On Tuesday 29 June 2004 06:16 pm, Brad Klinghagen wrote: [...] > Is it right to assume that this traffic is a hacker using automated > software trying to probe for weaknesses in my firewall or computer > setup? Or is it something else completely, something much less sinister? > Could this be some ad software, or something like it? If this isn't > someone trying to get in, how can you tell in your log files. I've got a > number of various entries of unwanted IP attempts to access my network; > some I believe is just spurious traffic, but others look like concerted > effort to get at my computers.
Likely just your ISP checking for their customers running unwanted web servers. ISP's regularly use the 10./8 block for their LAN mixed with accessability to the customers (sometimes used for dhcp/dns servers as well). -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 ------------------------------------------------------- This SF.Net email sponsored by Black Hat Briefings & Training. Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
