September 27th, 2003, 10:51 AM
Port scan bz EUIBMNIC
Today I am detecting a lot of port scanning activities.
Did anyone notice the newest port scanning from IP 188.8.131.52?
OrgName: IBM Netherlands N.V. (firstname.lastname@example.org).
October 13th, 2003, 07:28 AM
There are a lot of IP's out there. Sure you don't have some enimies out there? =)
October 13th, 2003, 08:49 AM
LeetProdigy is right. Usually every one thats connected to the internet gets a los of scans and get probe by people that are Scanning networks for vulnerabilitys, and some virus also prodice this effect like blaster that searches for computers to infect.
October 16th, 2003, 12:58 PM
It could be some n00B doomaaas who got a hold of nmap and didn't quite figure out how to use it before s/he started scanning whole networks.... Then again, it could be someone who just doesn't know how to gather target data quietly which is also very likely...
Point is you'll get an ulsar if you freak everytime someone port scans you, it happes to my company dozens of times per day. Do yourself a favor and learn how to tell a port scan (which every 1337 h4x0R k1dd3 thinks is hacking) and a real attack apart. Your stomach lining will thank you for it.
Get OpenSolaris http://www.opensolaris.org/