Firewall-Question: How is this working?
Thomas Bitschnau
typo3 at bitschnau.de
Tue Aug 10 13:34:30 UTC 2004
Hi!
I use "firestarter" to configure my firewall. I am not expert in
linux-networking, so my question might be a bit "low-leveled".
If I take a look at my hitlist, there are some portscans and stuff, but
I dont understand this entry:
Time: Aug 10 15:14:00 Source: 192.168.0.2 Destination: 200.55.90.253 In
IF: Out IF: eth0 Port: 1234 Length: 44 ToS: 0x00 Protocol: tcp Service:
subseven
Isn't subseven an trojan-tool?
And the most disturbing thing is, that the source (i.e. "192.168.0.2")
is my local ip-address in our home-network.
How is this possible and is my machine really sending portscans or what
else does this hit tell me?
Greetings,
--
Thomas B.
ICQ UIN#: 28869987
Here there be tygers.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20040810/f3a4a793/attachment-0001.sig>
More information about the fedora-list
mailing list