection attempt to TCP phoenix:111 from 202.66.38.217:3547 Connection attempt to TCP phoenix:111 from 210.219.79.67:2337 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010423111824.A11827>