Re: [SECURITY] [DSA 045-1] ntp remote root exploit fixed
I've been wondering why I get so many probes on port 53, what's the popular exploit on it?
JonesMB in message Re: [SECURITY] [DSA 045-1] ntp remote root exploit fixed (Thu, 04/05 12:40):
> >>I guess we should expect a whole lot of attempts to connect to the ports
> >>used by NTP once the script kiddies figure this one out.
> >>I probably average about 20 connect attempts to ports 53 and 111 every day.
> >port 137 has also a good average.
> oh yeah, I forgot about that one, along with 27374.
> To UNSUBSCRIBE, email to firstname.lastname@example.org
> with a subject of "unsubscribe". Trouble? Contact email@example.com