DSC Siltec wrote: > [cut] > > One scan attack attacked my proxy server's proxy port, from 1031,1032, > 1033,1034, 1035... and expired about 8 minutes later. > [cut] > > I also have a windows system -- and, sometimes using the same network > connection [manual plug-over] a macintosh, and it is possible that the > attacks were coming through one of those. But the Windows system has a > good firewall "ZoneAlarm" that I can use and understand [I don't yet > understand the Linux one] and McAfee antivirus with autoupdate. > I'm going to make a wild guess here, but an educated one:
On your Windows machine: Control Panel|Internet Properties|Connections|Lan Settings... Does it have "Automatically detect settings" checked on? I've always suspected that must do a port scan on those ports. Try turning that puppy off. (Any reason to think that ZoneAlarm would block those ports outgoing? I would not think that it would by default). (Also, I don't know your network setup, but it seems odd to have firewalling on each machine: typically that's just at the point of Internet access). Ignore the people that say that Debian is just too hard for you, by the way. You've obviously made a lot of progress. :-) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
