Yes, it's SQLServer, and I had to reload a Win 2k system two weeks back that got infected, probably through that port. It wasn't exposing anything else (no Outlook, no IIS). Fortunately it was a research machine, and the data I really need on it is static, so reloading wasn't such a horrible chore. I no longer use the default port, and I'm hoping for the best, because I have no clue how to prevent it happening again if the culprit(s) detects the new port.
So if you're running Linux I wouldn't worry all that much. ++ kevin On Mon, May 27, 2002 at 05:39:07PM -0400, Bruce Marshall wrote: > I've been getting a lot of hits on port 1433 lately. This is something new > in the last week or so. Anyone know of anything going on in the dark world > of hackers that makes port 1433 a good target? > > The ports list shows that port is for Microsoft-SQL-server.... > > -- > +----------------------------------------------------------------------------+ > + Bruce S. Marshall [EMAIL PROTECTED] Bellaire, MI 05/27/02 17:35 + > +----------------------------------------------------------------------------+ > "Farming looks easy when your plow is a pencil and you're a thousand miles > from a cornfield." - Dwight D. Eisenhower > > _______________________________________________ > Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users > Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL. -- Kevin O'Gorman (805) 650-6274 mailto:[EMAIL PROTECTED] Permanent e-mail forwarder: mailto:Kevin.O'[EMAIL PROTECTED] At school: mailto:[EMAIL PROTECTED] Web: http://www.cs.ucsb.edu/~kogorman/index.html Web: http://kosmanor.com/~kevin/index.html "Life is short; eat dessert first!" _______________________________________________ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
