Mailinglist Archive: opensuse-security (520 mails)

< Previous Next >
Re: [suse-security] ftp login tries with private IP
  • From: Michael <mogmios@xxxxxxxxxxxxxxxxx>
  • Date: Thu, 7 Dec 2000 11:00:51 -0600 (CST)
  • Message-id: <Pine.LNX.4.21.0012071100140.8109-100000@xxxxxxxxxxxxxxxxx>
Do you run IPlogging on all your machines? If so you should be able to
follow an intruders progress unless they are really good.

*^*^*^*
Have the courage to take your own thoughts seriously, for they will shape
you. -- Albert Einstein

On Thu, 7 Dec 2000, webmaster wrote:

> Dear List,
> Is it possible to trace back an intruder who tried to compromise as
> "webmaster" as if coming from an existing private intranet IP?
> I was working exactly on that intranet machine whose private IP appeared in
> logs, and I was using Powerpoint and nothing else was running in the time
> being logged.
> Attempted failed however since in.ftpd is not running. But his knowing the
> IP of intranet machine may indicate some sniffing, may it not.
>
> /-------------------------/
> Antal Leisen
> webmaster@xxxxxxxxx
> Kreorg Educational Center
> Budapest, Hungary
>
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
> For additional commands, e-mail: suse-security-help@xxxxxxxx
>


< Previous Next >
References