On Wed, 1 Apr 2009, Steve Pirk wrote:
On Wed, 1 Apr 2009, Steven M. Bellovin wrote:
On Wed, 1 Apr 2009 17:10:24 -0500
Erich Kolb ek...@kolbsoft.com wrote:
Looks like they are having some serious issues. It doesn't appear
that any of their domains are resolving. Hosted or otherwise.
Hmm
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, Apr 1, 2009 at 11:40 PM, Steve Pirk or...@pirk.com wrote:
Wasn't Conficker also configured to try and register a ton of randomly
generated domains? Two registrars go dark today?
Yes, but there is a counter effort that is being quite
Hi,
Our summmarized experiences can be found here:
https://puck.nether.net/pipermail/cisco-nsp/2009-March/059409.html
Janos Mohacsi
Network Engineer, Research Associate, Head of Network Planning and Projects
NIIF/HUNGARNET, HUNGARY
Key 70EF9882: DEC2 C685 1ED4 C95A 145F 4300 6F64 7B00
On Thu, Apr 2, 2009 at 2:40 AM, Steve Pirk or...@pirk.com wrote:
On Wed, 1 Apr 2009, Steve Pirk wrote:
On Wed, 1 Apr 2009, Steven M. Bellovin wrote:
On Wed, 1 Apr 2009 17:10:24 -0500
Erich Kolb ek...@kolbsoft.com wrote:
Looks like they are having some serious issues. It doesn't appear
Can somebody contact me off list?
I have tried various contact methods over the past week but the situation
persists.
Issue seems to be based in Atlanta, if that matters at all.
Tom Walsh
Express Web Systems, Inc.
Thank you for the off list replies.
The issue is in the correct hands now and being looked into.
Tom Walsh
I am using Nipper for verifying my Cisco configuration. Nipper is finding the
rlogin service that is not in the configuration. I have searched the access
lists and do not see it anywhere. The explanation by Nipper about this
finding, Telnet protocol implemented by this service is
Subba Rao wrote:
Can someone explain why Nipper is saying Rlogin is enabled when
I do not see it in the configuration file? Is there something
else that I need to be looking at?
It's been my experience that the routers are all listening on that port
by default, and we notice it as a
What IOS version are you using? I don't see that behavior (rlogin/rsh) by
default, but I'm a few revisions behind on the latest. @ 12.2
I do see from the router:
RCMD-4-RSHPORTATTEMPT Attempted to connect to RSHELL from 192.168.1.52
from nmaps, but theres no response to the SYN packet of the
I did not scan the routers yet with nmap. These results are from Nipper
analysis. None of the access lists are showing port 513 as Nipper is
complaining about. The IOS version is 12.4
Subba Rao
--- On Thu, 4/2/09, Jo¢ jbfixu...@gmail.com wrote:
From: Jo¢ jbfixu...@gmail.com
Subject: RE:
On Thu, Apr 02, 2009 at 04:54:26PM -0600, Mike Lewinski wrote:
Dec 15 17:27:16 MST: %RCMD-4-RSHPORTATTEMPT: Attempted to connect to
RSHELL from a.b.c.d
Everything I've read indicates that additional specific configuration
is required to actually enable this service. Still, it's always
Subba,
Sorry, perhaps I am confussed about the nature of your question? Did you
have acls up for logging these attempts and they weren't logged? or are you
asking for help from the Nipper portion of this as to why its reporting this
item.
With my logging turned up to debug I do see entries
Joe,
Thank you for replying. I am asking about the Nipper complaint. Why is Nipper
report saying Rlogin is enabled when I don't see any ACL in the config?
Using IOS 12.4
Cheers,
Subba Rao
--- On Thu, 4/2/09, Jo¢ jbfixu...@gmail.com wrote:
From: Jo¢ jbfixu...@gmail.com
Subject: RE:
Subba,
I've not heard or used this product (Nipper) before, so I cannot confirm
what the reasoning is for this. I can tell you that
based on the captures at the wire this appears to be a false-positive. It
appears there is a simuliar question being
asked on their (Nipper's) forums. My guess is
On 4/2/09, Subba Rao castellan2004-...@yahoo.com wrote:
I am using Nipper for verifying my Cisco configuration. Nipper is finding
the rlogin service that is not in the configuration. I have searched the
access lists and do not see it anywhere. The explanation by Nipper about
this finding,
15 matches
Mail list logo
