I’m trying to find out more information on port 8529. There doesn’t seem to be much information available, the only thing that I was able to find was, port 8529 is used as the default setting for Mod_Perl. Over the past few days we have seen a lot of same activity all to port 8529, coming from multiple locations all at the same time. Any ideas? Apr 17 17:34:03 X.Y.Z unix: securityalert: tcp if=hme1 from 217.81.207.11:3423 to X.Y.Z.35 on unserved port 8529 Apr 17 17:34:03 X.Y.Z unix: securityalert: tcp if=hme1 from 217.81.207.11:3423 to X.Y.Z.35 on unserved port 8529 Apr 17 17:34:04 X.Y.Z unix: securityalert: tcp if=hme1 from 217.81.207.11:3423 to X.Y.Z.35 on unserved port 8529 Apr 17 17:34:05 X.Y.Z unix: securityalert: tcp if=hme1 from 217.81.207.11:3423 to X.Y.Z.35 on unserved port 8529 Apr 17 17:34:13 X.Y.Z unix: securityalert: tcp if=hme1 from 217.81.207.11:3438 to X.Y.Z.35 on unserved port 8529 Apr 17 17:34:14 X.Y.Z unix: securityalert: tcp if=hme1 from 217.81.207.11:3438 to X.Y.Z.35 on unserved port 8529 Apr 17 17:34:15 X.Y.Z unix: securityalert: tcp if=hme1 from 217.81.207.11:3438 to X.Y.Z.35 on unserved port 8529 _____________________________________________________________ --------- CSIRT.WS --------- Information Infrastructure Protection. It's in your hands.
This archive was generated by hypermail 2b30 : Mon Apr 23 2001 - 08:53:29 PDT