[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: portmap log entry

From: Wayne Dyer <dwdyer austin rr com>
To: redhat-list redhat com
Subject: Re: portmap log entry
Date: Tue, 30 Nov 1999 19:25:45 -0600

Gordon Messmer wrote:
> Wayne Dyer wrote:
> > portmap[20922]: connect from XXX.X.XX.XXX to dump(): request from
> > unauthorized host
> > 
> > The IP address in question happens to be a domain server at that particular
> > domain.  (NS1.XXXXXXX.NET when I do a `whois XXX.X.XXX.`)  XXX.X.XX.XXX is
> > NOT in my ISP's address block.
> > 
> > Any clues as to what this is? 
> 
> Probably a name server hacked through BIND.  You should probably notify
> the administrative contact listed in the whois database.  Email may not
> work, so if you care to, try the phone number listed.

I'm not going to bother.  Thier whois entry has a phone number of (714)
555-5555.  It's probably not compromised.  It's probably *them*.

-W-

Follow-Ups:
- Re: portmap log entry
  - From: Gordon Messmer

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]