TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------
This seems to be a normal reaction by RealSecure to some port scanning
products. I have tested a number of different port scanners and some of
them are not identified but show up as SYNFloods with 0.0.0.0 source
addresses (Hoppa in particular).
Gary McIntyre
Network Consultant
LGS Group Inc.
[EMAIL PROTECTED]
This user's PGP Public Keys can be
obtained from certserver.pgp.com
----- Original Message -----
From: ""Ryan J. Standish" <[EMAIL PROTECTED]>@LGS"
<IMCEANOTES-+22Ryan+20J+2E+20Standish+22+20+3Crjs9+40atlas+2Ensec+2Enet+3E+4
[EMAIL PROTECTED]>
To: "[EMAIL PROTECTED]" <[EMAIL PROTECTED]>
Sent: Tuesday, March 07, 2000 10:26 PM
Subject: SYNFlood Source address 0.0.0.0
>
>
> TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message
to
> [EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any
> problems!
> --------------------------------------------------------------------------
--
>
> What does it mean when I get a SYNFlood with a source address of 0.0.0.0?
> It also gives me the spoofed source address. I have a few dozen of these
> in the logs.
>
> -R
>
>
>
>
>
>
