not a security expert but it can be a random port scan or they are scanning a set of ports used in known vulnerabilities or backdoors.
ciao! On Oct 21, 2011 9:42 AM, "Danny Ching" <[email protected]> wrote: > [LAN access from remote] from 46.105.180.237:49422 to 10.0.0.3:80 Friday, > Oct 21,2011 09:38:32 > [LAN access from remote] from 46.105.180.237:33853 to 10.0.0.3:80 Friday, > Oct 21,2011 09:38:21 > [LAN access from remote] from 46.105.180.237:20773 to 10.0.0.3:80 Friday, > Oct 21,2011 09:38:11 > [LAN access from remote] from 46.105.180.237:62627 to 10.0.0.3:80 Friday, > Oct 21,2011 09:38:01 > [LAN access from remote] from 46.105.180.237:54914 to 10.0.0.3:80 Friday, > Oct 21,2011 09:37:50 > > someone is accessing my server on this port. why are the source ports > random? > > _________________________________________________ > Philippine Linux Users' Group (PLUG) Mailing List > http://lists.linux.org.ph/mailman/listinfo/plug > Searchable Archives: http://archives.free.net.ph >
_________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
