Sender: |
|
Date: |
Sat, 23 Dec 2000 02:28:53 -0800 |
Reply-To: |
|
Content-type: |
text/plain; charset=US-ASCII |
Subject: |
|
From: |
|
Content-transfer-encoding: |
7BIT |
In-Reply-To: |
<000301c06a8f$06213100$961a74ce@networxnote> |
Organization: |
Deep Forest |
MIME-Version: |
1.0 |
Parts/Attachments: |
|
|
On 20 Dec 00, at 9:13, Shawn M. Shea wrote:
> I am running NT4 Server at home on a small network. I have a cable
> modem and fixed ip address. FTP services are running on Microsoft
> IIS. However, when I try to connect I can only do so 1 out of 50
> attempts. Anonymous access is allowed and the machine is always up
> and running. Any ideas on what would cause this?
I've been seeing a fair number of scans of our network lately.
Absolutely most common are "script kiddies" looking for the SubSeven
trojan, but the second most popular service target these days seems
to be FTP.
Having found an FTP server, the next step is to check for anonymous
access.
I presume that the steps after that are to shove it full of warez
or porn and start circulating its IP address to all one's friends....
And at that point, I wonder how many connections your server
install is licensed for? Have you checked the IIS logs to see if
there are other connections going on?
David G
PCBUILD's List Owner's:
Bob Wright<[log in to unmask]>
Drew Dunn<[log in to unmask]>
|
|
|