incidents 2002/03
By Subject
149 messages sorted by:
[ author ]
[ date ]
[ thread ]
Other mail archives
Starting: Thu Feb 28 2002 - 14:28:38 PST
Ending: Mon Apr 01 2002 - 16:43:04 PST
- "Nimda"?
- A new hack tool - tcp port 3139 ?
- Analysis of litmus backdoor trojan
- AW: nouser - rootkit ?
- Bug#137492: PAM pam_set_item: NULL pam handle passed
- Compromised - Port 1524
- different, nimda like, probes
- DoS yesterday
- Email Relay Searches
- Excess SMTP traffic to non-mail host
- FTP back in Vogue?
- fun with posiden rootkit
- FYI - slow scans for https...
- HTTPS scans
- I think I've been hacked...please help!
- increase in ftp scanning
- increase in scans for RPC
- increase in smb scans
- Increase in squid scanning...
- Keylogger Needed Quick!
- Large Attack
- Logon Banners
- Major DNS cache poisoning at Verisign/WorldNIC
- ncacn_http/1.0
- network mystery
- New Nimda?
- nouser - rootkit ?
- nouser - rootkit ? [:multiple root kit thread:]
- Odd activity
- ORBZ shut down
- Port 1900/5000 connection attempts
- Port UDP 3049
- Probes to strange ports
- Question about HTTP DDOS attacks.
- Rcon trojan
- RemoteNC backdoors, attacks via ports 1433, 524, 139, 445, 21, destroyed files
- Rise in spoofing and smurfing?
- RTCW?
- Sendmail DOS ?
- Sloppy compromise
- SMTP Probe/Attack?
- Solaris hack
- ssh exploit
- sshd: PAM pam_set_item: NULL pam handle passed
- strange UDP 5400 traffic
- Stray UDP activity?
- Sub7 (SubSeven), Win2k, and IE 5.5
- Suspect short first fragment?
- Update: UDP 770 Potential Worm
- very interesting 0day tool... http honeypot in action
- watching them -after the fact
- We have lots of users with SonicWalls for VPN connectivity in to FW-1, possible major security hole
- Weird log entries...
- {MERIT-INP} 7.0.1.0 -> 14.0.2.13
Last message date: Mon Apr 01 2002 - 16:43:04 PST
Archived on: Mon Apr 01 2002 - 16:43:13 PST
149 messages sorted by:
[ author ]
[ date ]
[ thread ]
Other mail archives
This archive was generated by hypermail 2b30
: Mon Apr 01 2002 - 16:43:13 PST