Hi, In my logs I am getting used to port scans but yesterday I got like 100 records from this Ip:
Oct 22 09:05:43 attackalert: SYN/Normal scan from host: dsl-64-128-180-129.telocity.com/64.128.180.129 to TCP port: 1080 What can this be, and is there some exploit regarding port 1080, lately it seems that scans to port 1080 is getting more normal than the never ending scans to port 111. Do anybody now something about this? Kai R Schantz euroweb norway _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
