|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: How to deal with intruder?
From: Mike Tancsa (mike
sentex.net)Date: Mon Apr 03 2000 - 00:01:07 CDT
- Next message: Markus Schumacher: "Call for Participation: Survey on Vulnerability Databases"
- Previous message: Chutima S.: "How to deal with intruder?"
- In reply to: Chutima S.: "How to deal with intruder?"
- Reply: Mike Tancsa: "Re: How to deal with intruder?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
At 08:54 PM 4/2/2000 -0800, Chutima S. wrote:
>Dear all,
>
>I'm a new internet admin. I found in security check output routine that
>many people try to connect to my server:
Yup. Unfortunately, this is normal. You will quite often see people
scanning for holes and weaknesses.
>That really scare me!!! I don't know how to deal with them. So I want
>your advice for :
>1. Should I try to contact anybody(admin at those server)?
Yes. Do so when you can.
>2. How can I trace them back to know are they?
By the IP address in your logs. whois -a <ipaddress>. Often however, the
accounts are dialup accounts, or machines that have been broken into.
If you are new to network administration, see http://www.securityfocus.com
and http://www.sans.org. They are two useful *starting* places.
---Mike
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: Markus Schumacher: "Call for Participation: Survey on Vulnerability Databases"
- Previous message: Chutima S.: "How to deal with intruder?"
- In reply to: Chutima S.: "How to deal with intruder?"
- Reply: Mike Tancsa: "Re: How to deal with intruder?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]