RE: one million dollar whom...

SGriffin Thu, 08 Jun 2000 08:35:09 -0700

I'm getting alot of these from our MS-Proxy server on port 137, which is
used for Netbios Name resolution. BUT I'm also getting them from 0.0.0.0 to
255.255.255.255 on ports 67 and 68 which is Bootp I take it?

What does this mean?

Simon




                                                                                       
                                    
                    "Rainbow, Neil"                                                    
                                    
                    <[EMAIL PROTECTED]        To:     "'Fabrizio Croce'" 
<[EMAIL PROTECTED]>, [EMAIL PROTECTED]    
                    om>                         cc:                                    
                                    
                    Sent by:                    Subject:     RE: one million dollar 
whom...                                
                    firewalls-owner@List                                               
                                    
                    s.GNAC.NET                                                         
                                    
                                                                                       
                                    
                                                                                       
                                    
                    08/06/2000 15:17                                                   
                                    
                                                                                       
                                    
                                                                                       
                                    




It's when someone tries to access your network from the outside, using one
of your internal addresses, so as to look as if the connection attempt is
from you local LAN.


Neil Rainbow
London Network Controller
Amerada Hess Limited
DDI: 0207 887 2363
e-mail: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>


     -----Original Message-----
     From:     Fabrizio Croce [SMTP:[EMAIL PROTECTED]]
     Sent:     08 June 2000 15:01
     To:  [EMAIL PROTECTED]
     Subject:  one million dollar whom...

     ...answer at this simple question:

     'what is a spoofed address?'

     thanks :-)
     -----
     Fabrizio Croce

     Sidin s.r.l.
     Via Orbetello 48
     10149 Torino - Italy

     Tel: +39-011-2747.6
     Fax: +39-011-2747.647

     E-mail: [EMAIL PROTECTED]
     WEB: http://www.sidin.it
     -----


     -
     [To unsubscribe, send mail to [EMAIL PROTECTED] with
     "unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]





**********************************************************************
If you are not the intended recipient of this e-mail and have received it
in error, you are on notice that the e-mail and any attached files are
confidential. Please notify us immediately by reply e-mail and then delete
this message from your system.  Please do not use, distribute, copy or
take any action in reliance on it as to do so could be a breach
of confidence.  The sender does not accept any responsibility for any
loss, disruption or damage to your data or computer system which may occur
whilst using data contained in, or transmitted with, this e-mail.  Thank
you for your co-operation.  If you need assistance, please contact
Maritz Ltd -  tel.:  +44 (0)1628 486011 or e-mail: [EMAIL PROTECTED]
**********************************************************************
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
RE: one million dollar whom...

Reply via email to
