Strange Port hits
Kevin O'Gorman
kevin
Mon May 17 11:31:54 PDT 2004
Yes, it's SQLServer, and I had to reload a Win 2k system two weeks back
that got infected, probably through that port. It wasn't exposing
anything else (no Outlook, no IIS). Fortunately it was a research
machine, and the data I really need on it is static, so reloading
wasn't such a horrible chore. I no longer use the default port,
and I'm hoping for the best, because I have no clue how to prevent
it happening again if the culprit(s) detects the new port.
So if you're running Linux I wouldn't worry all that much.
++ kevin
On Mon, May 27, 2002 at 05:39:07PM -0400, Bruce Marshall wrote:
> I've been getting a lot of hits on port 1433 lately. This is something new
> in the last week or so. Anyone know of anything going on in the dark world
> of hackers that makes port 1433 a good target?
>
> The ports list shows that port is for Microsoft-SQL-server....
>
> --
> +----------------------------------------------------------------------------+
> + Bruce S. Marshall bmarsh at bmarsh.com Bellaire, MI 05/27/02 17:35 +
> +----------------------------------------------------------------------------+
> "Farming looks easy when your plow is a pencil and you're a thousand miles
> from a cornfield." - Dwight D. Eisenhower
>
> _______________________________________________
> Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users
> Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
--
Kevin O'Gorman (805) 650-6274 mailto:kevin at kosmanor.com
Permanent e-mail forwarder: mailto:Kevin.O'Gorman.64 at Alum.Dartmouth.org
At school: mailto:kogorman at cs.ucsb.edu
Web: http://www.cs.ucsb.edu/~kogorman/index.html
Web: http://kosmanor.com/~kevin/index.html
"Life is short; eat dessert first!"
More information about the Linux-users
mailing list