On 18 Mar 99, at 10:34, Joshua Chamas wrote:
> I'm new to the firewall crowd, and don't know the proper response
> when what seems to be wannabe hackers doing a port scan of your
> subnet. In this case it was someone checking port 12345 which seems
> to be associated with the win32 trojan/virus NetBus.
The "kid" is hoping to stumble across a machine on which some more-
skilled intruder has installed NetBus in its default configuration,
without it being detected and removed by an admin. He *could* get
lucky, but I'd rather he lost his ISP account -- if such scans cost him
his account often enough, he may decide not to do them any more.
David G
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
