It looks to me like more of the limited port scanning that seems to have
increased lately. I show telnet, pop, and imap connections from
slmel26p45.ozemail.com.au on my home machine, which is the full hostname
of 203.108.205.173. In addition, the machines I admin at work show telnet
and pop connections from that IP.
While I feel relatively certain no harm was done, I am somewhat bothered
by what seems to be an increase in this sort of thing. Plus, I wonder how
many machines have insecurities at these ports, don't know it, and are
totally unaware that such scans are occuring. Even more disturbing to me
is that when I brought the scanning to the attention of a fairly
well-known unix admin at ACITS, his attitude was that with no harm done,
there was no point in distributing this information.
Argh. I'll stop before I really get going. Suffice it to say my opinion
of computer security at UT is not altogether positive.
Shane Williams
Systems Administrator GSLIS
---------------------------------------------------------------------------
Send administrative requests to [EMAIL PROTECTED]
