In message <[EMAIL PROTECTED]>, brian beuning writes:
>
>We run a Linux box with diald and masquerading as our home gateway system.
>At some point someone got ahold of our ISP password and was using it. They
>
>either got the password by crasking into the ISP or our Linux box. To be
>safe
>we installed a firewall on our Linux box. On average it rejects 2 to 10
>packets
>per day. Most of them are attempted connects to port 31337 (IRC).
>
>Below is a copy of the firewall script we use.
>
>Brian Beuning
Brian,
FYI, the probes to port 31337 (udp) are actually probes looking for windows
machines running Back Orafice.
Marc
--
Marc D. Behr [EMAIL PROTECTED]
PGP Key ID: 0x1F1920BC
Fingerprint20 = 7DC2 3B63 EEB4 9328 0D44 7AC6 7E73 BCBF 1F19 20BC
"If you are beginning to doubt what I am saying, you are
probably hallucinating."
-- The Firesign Theatre, _Everything you know is Wrong_
-
To unsubscribe from this list: send the line "unsubscribe linux-ppp" in
the body of a message to [EMAIL PROTECTED]
