On Thu, 02 Aug 2001 13:46:32 CDT, baudendistprimary.net said:
> Yea... We were watching this yesterday... It looks like the packets are
> coming from WIN2K IPSec enabled web servers... It goes back to the 19th...
> VPN??? WIN2K interaction with the worm? Incidental? Who knows????

Isn't there a configure tab in the TCP control panel that has a checkbox
to force it to always try to negotiate IPSec first? Could it just be
CodeRed running on a box that has this set?

-- 
				Valdis Kletnieks
				Operating Systems Analyst
				Virginia Tech

-----BEGIN PGP SIGNATURE----- Version: PGP 6.5.8 Comment: Exmh version 2.5 07/09/2001

iQA/AwUBO2moVHAt5Vm009ewEQLpoACdFTQGQWaDdJm5HBIH0r3dlqlOyD8Anj00 dNp70L3DgXlnjQtryYAJXUI7 =C7OK -----END PGP SIGNATURE-----

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]