Okay, This is sort of a two part question: 1. A while ago, my Win2k server here at the office had its floppy drive crank up (like when you try and access the drive with no disk in it). There was nothing running that would have needed the floppy drive. Anyways, just because I was curious I ran netstat and saw a bung of connections from prisoner.iana.org that I have never seen before. I did a search on Google and found only a few references to the address, most dealing with potential hackers using a spoofed ip (none of the people making the posts seemed very knowledgable and they contained very little info). Anyone ever seen any abuse by this address, have any idea why it would connect to my server, or why the disk drive cranked up? (If I am just crazy, thinking that the prisoner.iana.org thing and the disk drive have anything to do with each other please feel free to smack me)...
2. I am running a SMC Barricade broadband router... does anyone know of any vulinabilities that would allow an attacker to port scan through the routers firewall to the internal network? (possibly firewalk?) I can't seem to find any specific info for the SMC and the problem still exists (or so says snort) after upgrading the firmware. Thanks in advance for the help guys, John D Best Price Cruises
