Mailinglist Archive: opensuse-security (520 mails)

< Previous Next >
Re: [suse-security] ftp login tries with private IP
  • From: Michael <mogmios@xxxxxxxxxxxxxxxxx>
  • Date: Thu, 7 Dec 2000 11:00:51 -0600 (CST)
  • Message-id: <Pine.LNX.4.21.0012071100140.8109-100000@xxxxxxxxxxxxxxxxx>
Do you run IPlogging on all your machines? If so you should be able to
follow an intruders progress unless they are really good.

Have the courage to take your own thoughts seriously, for they will shape
you. -- Albert Einstein

On Thu, 7 Dec 2000, webmaster wrote:

> Dear List,
> Is it possible to trace back an intruder who tried to compromise as
> "webmaster" as if coming from an existing private intranet IP?
> I was working exactly on that intranet machine whose private IP appeared in
> logs, and I was using Powerpoint and nothing else was running in the time
> being logged.
> Attempted failed however since in.ftpd is not running. But his knowing the
> IP of intranet machine may indicate some sniffing, may it not.
> /-------------------------/
> Antal Leisen
> webmaster@xxxxxxxxx
> Kreorg Educational Center
> Budapest, Hungary
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
> For additional commands, e-mail: suse-security-help@xxxxxxxx

< Previous Next >