Re: Can anyone help me ID who is trying to hack my system?

To: Rick Moen <rick@linuxmafia.com>
Cc: debian-security@lists.debian.org
Subject: Re: Can anyone help me ID who is trying to hack my system?
From: "Fabricio Cannini Flores" <fcannini@pop.com.br>
Date: Mon, 06 Oct 2003 17:26:11 -0300
Message-id: <[🔎] 20031006202611.20503.qmail@webmail3.pop.com.br>
In-reply-to: <[🔎] 20031004031741.GC32692@linuxmafia.com>
References: <[🔎] 3F7E2643.DA84A835@sisqtel.net> <[🔎] 20031004031741.GC32692@linuxmafia.com>

Can anyone help me ID who is trying to hack my system?

This is no hacking, 'cause a true hacker wouldn't spend his time on it.I know that i may sound trollish and off-topic and will be cursed to thebuffer overflow hell, but this is the kind of thing that the $#!t-head pplof press loves to scream out loud, because they don't know what are theytalking about && don't give a damn to learn!!!!So if we want to put an end on all this press's bullshit && change thehacker and the hacking act image to a good thing, we need to change eventhis tiny little things.There's a Ghandi text about thoughts that became your personality, don'tremember it now but you might now what is it, and believe me, that is true.And that's what we need to do.

"I'm showing you the door, it is you that must walk in"

Rick Moen disse:

Quoting Alderbrook (joybrad@sisqtel.net):

Can anyone help me identify who is trying to get into my system?

9/1/03 7:14:51 PM Deny unknown 1080 TCP 64.222.178.231 64.222.178.231
9/1/03 7:14:50 PM Deny unknown 1080 TCP 64.222.178.231 64.222.178.231
9/1/03 7:14:49 PM Deny unknown 1080 TCP 64.222.178.231 64.222.178.231
9/1/03 7:14:32 PM Deny unknown 1080 TCP 64.222.178.231 64.222.178.231
9/1/03 7:14:32 PM Deny unknown 5490 TCP 64.222.178.231 64.222.178.231
9/1/03 7:14:32 PM Deny unknown 6588 TCP 64.222.178.231 64.222.178.231
9/1/03 7:14:32 PM Deny unknown 3128 TCP 64.222.178.231 64.222.178.231
9/1/03 7:14:32 PM Deny Web Sharing 80 TCP 64.222.178.231 64.222.178.231
9/1/03 7:14:32 PM Deny unknown 8080 TCP 64.222.178.231 64.222.178.231

[...]

As Noah says, someone's just twisting your system's doorknobs, looking
for vulnerable services.  The probe on 57/tcp is probably trying to
fingerprint the TCP/IP stack by trying to connect to a port that's
almost never used for anything, and profiling your system's response to

determine the OS.

You can worry about all this, if you want, but then you're going to be

upset multiple times a day, 365 days a year. ;->

--
This message falsely claims to have been scanned for viruses with F-Secure

Anti-Virus for Microsoft Exchange and to have been found clean.


--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org

with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Linux, 'cause reboot is only to install hardware.Linux, pq reiniciar é só pra instalar hardware.

--

POP. Nem parece internet grátis.

Seja POP você também!
Acesse: http://www.pop.com.br/pop_discador.php e baixe o POPdiscador.

Reply to:

References:
- Can anyone help me ID who is trying to hack my system?
  - From: Alderbrook <joybrad@sisqtel.net>
- Re: Can anyone help me ID who is trying to hack my system?
  - From: Rick Moen <rick@linuxmafia.com>

Prev by Date: Re: logcheck thinks that system is under attack, related to ssl problem?
Next by Date: Re: logcheck thinks that system is under attack, related to ssl problem?
Previous by thread: Re: Can anyone help me ID who is trying to hack my system?
Next by thread: Re: Can anyone help me ID who is trying to hack my system?
Index(es):
- Date
- Thread