Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Firewalls
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

kernel: martian source

from [Ben] Network Security [Permanent Link]
Subject: kernel: martian source
Date: Fri, 20 May 2005 18:50:11 +1000 
Hi

I have messages like the following line in my log file, what can I do about it?

kernel: martian source [server IP] from 68.50.206.106, on dev eth0

This happens after the IP 68.50.206.106 has been dropped by PortSentry.

I have Swatch, PortSentry, Snort and GIPTables running on my CentOS 4.0 server.

I contacted my ISP and they told me that I should be worried. I
googled these keywords but did not find any information that I could
use to fix this.

Should I be worried?

Thanks,
Ben
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Nokia FW HA monitoring, Lady Worm
Next by Date:  Re: Bypassing Firewalls, Danux
Previous by Thread:  Nokia FW HA monitoring, Lady Worm
Next by Thread:  Re: kernel: martian source, Christophe Lucas
Indexes:  [Date] [Thread] [Top] [All Lists]