After being open for 24 hours already, I've found someone who apparently thinks it's his job to test server security.
24.49.69.12 made over 100 login requests during three 5minute sessions ... then ran noop, opts utf8 on, and syst commands. This is not a newbie! After successfully gaining access with public login and pass, he continued to hammer the server with anonymous logins, eventually setting the timer to retry before the first connection was refused. There is no doubt in my mind this was a malicious attack and I strongly suggest anyone with a server deny all access from this IP. 24.49.69.12 EXPLAIN YOURSELF -jas BWT - what more can I offer, it's an open server http://personal.sdf.bellsouth.net/sdf/b/o/bondibox/wishes.html _______________________________________________ etree.org etree mailing list <[EMAIL PROTECTED]> http://mail.etree.org/mailman/listinfo/etree Need help? Ask <[EMAIL PROTECTED]>
