SCOUG Logo


Next Meeting: Sat, TBD
Meeting Directions

Be a Member
Join SCOUG

Navigation:


Help with Searching

20 Most Recent Documents
Search Archives
Index by date, title, author, category.

Features:

Mr. Know-It-All
Ink
Download!




SCOUG:

Home

Email Lists

SIGs (Internet, General Interest, Programming, Network, more..)

Online Chats

Business

Past Presentations

Credits

Submissions

Contact SCOUG

Copyright SCOUG


warp expowest
Pictures from Sept. 1999
The views expressed in articles on this site are those of their authors.

warptech
SCOUG was there!

Copyright 1998-2024, Southern California OS/2 User Group. ALL RIGHTS RESERVED.

SCOUG, Warp Expo West, and Warpfest are trademarks of the Southern California OS/2 User Group. OS/2, Workplace Shell, and IBM are registered trademarks of International Business Machines Corporation. All other trademarks remain the property of their respective owners.

The Southern California OS/2 User Group
USA

SCOUG-HELP Mailing List Archives

Return to [ 18 | May | 2002 ]

<< Previous Message << >> Next Message >>

Date: Sat, 18 May 2002 15:43:19 PST7
From: Peter Skye <pskye@peterskye.com >
Reply-To: scoug-help@scoug.com
To: scoug-help@scoug.com
Subject: SCOUG-Help: My ISP is hacking me ?

Content Type: text/plain

=====================================================
If you are responding to someone asking for help who
may not be a member of this list, be sure to use the
REPLY TO ALL feature of your email program.
=====================================================

I've had my firewall running for about a week now and the logs are
enlightening. I'm getting probed about once every five minutes on a
variety of ports.

Most of the incoming is from 4.35.40.*. So I ran NSLOOKUP on 4.35.40.0,
.1, .2 etc. and found it's Verizon -- which is my DSL ISP. (And yup, my
DSL status shows my own address within that 4.35.40.* range.) How come
they're probing my network? I doubt it's some private hacker -- there
are only 256 addresses on 4.35.40.* and the chances of having such a
persistent guy out there on a local leg seem pretty remote to me.

Or maybe I've quacked too much and Carnivore is after me.

I *did* call Verizon tech support to ask if they were probing my machine
(maybe looking for servers). They said "no" and told me to email my
logs to their security department, but I'm still suspicious that it's
them. The probes aren't on server ports, they're higher up -- 137, 139,
548, 888, 5632. (See \MPTN\ETC\services)

Are any of you other guys with firewalls showing a lot of local probes?

- Peter

=====================================================

To unsubscribe from this list, send an email message
to "steward@scoug.com". In the body of the message,
put the command "unsubscribe scoug-help".

For problems, contact the list owner at
"rollin@scoug.com".

=====================================================

<< Previous Message << >> Next Message >>

Return to [ 18 | May | 2002 ]

The Southern California OS/2 User Group
P.O. Box 26904
Santa Ana, CA 92799-6904, USA

Copyright 2001 the Southern California OS/2 User Group. ALL RIGHTS RESERVED.

SCOUG, Warp Expo West, and Warpfest are trademarks of the Southern California OS/2 User Group. OS/2, Workplace Shell, and IBM are registered trademarks of International Business Machines Corporation. All other trademarks remain the property of their respective owners.