Yes, I got the same probe as you described. Below is an IPCHAIN log. Obviously a forged packet. If you have anymore information about this let me know. Apr 28 06:05:56 nbs kernel: Packet log: input DENY eth0 PROTO=17 1.2.3.4:1024 24.28.27.248:31337 L=81 S=0x00 I=49120 F=0x0000 T=118 (#16) Brian Kraman wrote: > > (1) Did anyone else get a scan on Port 31337 from IP > 1.2.3.4 about 03:26:51CT 4/28/01? > > (2) Is there Windows based 98/95 packet sniffers > that would yield any evidence of the originating IP? > > (3) Also, has anyone else gotten scanned from the > elementary school in S. Korea? I believe I saw > someone write to the list. > > Thanks, > Brian > > __________________________________________________ > Do You Yahoo!? > Yahoo! Auctions - buy the things you want at great prices > http://auctions.yahoo.com/ -- The events which transpired five thousand years ago; Five years ago or five minutes ago, have determined what will happen five minutes from now; five years From now or five thousand years from now. All history is a current event. - Dr John Henrik Clake -
This archive was generated by hypermail 2b30 : Mon Apr 30 2001 - 10:01:59 PDT