Network Security: Detailed info on Re: Scans for telnetd on DNS servers.

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Incidents

[Top] [All Lists]

Re: Scans for telnetd on DNS servers.

from [Pavel Kankovsky] Network Security

[Permanent Link]

Subject:	Re: Scans for telnetd on DNS servers.
Date:	Thu, 9 Mar 2006 22:32:45 +0100 (CET)

On Sat, 4 Mar 2006, Jay D. Dyson wrote:

      In the past hour I've seen 43 scans for telnetd (port 23) on a 
single DNS box.  Most of these scans are coming from Asia, but a number 
are originating from South America as well.  These are not network sweeps; 
they are aimed solely at DNS systems.


I observed a sudden increase of 23/tcp probes on Feb 28 at 16:00 GMT
(from more or less zero to approx. 1500 probes per hour). It lasted for
10 hours, then it stopped almost quickly as it started. It was neither a 
focused probing of a certain kind of devices, nor any systematic sweep -- 
various IP addresses (including broadcast and other reserved addresses) in 
our network were hit in a seemingly random manner.

--Pavel Kankovsky aka Peak  [ Boycott Microsoft--http://www.vcnet.com/bms ]
"Resistance is futile. Open your source code and prepare for assimilation."

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Scans for telnetd on DNS servers., Jay D. Dyson Re: Scans for telnetd on DNS servers., Raistlin Majere Re: Scans for telnetd on DNS servers., Pavel Kankovsky <= Re: Scans for telnetd on DNS servers., Alex Re: Scans for telnetd on DNS servers., Pavel Kankovsky Re: Scans for telnetd on DNS servers., jim barchuk Re: Re: Scans for telnetd on DNS servers., kmuskrat

Previous by Date:	Re: Interesting information about SSH scans, Philipp Frik
Next by Date:	Re: Interesting information about SSH scans, Daniel Cid
Previous by Thread:	Re: Scans for telnetd on DNS servers., Raistlin Majere
Next by Thread:	Re: Scans for telnetd on DNS servers., Alex
Indexes:	[Date] [Thread] [Top] [All Lists]